Configuring HTTP Secure (HTTPS) and HTTP
 |
This topic is applicable to single-server environments only.
|
By default, HTTP is enabled and HTTPS is disabled in the provided ThingWorx images. This is useful for testing and development, but not for use in production. PTC strongly recommends enabling HTTPS if you intend to utilize it in a production scenario to appropriately secure your ThingWorx Platform.
Configure HTTPS for Docker Images
|
|
You must provide a keystore to start the container if HTTPS is enabled. Otherwise, the container exits.
|
1. Copy the keystore file containing your HTTPS certificates to the Docker-mounted ThingworxPlatform folder. The volume mounts are relative to docker-compose files. This is the location where the logs and configuration files are stored to enable persistence in the containers.
By default, the keystore must be named keystore.jks. You can override this with the SSL_KEYSTORE_FILENAME environment variables described later.
For the example Docker Compose files, copy the file here:
./thingworx-storage/shared/ThingworxPlatform
2. Make sure the Docker Compose file has an environment variable SSL_KEYSTORE_PASSWORD set to the encryption password of your keystore and HTTPS_ENABLED is set to true.
3. Make sure port 8443:8443 is in the ports section of your Docker Compose file.
Configure HTTP for Docker Images
1. In the Docker Compose file, make sure an environment variable HTTP_ENABLED is set to true or false, depending on your requirements.
The default is true.
2. Make sure port 8080:8080 is in the ports section of your Docker Compose file.