Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
admin:server_installation_3 [2023/06/12 11:55] – [Forcing mSupply client to connect to a specific mSupply Server] Ujwal Khatry | admin:server_installation_3 [2023/08/02 00:31] (current) – [SSL Certificate] Mark Glover | ||
---|---|---|---|
Line 176: | Line 176: | ||
=== Configure cache === | === Configure cache === | ||
- | **Edit** > **Database | + | **Edit** > **Settings** > **User settings for Data file** |
{{ : | {{ : | ||
Line 276: | Line 276: | ||
+ | ==== SSL Certificate ==== | ||
+ | The mSupply server also has a webserver as mentioned [[web_interface: | ||
+ | |||
+ | It is recommended that a public facing web server should have an SSL certificate installed. For the mSupply server a ' | ||
+ | |||
+ | Theses files needs to be stored inside the folder C:\Program Files\mSupply\mSupply Server\Server Database | ||
+ | |||
+ | {{ : | ||
+ | |||
+ | The cert.pem file contains the certificate in the following format and can have the root as well as the intermediate certificate. | ||
+ | |||
+ | < | ||
+ | -----BEGIN CERTIFICATE----- | ||
+ | MIIGUzCCBTugAwIBAgIRAP9nsdfsfdsdfYH0oEZgg3k28WUoYQgQwDQYJKoZIhvc | ||
+ | gY8xCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO | ||
+ | BgNVBAcTB1NhbGZvcassdsdmQxGDAWBgNVBAoTsdfsD1NlY3RpZ28gTGltaXRlZD | ||
+ | AxMuU2VjdGlnbyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD | ||
+ | QTAeFw0yMzA2MTYwMDAwMdsadsdDBaFw0yNDA2MTUyMzU5NTlaMCExHzAdBgNVB | ||
+ | Junk | ||
+ | -----END CERTIFICATE----- | ||
+ | |||
+ | -----BEGIN CERTIFICATE----- | ||
+ | MIIGEzdddhuyuyuyuCCA/ | ||
+ | iDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0pl | ||
+ | cnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNV | ||
+ | BAMTJVVTRVJUcnVzdCBSU0EgQsdsd2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhc | ||
+ | MTAyMDAwMDAwWhcNMzAxMjMxMjM1OTU5WjCBjzELMAkGA1UEBhMCR0IxGzAZBgNV | ||
+ | Junk | ||
+ | -----END CERTIFICATE----- | ||
+ | </ | ||
+ | |||
+ | The the key.pem file contains | ||
+ | |||
+ | < | ||
+ | -----BEGIN PRIVATE KEY----- | ||
+ | MIIEvAIBADANBgkasasdfqhkiG9w0BhgghAQEFAASCBKYwggSiAgEAAoIBAQCqPA | ||
+ | TZB5GnFAODhHMTU+pqGD8eS6NOzWwhoyb2dvZv1w2Gh6fcprPUpATltvcMe8q+fe | ||
+ | +ITiYylKfcs2nNYyirr2sdfsdfSPGMKR277MW6G7etFCGjBH/ | ||
+ | e9oRf/ | ||
+ | CTvUxUF6Niul/ | ||
+ | iC20nTBKweefzPg4Uo9d6DdhQD7xdklD1SXlcTgEXpa0Cc/ | ||
+ | junk== | ||
+ | -----END PRIVATE KEY----- | ||
+ | </ | ||
+ | |||
+ | More recently we have moved towards using Caddy server software which setup a reverse proxy server which use Let's Encrypt to automatically update SSL certificates. This will avoid the need to manually watch and update expiring SSL | ||
==== Installing mSupply Client ==== | ==== Installing mSupply Client ==== | ||
Needed: | Needed: | ||
Line 409: | Line 455: | ||
* Now when you start the mSupply client, it will know where the mSupply server is and will look for the IP : 192.168.3.200 | * Now when you start the mSupply client, it will know where the mSupply server is and will look for the IP : 192.168.3.200 | ||
- | {{ : | + | {{ : |
==== mSupply Server configuration ==== | ==== mSupply Server configuration ==== |