I'm following this manual to setup SSL authentication with a certificate on e.g. iphone that authenticates the connection to apache. (https://linuxconfig.org/apache-web-serv ... entication)
I have apache now running inside docker and used Sander's (Lokonli) workaround at viewtopic.php?p=289036&hilit=security#p289036 but it's not practical to keep inputting a 35char password
The idea is to put an unique signed certificate on a device (iphone ipad etc) which will authenticate the connection to my dashticz webpage from outside, if you dont have this certificate installed you cannot reach the webpage.
For the mentioned SSL authentication i need to enable a2enmod ssl which could be done via Dockerfile as something like this i think (following nelkinda.com);
Code: Select all
RUN ln -s ../mods-available/{ssl,expires,headers,rewrite}.load /etc/apache2/mods-enabled/ <-- will putting ssl there work?
I would also passthrough SSLVerifyClient and SSLVerifyDepth and SSLCACertificateFile for two-way SSL authentication, see link for exact apache conf
Is it possible to passthrough these via Dockerfile and dashticz.conf ?
Or is it much easier to setup apache locally? I'm running Dashticz next to Domoticz on a raspberry pi
Important for me is to be able to easily keep updating Dashticz and apache2
Could anyone please help me a bit on the right track, I keep reading but getting nowhere
Maikel