[TYPO3-english] SSL backend

Xavier Perseguers typo3 at perseguers.ch
Fri Mar 20 12:15:26 CET 2009


Hi Toshiyuki,

> I want to use backend with SSL and I use "pound" load blancer software.
> I can access backend by SSL via pound and login with acount and password
> in login screen, but "Login-error or session timed-out" error message
> was shown.
> I think TYPO3 can not redirect incollectlly. why?

If you only use pount as a SSL endpoint, you have to inform TYPO3 or any
other application that it should generate https:// prepended URL anyway,
regardless of the fact that the system in fact runs without SSL. I did
not try with TYPO3 but I had too many problems with other software and I
found another solution that works.

Instead of using an unencrypted connection to your backend server, use
an SSL connection too; this is easily done with stunnel4. That is:


------- pound -- stunnel4 ------------ webserver on SSL

The certificate you use for the webserver does not have to be "valid"
(dates and the rest) if you configure stunnel4 not to take care of this.
This allows you to have a proper SSL connection and apps that run on
your webserver see an encrypted connection and generate URL accordingly,
meaning no further configuration is needed.

I may give you a setup example of pound + stunnel4 in such case if you want.

-- 
Xavier Perseguers
http://xavier.perseguers.ch/en

One contribution a day keeps the fork away


More information about the TYPO3-english mailing list