Skip to main content
Solved

How to configure redirection URL when using AWS's ALB with SSL

  • October 4, 2022
  • 7 replies
  • 475 views
T
Forum|alt.badge.img

Hello.

 

I'm trying to host FME Server under AWS's Application Load Balancer (ALB).

 

A SSL certification (which is provided by AWS) is attached to the ALB and ALB listens to 443 port.

The EC2 insance runs FME web application on the standard HTTP port (80).

 

Let's say the domain I host FME Server is mysite.com.

When I open https://mysite.com , the browser redirects to http://mysite.com/fmeserver/ (port 80) instead of https://mysite.com/fmeserver/ .

 

How can I configure FME Server web application to redirect to https ?

 

EDIT:

I'm using Ubuntu 20.04.

FME Server installer is https://downloads.safe.com/fme/2022/fme-server-2022.1.2-b22627-linux-x64~ubuntu.20.04.run

Best answer by takashige

I solved the problem.

 

After all, all I had to do was changing proxyPort to "443" and scheme to "https" in <FMEServerDir>\\Utilities\\tomcat\\conf\\serer.xml.

 

Thank you.

 

 

This post is closed to further activity.
It may be an old question, an answered question, an implemented idea, or a notification-only post.
Please check post dates before relying on any information in a question or answer.
For follow-up or related questions, please post a new question or idea.
If there is a genuine update to be made, please contact us and request that the post is reopened.

7 replies

dustin
Influencer
Forum|alt.badge.img+31
  • dustinInfluencer
  • Influencer
  • October 4, 2022

Configuring for HTTPS (safe.com) This documentation should be helpful to you.

T
Forum|alt.badge.img
  • takashige
  • Author
  • October 5, 2022

Configuring for HTTPS (safe.com) This documentation should be helpful to you.

Thank you for answering!

 

I read the documentation.

In my case ( which is a standard way to host EC2 with SSL in AWS), SSL certificate is not attached to the EC2 instance but to the load balancer (ALB) .

EC2 instance listens to 80 port.

ALB listens to 443 port and forwards requests to EC2's 80 port.

 

Do I still have to flow the steps in the document above?

richardatsafe
Safer
Forum|alt.badge.img+10

Thank you for answering!

 

I read the documentation.

In my case ( which is a standard way to host EC2 with SSL in AWS), SSL certificate is not attached to the EC2 instance but to the load balancer (ALB) .

EC2 instance listens to 80 port.

ALB listens to 443 port and forwards requests to EC2's 80 port.

 

Do I still have to flow the steps in the document above?

Hi @takashige​ ,

 

It's up to you whether you want to encrypt FME Server or not. A lot of customers are happy having the ALB deal with the certificates and sending HTTP request to the server. If you want to configure FME Server for HTTPS then you will also have to change the ALB redirects to use HTTPS. Either way, though your Services will need updating to reflect the ALB URL. https://docs.safe.com/fme/html/FME_Server_Documentation/AdminGuide/Set-Up-Load-Balancer.htm

T
Forum|alt.badge.img
  • takashige
  • Author
  • October 7, 2022

Thank you for answering!

 

I read the documentation.

In my case ( which is a standard way to host EC2 with SSL in AWS), SSL certificate is not attached to the EC2 instance but to the load balancer (ALB) .

EC2 instance listens to 80 port.

ALB listens to 443 port and forwards requests to EC2's 80 port.

 

Do I still have to flow the steps in the document above?

Hi, @richardatsafe​ 

 

Thank you for answering.

 

I've already followed the steps in "Configure FME Server with the Load Balancer URL" of the URL you mentioned.

 

I thought I could set redirection url somewhere in fmeServerConfig.txt or Web UI.

But it seems I was wrong.

I'm sorry for my poor understanding of English (which is not my 1st language) but let me confirm again. 🙏

 

> you will also have to change the ALB redirects to use HTTPS

 

So one of the collect setting for my case is ...

 

  1. ALB listens to 443 port
  2. user access to https://mysite.com
  3. ALB forwards the request to EC2's port 80
  4. Redirection url is http://mysite.com/fmeserver/ (port 80)
  5. ALB redirects the request on 80 port to 443

 

Am I right?

 

I'll try a bit more setting ALB on 443 port and EC2 on 80.

If I have no luck, I'll set EC2 on 443 port with self-signed SSL certificate .

 

Thank you again.

 

 

 

 

T
Forum|alt.badge.img
  • takashige
  • Author
  • Best Answer
  • October 11, 2022

I solved the problem.

 

After all, all I had to do was changing proxyPort to "443" and scheme to "https" in <FMEServerDir>\\Utilities\\tomcat\\conf\\serer.xml.

 

Thank you.

 

 

takashi
richardatsafe
Safer
Forum|alt.badge.img+10

I solved the problem.

 

After all, all I had to do was changing proxyPort to "443" and scheme to "https" in <FMEServerDir>\\Utilities\\tomcat\\conf\\serer.xml.

 

Thank you.

 

 

Thanks for posting the answer. I see where you are going with this now. Typically we only see the need for the server.xml configuration if you are using Azure AD or it's a gateway vs a load balancer. I'll add to the documentation to make this recommendation across the board for all load balancers / reverse proxies.

takashi
Celebrity
  • takashiCelebrity
  • July 22, 2025

Hi ​@takashige ,

Thank you for your post. This solved my customer’s trouble :-)

Why not inspect features with Visual/Data Preview and Feature/Record Information before writing them into a destination dataset?

Community Stats

32,120
Posts
121,954
Replies
39,772
Members

Latest FME

Terms & ConditionsCookie settingsAccessibility statement
A product of
Safe Software respectfully acknowledges that we live, learn and work on the traditional and unceded territories of the Kwantlen, Katzie, and Semiahmoo First Nations.