Skip to content

docs: add apache reverse-proxy example #6213

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 13 commits into from
Feb 16, 2023
Merged

docs: add apache reverse-proxy example #6213

Changes from 1 commit
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
1728e26
docs: apache reverse proxy
matifali Feb 14, 2023
3df101b
fixed to correctly pass WebSocket headers
matifali Feb 15, 2023
6be8c4e
Merge branch 'coder:main' into apache2-rev-proxy
matifali Feb 15, 2023
646c560
add a sample configuration file
matifali Feb 15, 2023
1706997
Merge branch 'apache2-rev-proxy' of https://github.com/matifali/coder…
matifali Feb 15, 2023
d533368
updating with suggestions
matifali Feb 15, 2023
c1ac6ec
Update coder.conf
matifali Feb 15, 2023
8780145
fix http to https redirection
matifali Feb 15, 2023
53772e6
fix: upgrade http to https
matifali Feb 15, 2023
93c948f
Update examples/web-server/apache/README.md
matifali Feb 15, 2023
61f5c99
add other dns providers documentation link
matifali Feb 15, 2023
a2c1676
Merge branch 'main' into apache2-rev-proxy
bpmct Feb 15, 2023
c87314f
Merge remote-tracking branch 'origin/main' into pr/matifali/6213
bpmct Feb 16, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
updating with suggestions
  • Loading branch information
@matifali
matifali committed Feb 15, 2023
commit d5333686f7dd7fc8c7342e98bf5b6dcb2177053e
35 changes: 24 additions & 11 deletions examples/web-server/apache/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,9 +2,17 @@

## Requirements

1. Start a Coder deployment with a wildcard subdomain. See [this guide](https://coder.com/docs/v2/latest/admin/configure#wildcard-access-url) for more information.
1. Start a Coder deployment and be sure to set the following [configuration values](https://coder.com/docs/v2/latest/admin/configure):

2. Configure your DNS provider to point your YOUR_SUBDOMAIN and \*.YOUR_SUBDOMAIN to your server's public ip.
```console
CODER_HTTP_ADDRESS=127.0.0.1:3000
CODER_ACCESS_URL=https://coder.example.com
CODER_WILDCARD_ACCESS_URL=*coder.example.com
```

Throughout the guide, be sure to replace `coder.example.com` with the domain you intend to use with Coder.

2. Configure your DNS provider to point your coder.example.com and \*.coder.example.com to your server's public IP address.

> For example, to use `coder.example.com` as your subdomain, configure `coder.example.com` and `*.coder.example.com` to point to your server's public ip. This can be done by adding A records in your DNS provider's dashboard.

Expand Down Expand Up @@ -32,7 +40,7 @@

## Install and configure LetsEncrypt Certbot

1. Install LetsEncrypt Certbot: Refer to the [CertBot documentation](https://certbot.eff.org/instructions?ws=other&os=pip&tab=wildcard)
1. Install LetsEncrypt Certbot: Refer to the [CertBot documentation](https://certbot.eff.org/instructions?ws=apache&os=ubuntufocal&tab=wildcard). Be sure to pick the wildcard tab and select your DNS provider for instructions to install the necessary DNS plugin.

## Create DNS provider credentials

Expand All @@ -46,6 +54,12 @@
dns_cloudflare_api_token = YOUR_API_TOKEN
```

```console
mkdir -p ~/.secrets/certbot
touch ~/.secrets/certbot/cloudflare.ini
nano ~/.secrets/certbot/cloudflare.ini
```

3. Set the correct permissions:

```console
Expand All @@ -62,7 +76,7 @@

## Configure Apache

> This example assumes Coder is running locally on `127.0.0.1:3000` for the subdomain `YOUR_SUBDOMAIN` e.g. `coder.example.com`.
> This example assumes Coder is running locally on `127.0.0.1:3000` and that you're using `coder.example.com` as your subdomain.

1. Create Apache configuration for Coder:

Expand All @@ -74,8 +88,8 @@

```apache
<VirtualHost *:443>
ServerName dev.dietstyler.com
ServerAlias *.dev.dietstyler.com
ServerName coder.example.com
ServerAlias *.coder.example.com
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined

Expand All @@ -89,13 +103,12 @@
RewriteCond %{HTTP:Upgrade} websocket [NC]
RewriteRule /(.*) ws://127.0.0.1:3000/$1 [P,L]

SSLCertificateFile /etc/letsencrypt/live/dev.dietstyler.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/dev.dietstyler.com/privkey.pem
SSLCertificateFile /etc/letsencrypt/live/coder.example.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/coder.example.com/privkey.pem
</VirtualHost>
```

> Don't forget to change:
> `YOUR_SUBDOMAIN` by your (sub)domain e.g. `coder.example.com`
> Don't forget to change: `coder.example.com` by your (sub)domain

3. Enable the site:

Expand Down Expand Up @@ -130,4 +143,4 @@
sudo certbot renew -q
```

And that's it, you should now be able to access Coder at `https://YOUR_SUBDOMAIN`!
And that's it, you should now be able to access Coder at your sub(domain) e.g. `https://coder.example.com`.