Quick and Dirty SSL for a Rails app

philip_rhoades · October 28, 2011, 12:56am

People,

To improve security for things like SquirrelMail and RoundCubeMail, I can just place the mail app directory into the Apache SSL dir, add some stuff to /etc/httpd/conf.d/ssl.conf and it just works when I point the browser using "https: . . .". Is there a quick method like that for Rails apps? ie not having to make any changes to the Rails app itself? I can't get it to work (I am using Apache and Passenger on Fedora 14 x86_64).

Thanks,

Phil.

Tim_Shaffer2 · October 28, 2011, 11:58am

Well provided you don’t have any code in your application that won’t work with https, you should be good to go.

Just make sure the domain you are using to access your Rails application is SSL protected (via Apache, load balancer, or other means) and then simply access it using https.

Brandon_Black · October 28, 2011, 11:21pm

See here: Configuring Rails 3 to use HTTPS and SSL — Simone Carletti