SSL configuration in Hive

Important! * currently, after the installation the WebUI is available both on HTTP and HTTPS independently of each other (without redirecting). This will be fixed in the next versions. * when you install the platform, you get self-signed certificates for HTTPS. We do not recommend using them.

You can configure SSL by one of the following methods:

  1. Upload SSL certificates in the PEM format to the directory /opt/hw-bw/bssl. These files will not be overwritten when upgrading to the next version. You can also store certificates in a different directory if the default directory does not suit you. To get more information, see option b.ssl.dir in the file /opt/hw-bw/config/user-template.ini on the platform.
  2. Configure proxy your own server before installation of the Hive. For example, configure nginx, which will proxy all requests for Hive. To install your proxy server on the same virtual machine, you need to change the following options: b.ssl.enabled,b.deck.ip.expose and b.deck.port.expose. Additionally, you can change the following parameters: b.deck.https.ip.expose and b.deck.https.port.expose.

Note: to apply changes in the configuration files, run the command /opt/hw-bw/bin/reconfig.

See also