Commit 0cd53f3b authored by Staiger, Christine's avatar Staiger, Christine
Browse files

Install davrods, enable apache with SSL encryption

parent 5419b8d7
# Install Davrods
## Installation without SSL certificates (not advised)
1. Download davrods from https://github.com/UtrechtUniversity/davrods
```
apt-get install apache2
#apt --fix-broken install
dpkg -i davrods-X.deb
```
2. If SELinux is running on machine do
```
setsebool -P httpd_can_network_connect true
```
3. The configuration files are in
```
ls /etc/apache2/sites-available/
```
4. Adjust the respective files `davrods-(anonymous-)vhost.conf`
```
a2enmod dav
a2enmod davrods
a2ensite davrods-(anonymous-)vhost
```
5. Remove the file `rm /etc/apache2/sites-enabled/000-default.conf`.
6. Remove the line
```
"irods_client_server_negotiation": "request_server_negotiation",
```
​ from `/etc/apache2/irods/irods_environment.json`.
7. Restart the HTTP server
```
systemctl restart apache2
```
## Enabling SSL encryption
To enable an existing Davrods installation with SSL do:
1. Get certificates **or**
2. Create self-signed certificates:
```
openssl req -x509 -nodes -days 4000 -newkey rsa:2048 -keyout /etc/ssl/private/apache-selfsigned.key -out /etc/ssl/certs/apache-selfsigned.crt
```
3. Edit the `davrods-vhost.conf`in `/etc/apache2/sites-enabled`
```
<VirtualHost *:443>
```
Add the following lines after '\</Location>'
```
SSLEngine on
SSLCertificateFile /etc/ssl/certs/apache-selfsigned.crt
SSLCertificateKeyFile /etc/ssl/private/apache-selfsigned.key
```
4. Check the apache configuration and restart the service
```
apache2ctl configtest
systemctl reload apache2
```
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment