Blog

Access Activiti Through an Apache Reverse Proxy with SSL

by | Oct 19, 2015 | Activiti | 0 comments

Activiti is a light-weight workflow and Business Process Management (BPM) Platform. There seems to be sufficient documentation to get a copy up and running for older versions of this offering. Documentation for the newer versions could use a rewrite. After setting up the instance of Activiti (version 5.18.0) in one environment, the goal shifted to running it behind an Apache Reverse Proxy (RP) with SSL. A configuration file for the Apache RP was created like so.

# https://mycoolsite.com/activiti-explorer
 #####################################################
        ProxyPass /activiti-explorer https://10.10.10.10:8080/activiti-explorer
        ProxyPassReverse /activiti-explorer https://10.10.10.10:8080/activiti-explorer

Sparse support may be found for modifications that are needed for the server.xml file. That support plus using bits and pieces from other application installs resulted in a server.xml that looks like this.

    <Connector port="8080"
             maxThreads="150"
             minSpareThreads="25"
             connectionTimeout="20000"
             enableLookups="false"
             maxHttpHeaderSize="8192"
             protocol="HTTP/1.1"
             useBodyEncodingForURI="true"
             redirectPort="8443"
             acceptCount="100"
             scheme="https"
             secure="true"
             proxyName="mycoolsite.com"
             proxyPort="443"
             disableUploadTimeout="true"/>

The key to successfully implementing the SSL is the added line of secure=”true”. Without that one line, the site didn’t load properly.  This is a line that I hadn’t implemented in configuring other applications of a similar configuration. Hopefully, this little nugget will prove useful to your installation and configuration of Activiti.

Activiti


		
	    
			

Categories

Need a bit more info on how Armedia can help you?

Feel free to schedule a 30-minute no-obligations meeting.

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *