Reverse Proxy

It is a best practice not to have the CASPClosedUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. RESTClosedRepresentational State Transfer (REST) - an architectural style that defines a set of constraints and properties based on HTTP. Web Services that conform to the REST architectural style, or RESTful web services, provide interoperability between computer systems on the Internet. API completely open to the internet. However, you may want to enable internet access to specific RESTClosedRepresentational State Transfer (REST) - an architectural style that defines a set of constraints and properties based on HTTP. Web Services that conform to the REST architectural style, or RESTful web services, provide interoperability between computer systems on the Internet. API endpoints, such as the mobile devices that use your CASPClosedUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. app.

To accomplish this task, it is possible to implement a reverse proxy for all the endpoints that use the RESTClosedRepresentational State Transfer (REST) - an architectural style that defines a set of constraints and properties based on HTTP. Web Services that conform to the REST architectural style, or RESTful web services, provide interoperability between computer systems on the Internet. API. The reverse proxy redirects API calls going from the CASPClosedUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. participantClosedA member of any of the quorum groups. RESTClosedRepresentational State Transfer (REST) - an architectural style that defines a set of constraints and properties based on HTTP. Web Services that conform to the REST architectural style, or RESTful web services, provide interoperability between computer systems on the Internet. API endpoints to the server.

Use the following procedure to create the reverse proxy. This example shows which API’s should be open to make the system operational.

  1. Install Apache (or any other web server) on the device that you are using for the proxy.
  2. Create a file casp-apache.conf in the directory /etc/httpd/conf.d.
  3. The file should have the following contents.

    4. LoadModule proxy_module modules/mod_proxy.so
    LoadModule proxy_http_module modules/mod_proxy_http.so
    LoadModule headers_module modules/mod_headers.so
    Header set X-Content-Type-Options nosniff
    Header set Content-Security-Policy "default-src 'self' 'unsafe-inline'"

    <VirtualHost *:80>
    ProxyPreserveHost On
    ProxyPass /casp/api/v1.0/ep http://<CASP Server>/casp/api/v1.0/ep
    ProxyPassReverse /casp/api/v1.0/ep http://<CASP Server>/casp/api/v1.0/ep
    </VirtualHost>

    <VirtualHost *:443>
    ProxyPreserveHost On
    SSLEngine on
    SSLCertificateFile /etc/pki/tls/certs/localhost.crt
    SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
    ProxyPass /casp/api/v1.0/ep http://<CASP Server>/casp/api/v1.0/ep
    ProxyPassReverse /casp/api/v1.0/ep http://<CASP Server>/casp/api/v1.0/ep
    </VirtualHost>

    Note
    The default certificate that is installed by httpd is a self-signed certificate. This should be replaced with your production certificate.

  4. Restart httpd.

    5. sudo service httpd restart

  5. In the CASPClosedUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. app, use the URL of the proxy instead the server.

After entering the URL of the proxy in the CASPClosedUnbound’s Crypto Asset Security Platform (“CASP”) provides the advanced technology and the architecture to secure crypto asset transactions. app, if it connects, then the proxy is configured correctly.