Forum OpenACS Q&A: Shibboleth configuration with apache2 and Nginx

Collapse
1: Shibboleth configuration with apache2 and Nginx
Posted by Gacalin Lufi on 03/17/26 10:03 AM
Hello everyone,

I am trying to configure Shibboleth in an environment where I use both Apache2 and NGINX, and I would need some clarification.

Specifically:
- Apache2 is used as the backend with the Shibboleth module (mod_shib)
- NGINX acts as a reverse proxy in front of Apache

Does anyone have experience with this kind of setup in a production environment?

Any configuration examples or suggestions are welcome.

Thanks in advance!

Collapse
2: Re: Shibboleth configuration with apache2 and Nginx (response to 1)
Posted by Antonio Pisano on 03/20/26 03:53 PM
Hello Gacalin,

can you please elaborate on how OpenACS or Naviserver come into the picture you describe?

All the best

Antonio

Collapse
3: Re: Shibboleth configuration with apache2 and Nginx (response to 1)
Posted by Gacalin Lufi on 03/25/26 02:20 PM
Hi Antonio,

we are setting up the integration with SPID.

Basically, when our login URL is called, Nginx works as a reverse proxy to Apache, which then invokes Shibboleth. After the authentication process, Shibboleth should create the headers with the user information, but at the moment we are not able to receive them on the application side.

So we are trying to understand where the headers are getting lost between Apache, Nginx and Naviserver/OpenACS.

Thanks.