与“混合内容”的问题

Question

keycloak Apache服务器的配置有配置keycloak背后我的Apache服务器的问题，

混合内容：在 “https://dev.mydomain.com/auth/admin/master/console/”加载页面上 HTTPS，但要求一个不安全的脚本 'http://dev.mydomain.com/auth/resources/1.7.0.final/admin/keycloak/js/controllers/groups.js'。 此请求已被阻止;内容必须通过HTTPS提供。

我的Apache配置，

ServerName dev.mydomain.com 
ServerAdmin dev@mydomain.com 



SSLEngine on 
SSLCertificateFile /opt/mydomain/domains/dev.mydomain.com/apache/dev.mydomain.com.crt 
SSLCertificateKeyFile /opt/mydomain/domains/dev.mydomain.com/apache/dev.mydomain.com.key 
SSLCertificateChainFile /opt/mydomain/domains/dev.mydomain.com/apache/dev.mydomain.com.ca-bundle 


DocumentRoot /opt/mydomain/domains/dev.mydomain.com/apache/htdocs 

<Directory /opt/mydomain/domains/dev.mydomain.com/apache/htdocs> 
Options Indexes FollowSymLinks 
AllowOverride None 
Order allow,deny 
Allow from all 
    Require all granted 
</Directory> 

ProxyRequests Off 

ProxyPreserveHost On 
RequestHeader set X-Forwarded-Proto "https" 
RequestHeader set X-Forwarded-Port "443" 

<Proxy https://dev.mydomain.com/* > 
    Order deny,allow 
    Deny from all 
    Allow from all 
</Proxy> 



ProxyPass /auth http://localhost:10082/auth nocanon 
ProxyPassReverse /auth http://localhost:10082/auth 

任何想法有什么不对？

Answer 1

您还需要为Enable SSL on a Reverse Proxy -> Configure WildFly

概述如果你找一个Wildfly CLI配置更新Wildfly配置，have a look here：

$ jboss-cli.sh -standalone --file=batch.cli 

# batch.cli 
embed-server --std-out=echo 
batch 
/subsystem=undertow/server=default-server/http-listener=default:write-attribute(name=proxy-address-forwarding,value=true) 
/subsystem=undertow/server=default-server/http-listener=default:write-attribute(name=redirect-socket,value=proxy-https) 
/socket-binding-group=standard-sockets/socket-binding=proxy-https:add(port=443) 
run-batch 
stop-embedded-server