Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Discuss
  3. Disable SSL?

Disable SSL?

Scheduled Pinned Locked Moved Solved Discuss
7 Posts 5 Posters 1.5k Views 5 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • T Offline
    T Offline
    TrevorSaldana
    Banned
    wrote on last edited by girish
    #1

    The server will be hosted behind a reverse proxy with the external connection running over SSL, but want to enable regular HTTP traffic on the internal network. If this possible to disable the forced SSL?

    1 Reply Last reply
    0
    • nebulonN Offline
      nebulonN Offline
      nebulon
      Staff
      wrote on last edited by
      #2

      Hi @TrevorSaldana

      this is not supported as by default the nginx reverse proxy on Cloudron will always redirect the browser to https. The certs from LetsEncrypt should also work just fine on internal network. Is there any specific reason why you need unencrypted connections to work?

      potemkin_aiP 1 Reply Last reply
      0
      • girishG Offline
        girishG Offline
        girish
        Staff
        wrote on last edited by
        #3

        Is this some creative spam 🙂 ? Why are there p0rn links? I have removed the links.

        murgeroM 1 Reply Last reply
        0
        • girishG girish

          Is this some creative spam 🙂 ? Why are there p0rn links? I have removed the links.

          murgeroM Offline
          murgeroM Offline
          murgero
          App Dev
          wrote on last edited by
          #4

          @girish Either that account was hacked or this is advanced spam - either way you should disable the account until the user can re-verify their email.

          --
          https://urgero.org
          ~ Professional Nerd. Freelance Programmer. ~

          1 Reply Last reply
          0
          • nebulonN nebulon

            Hi @TrevorSaldana

            this is not supported as by default the nginx reverse proxy on Cloudron will always redirect the browser to https. The certs from LetsEncrypt should also work just fine on internal network. Is there any specific reason why you need unencrypted connections to work?

            potemkin_aiP Offline
            potemkin_aiP Offline
            potemkin_ai
            wrote on last edited by
            #5

            @nebulon the use case for this, is to host cloudron behind reverse proxy server. Some dumper version of Cloudflare, that can't move SSL back and forward, but will take care on SSL on itself (like caddy server).

            I understand nginx & certbot has to be adjusted for that - is there any considerations as of latest version? Could it be done in some nice way, as of v7 or v8 probably?

            1 Reply Last reply
            0
            • nebulonN Offline
              nebulonN Offline
              nebulon
              Staff
              wrote on last edited by
              #6

              There are no new changes around that and none are planned so far. Still not fully understanding why having a valid cert for Cloudron to talk to a CDN of sorts in front of it is an issue.

              1 Reply Last reply
              0
              • potemkin_aiP Offline
                potemkin_aiP Offline
                potemkin_ai
                wrote on last edited by
                #7

                For example, because I can't close it with my Web Application Firewall - caddy based.

                But, I was checking nginx config for 443 port and I understand now why it's not planned - it would require quite a lot of changes.

                1 Reply Last reply
                0
                Reply
                • Reply as topic
                Log in to reply
                • Oldest to Newest
                • Newest to Oldest
                • Most Votes


                • Login

                • Don't have an account? Register

                • Login or register to search.
                • First post
                  Last post
                0
                • Categories
                • Recent
                • Tags
                • Popular
                • Bookmarks
                • Search