topic Alfresco behind Load Balancer with SSL offload in Alfresco Forum https://connect.hyland.com/t5/alfresco-forum/alfresco-behind-load-balancer-with-ssl-offload/m-p/95800#M28176 <P>We are moving our Alfresco installation from behind an Apache proxy using AJP to use a load-balancer that is doing SSL offloading and forwarding requests directly to the backend by modifying the proxy settings in tomcat/conf/server.xml. However, the&nbsp;<A href="https://docs.alfresco.com/5.0/tasks/configure-ssl-prod.html" target="_self" rel="nofollow noopener noreferrer">Configuring SSL for a production environment</A>&nbsp; documentation says to protect the following endpoints:</P><PRE>/share/*/proxy/alfresco/api/solr/* /share/-default-/proxy/alfresco/api/*</PRE><P>What examples of URLs are there with "/share/*/proxy"? How can I determine what the application is using for "*" in this scnenario? There isn't anything in the solr documentation about this and the only page that references these is this SSL configuration page.</P><P>We tried blocking "/share/proxy/alfresco/api" thinking that was what a pattern, but blocking that URL breaks the application as the dashboard or other items don't load. I don't know that is possible at the moment to create rules on our LB to redirect a URL with multiple wildcards. Is there a more comphresensive list of actual URLs used by the server with "share/*/proxy" based on our configuration or is there a way to redirect these in tomcat or ?&nbsp;</P> Tue, 11 Aug 2020 20:41:04 GMT fosterm 2020-08-11T20:41:04Z Alfresco behind Load Balancer with SSL offload https://connect.hyland.com/t5/alfresco-forum/alfresco-behind-load-balancer-with-ssl-offload/m-p/95800#M28176 <P>We are moving our Alfresco installation from behind an Apache proxy using AJP to use a load-balancer that is doing SSL offloading and forwarding requests directly to the backend by modifying the proxy settings in tomcat/conf/server.xml. However, the&nbsp;<A href="https://docs.alfresco.com/5.0/tasks/configure-ssl-prod.html" target="_self" rel="nofollow noopener noreferrer">Configuring SSL for a production environment</A>&nbsp; documentation says to protect the following endpoints:</P><PRE>/share/*/proxy/alfresco/api/solr/* /share/-default-/proxy/alfresco/api/*</PRE><P>What examples of URLs are there with "/share/*/proxy"? How can I determine what the application is using for "*" in this scnenario? There isn't anything in the solr documentation about this and the only page that references these is this SSL configuration page.</P><P>We tried blocking "/share/proxy/alfresco/api" thinking that was what a pattern, but blocking that URL breaks the application as the dashboard or other items don't load. I don't know that is possible at the moment to create rules on our LB to redirect a URL with multiple wildcards. Is there a more comphresensive list of actual URLs used by the server with "share/*/proxy" based on our configuration or is there a way to redirect these in tomcat or ?&nbsp;</P> Tue, 11 Aug 2020 20:41:04 GMT https://connect.hyland.com/t5/alfresco-forum/alfresco-behind-load-balancer-with-ssl-offload/m-p/95800#M28176 fosterm 2020-08-11T20:41:04Z