Forums / Developer / Setup SSL only with user login page to secure username and password

Setup SSL only with user login page to secure username and password

Next topic

Author	Message
Romeo Antony	Tuesday 11 January 2011 1:22:23 am Hi, I would like create an ssl user/login page(in user site access) to secure the username and password for sent it as encrypted. But no idea how to configure it only for a login page. I would like to set up ssl for complete admin site access. But if I use default virtualhost example provided in ezpublish docs , I can't use ssl for admin site access. (since usersite access and admin site access are in single virtualhost with admin site access as alias) I should create sepererate virtualhost for admin site access instead of alias for admin site access in single virtualhost to use ssl for admin site access? Isn't? Regards Romeo
Gaetano Giunta	Tuesday 11 January 2011 5:28:44 am If you want to set up https for all of the admin siteaccess and only for part of the public siteaccess, using two vhosts is probably your best bet. You'll also have to buy 2 certs in that case, as you need one separate certificate per hostname. If you feel like experimenting, you could: enable https in apache (set up 2 identical vhosts, one on port 80, one on port 443) set up ssl in the site.ini of the two siteaccesses: SSLZones=enabled, SSLSubtrees[]=/, ModuleViewAccessMode[/]=ssl for admin and SSLZones=enabled, ModuleViewAccessMode[user/login]=ssl for front Principal Consultant International Business Member of the Community Project Board
Romeo Antony	Tuesday 11 January 2011 10:32:45 pm Thanks for the reply. This is what I was exactly looking for.
Romeo Antony	Saturday 15 January 2011 3:56:00 am Hi, I have tried .but some issues in setting http and https in public site access. I should set up port 80 for http request in public site access with, port 443 for ssl request in user/loginmodule/view in public site access ? So that is it better to put two virtualhost for public site access and 3rd virtualhost for admin site access to listen https request on port 443. Is this is a right way for my requirement. Any suggestions or ideas will be a help. <b>NameVirtualHost :443 NameVirtualHost :80</b> <b><VirtualHost :80> ServerName public_siteaccess</b> DocumentRoot /var/www/ </VirtualHost> <b><VirtualHost :443> ServerName public_siteaccess</b> DocumentRoot /var/www/ SSLEngine on SSLCertificateFile /etc/apache1/ssl/apache.pem </VirtualHost> <b><VirtualHost *:443> ServerName admin_siteaccess</b> DocumentRoot /var/www/ SSLEngine on SSLCertificateFile /etc/apache2/ssl/apache2.pem </VirtualHost>
Luis Delgado	Monday 28 February 2011 4:47:58 pm " If you want to set up https for all of the admin siteaccess and only for part of the public siteaccess, using two vhosts is probably your best bet. You'll also have to buy 2 certs in that case, as you need one separate certificate per hostname. If you feel like experimenting, you could: enable https in apache (set up 2 identical vhosts, one on port 80, one on port 443) set up ssl in the site.ini of the two siteaccesses: SSLZones=enabled, SSLSubtrees[]=/, ModuleViewAccessMode[/]=ssl for admin and SSLZones=enabled, ModuleViewAccessMode[user/login]=ssl for front " Gaetano, this does work but I'm having a pretty strange issue here. I have configured access in Host Mode. I finally got the site to use SSL in my admin.mydomian.com site but when I click either on "Design" or the "Settings" Tab or if I click on Roles link in Users I will be taken out to the front_user host address and an Access Deny. Im the only Administrator of the site. I have EZP 4.4 with EZFLOW. Right now I have EZP in a subdirectory and a Live site runing on root (We are migrating)... What can I do to fix this issue? Cheers GOOD 4 ALL
Luis Delgado	Monday 07 March 2011 8:47:34 am Bump... No idea? Cheers GOOD 4 ALL