Tag: HTTP to HTTPS Redirect

Let’s Encrypt Auto Renewal Fails with Redirect Enabled

Post author By Brian Lakin
Post date June 6, 2022

Title

Let’s Encrypt Auto Renewal Fails with Redirect Enabled

Description

If you are using Let’s Encrypt with HTTPS Redirect enabled the auto renewal can provide random internal IP addresses that fail to renew.

Product

WebService 20.06.2.0 to current 22.03.02.0

Steps to Reproduce

Engineering was able to Reproduce this behavior and determined that Redirect should be disabled until this is resolved.

Expected Results

Renewal should work with HTTPS redirect enabled.

Actual Results

Auto Renewal Fails.

Solution

If Auto Redirect is enabled then disabled it. Make sure to apply this and restart the services.
A fix will be available in the 22.06 release

See trac ticket 23194 or Jira ticket AESW-75 for additional details.

Tags Level2, HTTP to HTTPS Redirect, Lets Encrypt, 11000, SFA000034938, Webservice

Knowledge Support Support exacqVision Webservice Products

exacqVision Web Server HTTP Policy “Redirect to HTTP” Broken

Post author By Brian Lakin
Post date April 25, 2022

Description

HTTP to HTTPS redirect implementation is broken and always supplies and internal IP address for the redirect, leading to any and all redirect from outside of the local network to fail.

Product

exacqVision Web Server 22.03

Steps to Reproduce

Configure HTTPS on the web service, either external or ACME
Enable “Redirect to HTTPS” in the configuration
Attempt to connect to the web service via HTTP, e.g., `curl -v /login.web”>http://<url>/login.web`

Expected Results

HTTP requests are redirected to HTTPS

Actual Results

Fails to connect

Solution

Update exacqVision Web Service to 22.06 or above.

<br>

See AESW-620 for additional information.

<br>

Tags Webservice, HTTPS, SSL, Level2, HTTP, HTTP to HTTPS Redirect, 10071, SFA000034734

Knowledge Support Support Categories exacqVision Webservice Products

Redirecting HTTP to HTTPS with Web Sevice 9.0 – 19.06

Post author By Bhargav Atturu
Post date February 7, 2018

NOTE: This document does not apply to Web Service versions 19.09 and higher.

Best Practice is to use the latest version of Web Service available.

The way the web service handles HTTP requests when HTTPS is configured can be controlled with the webserver.tls.httpPolicy key:

Open the following file in a text editor:

Windows: C:\ProgramData\Webservice\conf\wfe.json
Linux: /etc/webservice/wfe.json

Add the “httpPolicy” line as shown below.

{<br>
    "webserver": {<br>
        "listen": 80,<br>
        "tls": {<br>
            "listen": 443,<br>
            "httpPolicy": "redirect",<br>
            [...]<br>
        }<br>
    }<br>
}

The key can be one of the following values:

“redirect” will cause HTTP traffic to be redirected to HTTPS
“disable” will reject any requests not sent over HTTPS

NOTE: This key will only take effect if after a Web Service restart, and if SSL is configured.

<br>

Tags HTTPS, WFE, KB-00092-92-210203, 702, HTTP to HTTPS Redirect, Web Service 19.06, Redirect, Guest, Web Service 9.0