Hi,

I am completely new to Osclass, just installed it yesterday for the first time and struggled heavily to get it running behind a reverse proxy.

My set-up is such that I usually put every "Web-App" into a container which are only allowed to talk over an internal virtual bridge and have an extra container talking to the internet acting as TLS endpoints and then forwarding the request unencrypted to the Web-App containers.

Usually, this works quite well, but in this case I had lots of "mixed" content problems when accessing the installer via the proxy, even though I put the external https address in there. The result was that the installer would not work as most of the javascript would not be loaded by my browser.

The interim solution was to use a ssh tunnel to unencrypted http:// localhost/ (WEB_PATH, sorry about the space, I'm not allowed to "external" links into a post  ).

However, this did not allow the page itself to load correctly (in the end, same problem with mixed content and thus no workable login page), and I needed to resort to using https between the proxy and the container plus also installing the signed certificate into the container. This will be a bit painful in the long run as I will most certainly have forgotten this as soon as the current Let's Encrypt certificate expires but well, I should be able to deal with this.

So, after this longish introduction, what is the "correct" way of using Osclass behind a reverse proxy and where did I stray off the beaten path?

Thanks a bunch in advance for any insight!