Thanks for comments. The direction seems clear now!
FWIW, I expect to use Azure, for which this resource describes the use of a "sidecar" container with Nginx doing reverse proxy to enforce HTTPS: https://learn.microsoft.com/en-us/azure/container-instances/container-instances-container-group-ssl
Cheers, Adam
On 20/09/2023 14:21, Andrea Aime wrote:
In my experience HTTPS is managed in a proxy in front of GeoServer, which can be set up
using a docker-compose with the proxy being another docker image.
Here is an example of a compose with a proxy from the GeoSolutions docker image repository:
https://github.com/geosolutions-it/docker-geoserver/blob/master/docker-compose.yml
Slap on top of it an example of how to set up SSL certificates for nginx (a much more command find) and you're in business.
E.g. first link returned by a Google search: https://faun.pub/setting-up-ssl-certificates-for-nginx-in-docker-environ-e7eec5ebb418?gi=ca3c5d6589f0
Cheers
Andrea
On Tue, Sep 19, 2023 at 8:57 PM Adam Cooper <arc@anonymised.com> wrote:
I am exploring options for a relatively low-usage service
requiring low
levels of infrastructure setup and maintenance (the data is
related to a
local history society).
GeoServer docker image appears to be perfect except that I observe it
serves unencrypted data. This is not acceptable in 2023 on the
grounds
of security and privacy. I have not been able to find how to start
the
container such that HTTPS is the exclusive means of access.
Is this possible? (I think it really should be!)
Thanks in advance, Adam
_______________________________________________
Geoserver-users mailing list
Please make sure you read the following two resources before
posting to this list:
- Earning your support instead of buying it, but Ian Turton:
http://www.ianturton.com/talks/foss4g.html#/
- The GeoServer user list posting guidelines:
http://geoserver.org/comm/userlist-guidelines.html
If you want to request a feature or an improvement, also see this:
https://github.com/geoserver/geoserver/wiki/Successfully-requesting-and-integrating-new-features-and-improvements-in-GeoServer
Geoserver-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-users
--
Regards,
Andrea Aime
==GeoServer Professional Services from the experts!
Visit http://bit.ly/gs-services-usfor more information.==Ing. Andrea Aime @geowolfTechnical Lead
GeoSolutions Groupphone: +39 0584 962313
fax: +39 0584 1660272
mob: +39 339 8844549
https://www.geosolutionsgroup.com/
http://twitter.com/geosolutions_it
-------------------------------------------------------
Con riferimento alla normativa sul trattamento dei dati personali (Reg. UE 2016/679 - Regolamento generale sulla protezione dei dati “GDPR”), si precisa che ogni circostanza inerente alla presente email (il suo contenuto, gli eventuali allegati, etc.) è un dato la cui conoscenza è riservata al/i solo/i destinatario/i indicati dallo scrivente. Se il messaggio Le è giunto per errore, è tenuta/o a cancellarlo, ogni altra operazione è illecita. Le sarei comunque grato se potesse darmene notizia.This email is intended only for the person or entity to which it is addressed and may contain information that is privileged, confidential or otherwise protected from disclosure. We remind that - as provided by European Regulation 2016/679 “GDPR” - copying, dissemination or use of this e-mail or the information herein by anyone other than the intended recipient is prohibited. If you have received this email by mistake, please notify us immediately by telephone or e-mail