Object Storage - Ativar HTTPS em um site estático usando um domínio personalizado (EN)

Bases de conhecimento

KB0058078

Object Storage - Ativar HTTPS em um site estático usando um domínio personalizado (EN)


Icons/System/eye-open Created with Sketch. 245 visualizações 06.06.2023 Cloud / Object Storage S3

Objective

OVHcloud Object Storage can be used to host a static website inside an Object Storage bucket.

A static website contains only static content (HTML pages, images, videos, client side scripts) whereas a dynamic website relies on server-side processing to process data and help render content.

However, OVHcloud Object Storage static website hosting does not support HTTPS. If you want to use HTTPS, you can use OVHcloud Load Balancer to serve a static website hosted on OVHcloud Object Storage and act as an SSL gateway.

The following document will explain how to configure your website and the OVHcloud Load Balancer to enable HTTPS.

Requirements

The following are the prerequisites to have in order to enable https:

Instructions

Step 1 - Configuring the Load Balancer

Step 1.1 - Add your certificate

Log in to the OVHcloud Control Panel, go to the Bare Metal Cloud section and click Load Balancer.

Select your Load Balancer from the list, click the SSL certificates tab then click Add an SSL certificate.

Upload certificate

Upload certificate

Optionally, you can also order a free Let's Encrypt certificate via the "Order an SSL certificate" button.

Step 1.2 - Configure a server cluster

You now need to configure a server cluster and add it to your Load Balancer. A server cluster is a pool of backend machines that will handle the workload.

Still from the Load Balancer section of the OVHcloud Control Panel, click the Server clusters tab then click Add a server cluster.

server custer configuration

Enter the configuration of the new server cluster:

  • Name (optional)
  • Protocol: HTTP
  • Port: 80
  • Datacenter: Choose the region in which you have hosted your website

server custer configuration

You now need to add servers to your server cluster. Click the Add a server button.

server custer configuration

Enter the configuration information of your server:

  • Name (optional)
  • IPv4 address: Enter the public IP associated with your static website default URL in the form of {bucket}.s3-website.{region}.io.cloud.ovh.net

You can retrieve this IP address by doing a dig command on the URL.

Example: using dig command

lxxxx@LWI1XXXXXX:~$ dig my-site.s3-website.gra.io.cloud.ovh.net

; <<>> DiG 9.16.1-Ubuntu <<>> my-site.s3-website.gra.io.cloud.ovh.net
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22041
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;my-site.s3-website.gra.io.cloud.ovh.net. IN A

;; ANSWER SECTION:
my-site.s3-website.gra.io.cloud.ovh.net. 3600 IN A 141.95.161.77

;; Query time: 12 msec
;; SERVER: 10.15.25.129#53(10.15.25.129)
;; WHEN: Mon Jun 05 16:09:56 CEST 2023
;; MSG SIZE  rcvd: 84

Example: using host command

lxxxx@LWI1XXXXXX:~$ host my-site.s3-website.gra.io.cloud.ovh.net
my-site.s3-website.gra.io.cloud.ovh.NET has address 141.95.161.77

server custer configuration

Step 1.3 - Configure your front-ends

The next steps consists in adding front-ends to your Load Balancer. A front-end will be the internet facing element of your Load Balancer and is responsible for handling and routing incoming requests.

In the Load Balancer section of the OVHcloud Control Panel, click the Front-ends tab then click Add a front-end.

frontend configuration

Add 2 frontends:

  • One frontend whose sole purpose is to handle all incoming HTTP requests and redirect them to your domain name in HTTPS
    • name (optional)
    • protocol: HTTP
    • port: 80
    • datacenter: all
    • default server cluster: none
    • advanced settings > HTTP Redirection: https://<your_domain_name>
  • One frontend that will handle all incoming HTTPS requests and perform the role of the SSL gateway
    • name (optional)
    • protocol: HTTPS
    • port: 443
    • datacenter: the region where your bucket sits
    • default server cluster: the server cluster previously created
    • certificate: the certificate that you created
    • advanced settings > HTTP Header: Host <default_website_url> in the form <bucket>.s3-website.<region>.io.cloud.ovh.net

frontend configuration

Step 1.4 - Apply changes

Once you created and configured all the ressources, do not forget to click the Apply configuration button to apply all the changes to the Load Balancer.

apply LB configuration

Step 2: Configure your DNS

This section is relevant only if your domain name is registered at OVHcloud. If you have an external domain name, please check with your provider.

CLick the Web Cloud tab of your OVHcloud Control Panel and select your domain name from the Domain names section.

Open the DNS zone tab.

DNS configuration

Edit the two A records to add the public IP address of your Load Balancer.

DNS configuration

DNS configuration

DNS configuration

You can find the public IP address of your Load Balancer on the home page of the Load Balancer section in the OVHcloud Control Panel.

DNS configuration

Step 3: Test your website

Check that the website and the redirect work properly. Open a private browser to ensure that you do have a clean cache and type your domain name.

Example:

Testing the website

Go further

How to configure your OVHcloud Load Balancer

How to configure your DNS zone

If you need training or technical assistance to implement our solutions, contact your sales representative or click on this link to get a quote and ask our Professional Services experts for assisting you on your specific use case of your project.

Join our community of users.

Artigos relacionados