Disable SSL?

TrevorSaldana

The server will be hosted behind a reverse proxy with the external connection running over SSL, but want to enable regular HTTP traffic on the internal network. If this possible to disable the forced SSL?

nebulon

Hi @TrevorSaldana

this is not supported as by default the nginx reverse proxy on Cloudron will always redirect the browser to https. The certs from LetsEncrypt should also work just fine on internal network. Is there any specific reason why you need unencrypted connections to work?

girish

Is this some creative spam ? Why are there p0rn links? I have removed the links.

murgero

@girish Either that account was hacked or this is advanced spam - either way you should disable the account until the user can re-verify their email.

potemkin_ai

@nebulon the use case for this, is to host cloudron behind reverse proxy server. Some dumper version of Cloudflare, that can't move SSL back and forward, but will take care on SSL on itself (like caddy server).

I understand nginx & certbot has to be adjusted for that - is there any considerations as of latest version? Could it be done in some nice way, as of v7 or v8 probably?

nebulon

There are no new changes around that and none are planned so far. Still not fully understanding why having a valid cert for Cloudron to talk to a CDN of sorts in front of it is an issue.

potemkin_ai

For example, because I can't close it with my Web Application Firewall - caddy based.

But, I was checking nginx config for 443 port and I understand now why it's not planned - it would require quite a lot of changes.