Proxy Self Service for open web

UCS - Univention Corporate Server
, ,
#1

Hi everyone,

we would like to configure an apache server to proxy the UCS self service to the open web. Does anyone have any idea how apache should be configured to achieve this?

#2

Good Morning Kevin,

till now, I haven’t tried it myself. Is the Apache proxy going to be a UCS server?

My regards
Anna Takang

#3

Good Anna,

yes, the proxy is going to be a UCS server.

#4

Good Morning Kevin,
you can set up a UCS member server or slave to be used as proxy server. This has to be done from the command line. e.g.

  1. Enable the default modules one by one, though some modules are likely to be enabled by default. Trying to enable them twice will just ensure that they are active.
a2enmod proxy
a2enmod proxy_http
a2enmod proxy_ajp
a2enmod rewrite
a2enmod deflate
a2enmod headers
a2enmod proxy_balancer
a2enmod proxy_connect
a2enmod proxy_html

then restart:

service apache2 restart
  1. Create a file below /etc/apache2/sites-available/to set up “proxying” functionality: e.g 000-default.conf.
    activate this file using
a2ensite

vi  /etc/apache2/sites-available/000-default.conf

copy and paste the block below, amending it to suite your needs this example has nothing to do with self service.

<VirtualHost :>
ProxyPreserveHost On
ProxyPass / http://192.168.111.2:8080/
ProxyPassReverse / http://192.168.111.2:8080/
ServerName hostname.example.com

There are three directives here:
ProxyPreserveHost makes Apache pass the original Host header to the backend server. This is useful, as it makes the backend server aware of the address used to access the application.
ProxyPass is the main proxy configuration directive. In this case, it specifies that everything under the root URL (/) should be mapped to the backend server at the given address. For example, if Apache gets a request for /example, it will connect to http://your_backend_server/example and return the response to the original client.
ProxyPassReverse should have the same configuration as ProxyPass. It tells Apache to modify the response headers from backend server. This makes sure that if the backend server returns a location redirect header, the client’s browser will be redirected to the proxy address and not the backend server address, which would not work as intended.

  1. Then restart the Service:
service apache2 restart

The Link below, can also be of help

Mastodon