Can I use Apache as a reverse proxy from non-https ReactJS application to a https url?
The idea is as follows; I have a ReactJS application that communicates with another application (Oracle Hyperion). The problem with the communication part is that the Hyperion server does not support CORS. To deal with this problem, I am using Apache as a reverse proxy, and adding the CORS header for all responses.
All what I tested before was done on two non-secured servers, both urls were http.
Now I need to move to production, where the Hyperion application is already using https, and my React app will be secured soon. The communication is not working, and I am getting 500 Internal Error for requests.
My question is: is this the expected behavior when trying to use the reverse proxy between non-secure and secure servers? Do I need to do anything other that get a certificate and use port 443 for the React app? Also is there a temporary fix to get this working?
Here is a sample of the apache configuration I am using
<Location "/api/forms/approved">
ProxyPass "http://URL:Port/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/dataexport/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
For production one, I replace http with https, and the URL:Port part with the serverName.
<Location "/api/forms/approved">
ProxyPass "https://myservername/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
reactjs apache ssl-certificate
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
add a comment |
The idea is as follows; I have a ReactJS application that communicates with another application (Oracle Hyperion). The problem with the communication part is that the Hyperion server does not support CORS. To deal with this problem, I am using Apache as a reverse proxy, and adding the CORS header for all responses.
All what I tested before was done on two non-secured servers, both urls were http.
Now I need to move to production, where the Hyperion application is already using https, and my React app will be secured soon. The communication is not working, and I am getting 500 Internal Error for requests.
My question is: is this the expected behavior when trying to use the reverse proxy between non-secure and secure servers? Do I need to do anything other that get a certificate and use port 443 for the React app? Also is there a temporary fix to get this working?
Here is a sample of the apache configuration I am using
<Location "/api/forms/approved">
ProxyPass "http://URL:Port/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/dataexport/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
For production one, I replace http with https, and the URL:Port part with the serverName.
<Location "/api/forms/approved">
ProxyPass "https://myservername/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
reactjs apache ssl-certificate
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
add a comment |
The idea is as follows; I have a ReactJS application that communicates with another application (Oracle Hyperion). The problem with the communication part is that the Hyperion server does not support CORS. To deal with this problem, I am using Apache as a reverse proxy, and adding the CORS header for all responses.
All what I tested before was done on two non-secured servers, both urls were http.
Now I need to move to production, where the Hyperion application is already using https, and my React app will be secured soon. The communication is not working, and I am getting 500 Internal Error for requests.
My question is: is this the expected behavior when trying to use the reverse proxy between non-secure and secure servers? Do I need to do anything other that get a certificate and use port 443 for the React app? Also is there a temporary fix to get this working?
Here is a sample of the apache configuration I am using
<Location "/api/forms/approved">
ProxyPass "http://URL:Port/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/dataexport/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
For production one, I replace http with https, and the URL:Port part with the serverName.
<Location "/api/forms/approved">
ProxyPass "https://myservername/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
reactjs apache ssl-certificate
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
The idea is as follows; I have a ReactJS application that communicates with another application (Oracle Hyperion). The problem with the communication part is that the Hyperion server does not support CORS. To deal with this problem, I am using Apache as a reverse proxy, and adding the CORS header for all responses.
All what I tested before was done on two non-secured servers, both urls were http.
Now I need to move to production, where the Hyperion application is already using https, and my React app will be secured soon. The communication is not working, and I am getting 500 Internal Error for requests.
My question is: is this the expected behavior when trying to use the reverse proxy between non-secure and secure servers? Do I need to do anything other that get a certificate and use port 443 for the React app? Also is there a temporary fix to get this working?
Here is a sample of the apache configuration I am using
<Location "/api/forms/approved">
ProxyPass "http://URL:Port/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/dataexport/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
For production one, I replace http with https, and the URL:Port part with the serverName.
<Location "/api/forms/approved">
ProxyPass "https://myservername/HyperionPlanning/rest/11.1.2.4/applications/MOF_BT/formName"
Header add "Access-Control-Allow-Origin" "*"
</Location>
reactjs apache ssl-certificate
reactjs apache ssl-certificate
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
asked Nov 27 '18 at 7:51
Karim TahaKarim Taha
3419
3419
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53495011%2fcan-i-use-apache-as-a-reverse-proxy-from-non-https-reactjs-application-to-a-http%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53495011%2fcan-i-use-apache-as-a-reverse-proxy-from-non-https-reactjs-application-to-a-http%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
