← Back to team overview

dhis2-devs team mailing list archive

[Branch ~dhis2-documenters/dhis2/dhis2-docbook-docs] Rev 455: Quickly fixed

 

------------------------------------------------------------
revno: 455
committer: Lars Helge Overland <larshelge@xxxxxxxxx>
branch nick: dhis2-docbook-docs
timestamp: Wed 2012-02-29 14:06:05 +0100
message:
  Quickly fixed
modified:
  src/docbkx/en/dhis2_implementation_guide_installation.xml


--
lp:~dhis2-documenters/dhis2/dhis2-docbook-docs
https://code.launchpad.net/~dhis2-documenters/dhis2/dhis2-docbook-docs

Your team DHIS 2 developers is subscribed to branch lp:~dhis2-documenters/dhis2/dhis2-docbook-docs.
To unsubscribe from this branch go to https://code.launchpad.net/~dhis2-documenters/dhis2/dhis2-docbook-docs/+edit-subscription
=== modified file 'src/docbkx/en/dhis2_implementation_guide_installation.xml'
--- src/docbkx/en/dhis2_implementation_guide_installation.xml	2012-02-27 15:21:26 +0000
+++ src/docbkx/en/dhis2_implementation_guide_installation.xml	2012-02-29 13:06:05 +0000
@@ -51,7 +51,7 @@
     <para>Make the startup script executable by invoking <code>chmod 755 bin/*</code> DHIS 2 can now be started by invoking <code>bin/startup.sh</code> The log can be monitored by invoking <code>tail -f logs/catalina.out</code> DHIS 2 can be stopped by invoking <code>bin/shutdown.sh</code></para>
   </section>
   <section>
-	  <title>NGINX</title>
+	  <title>nginx</title>
 	  <para>
       </para>
       <para><emphasis role="bold">Reverse Proxy</emphasis></para>
@@ -61,7 +61,7 @@
 	server_name  localhost;
 
 	location / {
-		proxy_pass         http://localhost:8081/;
+		proxy_pass         http://localhost:8080/;
 		proxy_redirect     off;
 		proxy_set_header   Host            $host;
 		proxy_set_header   X-Real-IP       $remote_addr;
@@ -70,10 +70,10 @@
 }]]></screen>
       </para>
       <para><emphasis role="bold">Encrypted connections with SSL</emphasis></para>
-	  <para>After tomcat is hidden behind the reverse proxy, its time to configure NGINX to use SSL. Using SSL for serving DHIS2 will give you more security since it encrypt the connection to the server, this is the same kind of security that can be found in gmail, facebook, etc.</para>
-	  <para>For configuring NGINX to use SSL, you will need a proper SSL certificate from an SSL provider, the cost of a certificate varies a lot depending on how secure you want it, but getting a cheap one from <emphasis role="italic">https://www.rapidsslonline.com</emphasis> should serve most purposes.</para>
-	  <para>When you have your certificate files (.pem and .key) you will need to place them in a location which is reachable for NGINX. A good location for this can be the same directory where your nginx.conf is located.</para>
-	  <para>Below is a nginx server block where the files are named server.pem and server.key, and it's using a reverse proxy from port 443 (HTTPS) to an internal DHIS2 instance running on port 8080.</para>
+	  <para>After tomcat is set up behind the reverse proxy, it is time to configure nginx to use SSL. Using SSL for serving DHIS 2 will provide better security since it encrypts the connection to the server.</para>
+	  <para>To configure nginx to use SSL you will need a proper SSL certificate from an SSL provider. The cost of a certificate varies a lot depending on encryption strength. An affordable certificate from <emphasis role="italic">https://www.rapidsslonline.com</emphasis> should serve most purposes.</para>
+	  <para>When you have your certificate files (.pem and .key) you will need to place them in a location which is reachable by nginx. A good location for this can be the same directory as where your nginx.conf file is located.</para>
+	  <para>Below is an nginx server block where the files are named server.pem and server.key and using a reverse proxy from port 443 (HTTPS) passed on to a DHIS 2 instance running on port 8080.</para>
 <screen><![CDATA[server {
 	listen       443;
 	server_name  localhost;
@@ -89,7 +89,7 @@
 	ssl_prefer_server_ciphers   on;
 
 	location / {
-		proxy_pass         http://localhost:8080/dhis;
+		proxy_pass         http://localhost:8080/;
 		proxy_redirect     off;
 		proxy_set_header   Host            $host;
 		proxy_set_header   X-Real-IP       $remote_addr;