Running the RPKI Validator UI and API behind an apache proxy

The following config may be useful to run the validator behind an apache proxy:

# 
# Minimalistic example to use Apache as a proxy to the RPKI Validator
# allowing to use Apache for handling HTTPS, and using basic authentication
# to disallow unauthenticated updates.
#
<VirtualHost _default_:*>

   <Location "/">
      AllowOverride AuthConfig

      AuthType Basic
      AuthBasicProvider file
      AuthUserFile /etc/httpd/passwd/passwords
      AuthName "Only known users are allowed to make updates"

      <LimitExcept GET>
         Require valid-user
      </LimitExcept>
      
      ProxyPass "http://localhost:8080/"    
      ProxyPassReverse "http://localhost:8080/"    
   </Location>

</VirtualHost>

You may also need to tweak your local firewall and/or se linux. I have needed the following on a test Centos system:

setsebool -P httpd_can_network_connect 1

Running the RPKI Validator UI and API behind an apache proxy - RIPE-NCC/rpki-validator-3 GitHub Wiki

⚠️ GitHub.com Fallback ⚠️

Running the RPKI Validator UI and API behind an apache proxy - RIPE-NCC/rpki-validator-3 GitHub Wiki

⚠️ **GitHub.com Fallback** ⚠️

⚠️ GitHub.com Fallback ⚠️