Hi,
I've installed and configured redmine in a subdirectory of my site:
http://example.com/redmine
I'm using apache and mongrel cluster webservers and I am trying to configure them to use SSL. The site mostly works fine, I can view all the pages using SSL. "Home", "My page" and "Projects" all link to SSL pages. However, when I submit a change, or click the 'Sign Out' link, I am redirected to the http version of the page (The sign out link is: https://example.com/redmine/logout but I am then redirected to the http version).
My apache configuration:
# Config file for redmine
RequestHeader set X_FORWARDED_PROTO “https”
RewriteLog /tmp/myapp_rewrite_log
RewriteLogLevel 9
<Location /redmine>
SSLRequireSSL
RewriteEngine On
Options +FollowSymlinks
# Redirect non-static requests to cluster
RewriteCond %{DOCUMENT_ROOT}/%{REQUEST_FILENAME} !-f
RewriteRule ^/(.*)$ balancer://redmine_cluster%{REQUEST_URI} [P,QSA,L]
</Location>
<Proxy balancer://redmine_cluster>
BalancerMember http://127.0.0.1:3000
BalancerMember http://127.0.0.1:3001
BalancerMember http://127.0.0.1:3002
BalancerMember http://127.0.0.1:3003
BalancerMember http://127.0.0.1:3004
</Proxy>
There are a couple of links related to this:
http://www.redmine.org/issues/1145
http://www.redmine.org/wiki/redmine/FAQ#Why-does-Redmine-use-http-links-when-I-want-it-to-use-https-links-in-Apache-SSL
Both suggest adding:
RequestHeader set X_FORWARDED_PROTO “https”
As you can see, I have done this, and restarted both apache and mongrel but it does not appear to help.
Does anyone know how I can fix this problem?
Thanks,
Dan Scott
http://danieljamesscott.org
Broken https links - form POSTs and "Sign Out"