How to setup an Nginx reverse proxy with a SSL certificate in XWIKI

-

Hey everyone,  Tonight I continue my previous post of the complete setup of xwiki. This post is about how to setup  Nginx as a reverse proxy with an SSL certificate.

Before moving further we consider that xwiki runs on the server( EC2 server) with a domain name called example.in

To create a custom domain name using AWS you can follow this link:- https://aws.amazon.com/getting-started/hands-on/get-a-domain/

By default, Tomcat 9 works on port 8080, and you can only visit your XWiki site from the same port. If you want to facilitate visitors' access by removing the port number part, you can install Nginx as a reverse proxy between XWiki and visitors.

Step 1, Install Nginx using apt:
sudo apt install nginx -y
Step 2, Setup Nginx as a reverse proxy by modifying its default site configurations:
cd /etc/nginx/sites-available 
sudo mv default default.bak 
sudo vi default
Step 3, Edit the file
server { 
listen 0.0.0.0:80; 
proxy_request_buffering off; 
proxy_buffering off; 
location / { 
    proxy_pass http://127.0.0.1:8080;
    proxy_redirect off;
    proxy_set_header Host $host; 
    proxy_set_header X-Real-IP $remote_addr; 
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header X-Forwarded-Host $server_name; 
    
}

Save and quit
Step 4, Start the Nginx service and set it to automatically start on system startup:
sudo systemctl restart nginx.service 
sudo systemctl enable nginx.service

Step 5,  Modify the UFW firewall rules accordingly:

sudo ufw allow 80 
sudo ufw deny 8080 
sudo ufw reload

Step 6, Verify
So just check the port  number 80 is working or not on the browser

example.in:80
Also, check port number 8080 is not working 

example.in:8080

Step 7, Add SSL certificate
First, download the Let’s Encrypt client, certbot:
apt-get update 
sudo apt-get install certbot 
apt-get install python-certbot-nginx

Step 8,  Obtain the SSL/TLS Certificate
The NGINX plug‑in for certbot takes care of reconfiguring NGINX and reloading its configuration whenever necessary.
  1. Run the following command to generate certificates with the NGINX plug‑in: sudo certbot --nginx -d example.in -d example.in
  2. Respond to prompts from certbot to configure your HTTPS settings, which involves entering your email address and agreeing to the Let’s Encrypt terms of service.
  3. certbot generates a message indicating that certificate generation was successful and specifying the location of the certificate on your server. When certificate generation completes, NGINX reloads with the new settings.
  4. If you look at domain‑name.conf, you see that certbot has modified it:


Now check the URL https://example.in

Hope you enjoyed my blog post.😎

Comments

Post a Comment

Please give us your valuable feedback

Popular posts from this blog

MySQL Multi Source Master Slave Replication using GTID

-
Image
We are using GTID-based master-slave replication. In this replication, both master and slave should have the same GTID. This blog post aims to provide a step-by-step guide to help you set up MySQL Replication using GTIDs and help you replicate your MySQL data with ease. Prerequisite Master Source 1 Channel name:  DEVELOPMENT Database: mydb1 Enable Replication For Tables testing1 testing2 testing3 Mysql Server Running: 192.168.0.201:3307 Master Source 2 Channel name:  PRODUCTION Database: mydb1 Enable Replication For Tables testing4 testing5 testing6 Mysql Server Running: 192.168.0.201:3308 Slave Mysql Server Running: 192.168.0.209:3306 Configuration of  masters(192.168.0.201:3307/192.168.0.201:3308) and slave (192.168.0.209:3306) my.cnf config for master (192.168.0.201:3307) my.cnf config for master (192.168.0.201:3308) my.cnf config for slave (192.168.0.209:3306) Steps for taking a dump and restoring it Run the following commands in both masters 192.168.0.201:3307 and 1...
Read more

Access and modify all the resources of our Wiki.js using WikiJS API

-
Image
Hi everyone 😎 , Today we are going to see how to access or modify WikiJS resources using WikiJS API. WikiJS exposes GraphQL API to access and modify the stuff according to our requirements. So In this blog post, we going to see  How to set up WikiJS's local environment using docker. How to generate an API token in Wikijs. Using API tokens how to access WikiJS resources and how to modify them. First Local Setup using docker Here I am using docker to set up my local isolated WikiJS environment. Below is my docker-compose.yml file written by WikiJS contributors. To build the WikiJS environment we just need to run the following command  docker-compose up -df  [PATH_OF_DOCKER_COMPOSE_YML_FILE] To check the environment is in a running state run the following command docker ps Second Generate API token After setup our local environment we are ready to create our initial Administrator account in our WikiJS. 1. On the browser type localhost:80 2. Create an Administrator acco...
Read more

How to pass parameters in webhook?

-
Image
Hey everyone 😊, Today I want to share another interesting thing which I found in StackOverflow and that is how to pass parameters in webhook. Those who don't know about webhook I advise you to google about it before going further reading.  So for demonstration purpose, I am going to use Jenkins and Generic Webhook plugin . I created a job and called it testing  and select Generic Webhook  Trigger . Thereafter I add Request Parameter   and in the request parameter I added the name of the request which is name Thereafter I added a token to specify that this job can only be triggered. After this, I select Execute Shell from Build  and write the following code  After doing this add webhook URL in bitbucket repository or  GitHub repository with the parameter. The URL is look something like this  Webhook URL:- https://[YOUR_JENKINS_URL]/generic-webhook-trigger/invoke?token=trigger&name=Svastikkka  The configuration will something like this ...
Read more