Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
 
Go Back   Zimbra - Forums > Zimbra Collaboration Suite > Installation
Reload this Page HTTP to redirect to HTTPS

Welcome to the Zimbra - Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack (1) Thread Tools Display Modes
  1 links from elsewhere to this Post. Click to view. #1 (permalink)  
Old 05-29-2007, 01:31 PM
Senior Member
  
Posts: 68
Default HTTP to redirect to HTTPS
I'm installing Zimbra from the rPath appliance package and testing if Zimbra will do what we need.

One item is to redirect people from HTTP to HTTPS. So if the hit port 80 they are redirected to port 443.

In /opt/zimbra/httpd-2.0.54/conf/httpd.conf I appended the lines:

SSLRequireSSL


Followed by:
zmtlsctl mixed
tomcat restart

This seems to work as we need. But does anybody know of any problems this may cause? I doubt I know enough of Zimbra at this point to test it well enough to be confident of my results.

Thanks,

David
Reply With Quote
  #2 (permalink)  
Old 05-29-2007, 10:27 PM
Zimbra-Yahoo Consultant
  
Posts: 5,608
Default
I think that might be
Bug 7631 - redirect to https mode problem

I don't think it will cause any issues because as long as it redirects to https, then all traffic goes https. . .thus ignoring http. . .which causes the redirect.

So, for example, if we have a http-only/specific call, then it would get stuck in an infinite loop. . .but we don't

jh
Reply With Quote
  #3 (permalink)  
Old 05-30-2007, 12:58 AM
Member
  
Posts: 11
Default
unfortunately that bug does seem to effect me...

I followed the initial post exactly and my results are that when I go to the login page over http, I get redirected to https for the login. However, as soon as I log in I am redirected back to an http page to read mail.

It seems the bug you listed is specifically requesting a feature whereby http is always redirected to https. Am I correct in stating that it is currently not possible?

As I see it the options are:
a) I can either disable http altogether (use zmtlsctl https), and then users have to use the https URL or they get connection denied because the server is not listening on port 80.

b) I can put it in mixed mode, I only get encryption on login, not throughout the mail session.
Reply With Quote
  #4 (permalink)  
Old 05-30-2007, 07:28 AM
Senior Member
  
Posts: 68
Default
Two replies, wow!

jholder,

Thanks but this isn't related to the bug at all. I'm having no problems, I'm just trying to make sure my change to httpd.conf will not cause any problems that may be known but I may not hit in my limited testing.

pavera,

Sorry but I'm not up on the forum syntax. They SSLRequireSSL was inclosed in XML tags. This was trapped out by the forum software. What I have at the bottom of the httpd.docs file is:

<Directory "/opt/zimbra/httpd-2.0.54/htdocs/Zimbra">
SSLRequireSSL
</Directory>

The "Zimbra" is where the code is read from for the web pages.

(Used preview this time to makes sure the tags are displayed correctly.)
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

Zimbrablog.com


Home - Blog - Contact Us - Archive - Top


 

Search Engine Optimization by vBSEO 3.1.0