Https for web app

I have three web apps that I use: an accounting app, an investment management app, and a statement viewer app. I want the user to be able to connect to them without getting an ‘unsecure site’ message.

So, I installed snapd and certbot, and my web server does get a certificate, and the default web page shows a secure connection with no warning, but my apps do have the warning…

How do I get the apps to see / utilize the secure / certificate?

Are you using a reverse proxy to publish your apps or direct access to Xojo?

If direct then you can use the command parameters for SSL/certificates on launch, documented here:
https://docs.xojo.com/WebApplication

If you are publishing behind a reverse proxy (like NGINX) then you need to setup the proxy site to use SSL.

A lot of Xojo developers also use Lifeboat to simplify this process: Strawberry Software - Lifeboat

2 Likes

http://docs.xojo.com/UserGuide:SSL_for_Web_Apps

Instructions for using certbot with Xojo apps while not using a proxy (CentOS 7 specific, but can be adapted easily) and automatically updating certs with cron:

1 Like

Ok, I must still be doing something wrong…

I have three - four different programs on my server, each accessed by a different port… would that be the reason that they will not load as an https page?

Lifeboat looks like a good idea, however, it does not like my linux version (mint) even though it is an Ubuntu derivative (20.2)

Sorry, Lifeboat won’t even attempt with flavors I haven’t tested / allowed it to operate with. This makes it easier for users to just click-and-go without having to research flavors.

Mint has gone under my radar so far. It looks like neither of the two major cloud providers that I test things on offer Mint as an available distro. From the bits I’ve gathered Googling just now, Mint is not really geared for a server environment.

I can get you from zero to deployed with SSL on AWS Lightsail or Digital Ocean with these less than five minute videos, but you’ll need a server flavor of Linux.

If there’s anything else I can help with regarding Lifeboat please let me know!

2 Likes

Yes, probably not really geared for a server; just happened to be the distro I am most familiar with. I have considered changing the server over, but I have added / configured many things on it that i have not had the time to build a new version.

Gary, the Xojo stand-alone webapp has it’s own built in web server. So when the url request hits your router the webapp is listening on that port(not 80). So the answer is, you need to add your certificate in the same folder as the webapp executable. Do that for each webapp and make sure your app is setup for secure connection. Also, I think Xojo might require that you combine the cert and key into one file. Check the docs to make sure.
Thanks