Routing requests from a plug-in to a proxy server
This page provides information on setting up a Web server plug-in to route requests to a proxy server.
An administrator may choose to set up a Web server, such as IBM HTTP Server, with the Web server plug-in as a front-end to the proxy server. The plug-in configuration file for such a topology cannot use the traditional plug-in configuration generation mechanism if the requests are routed through the proxy server.
To generate plugin-cfg.xml to use with the Web server plug-in to route through the proxy server, complete the
- From the admin console ...
Servers > Server Types > WebSphere proxy servers > proxy_server_name > HTTP proxy server settings > Proxy settings .
- In the Generate plug-in configuration drop-down menu, select the appropriate scope.
- If we have a script that manually copies plugin-cfg.xml from the node to the plug-in installation location, enter the path to the script in the Plugin config change script field.
- In the Trusted Security Proxy field, add the hostname or IP address of the node for the plug-in that serves as the trusted intermediary for the proxy server.
- Click OK.
- Disable the automatic propagation of the plug-in if we are using IBM HTTP Server with remote administration. From the admin console ...
Servers > Server Types > Web Servers > web_server_name > Plug-in properties. Deselect Automatically propagate plugin configuration file. This will prevent WAS from copying the traditional plugin-cfg.xml file over the proxy server plugin-cfg.xml file.
- Save the changes.
- Stop and restart the proxy server. The plugin-cfg.xml file will be in the <install_root>/<profile_dir>/etc/ directory unless the plugin was generated at server scope. If we generated the plugin for the server scope, plugin-cfg.xml will be in the <install_root>/<profile_dir>/etc/<server_name> directory. If we do not have a script in the Plugin config change script field, manually copy plugin-cfg.xml to the plug-in.
Next steps
To verify that the proxy server trusts the Web server, add the host name or address of the Web server to the Trusted security proxies section on the Proxy Settings page in the admin console. To reach this page ...Servers > Server Types > WebSphere proxy servers > proxy_server_name > HTTP proxy server settings > Proxy settings
This enables the proxy server to honor the private headers that are set by the fronting intermediary server.