The first stumbling block was to get passenger and apache to play nice with SSL on OSX
I am running Leopard (not SNOW Leopard) and here is what I did to get it to work. I couldn't find anything specific on the net about this, so I thought I'd chuck this up here. There may be nicer, better ways of doing this.
1 - Create the cert
Apple has a page on creating a cert. This all worked fine except the locations aren't right. This page must be for Tiger.
For Leopard apache is in /etc/apache2 (or /private/etc/apache2 depending on your installation).
It all seemed to work fine for me as written apart from that.
You end up with a ssl.key directory in your apache2 directory. You may wish to rename this domain.ssl.key if you are doing multi domain development. I am, but this is the only domain I wanted to check ssl on.
2 - Apache and SSL
This turned out to be easier than expected, but everything's easy when you know how!
All I needed to do is put this line around line 40:
You add the Listen 443
3 - Passenger files
I did this by hand. As far as I know you can't do this via the prefpane,
I have used the PrefPane to create the vhosts file.
sudo vi passenger_pane_vhosts/mydomain.local.vhost.conf
ServerAlias mydomain.local es.mydomain.local en.mydomain.local
Allow from all
# SSL Configuration
SSLOptions +FakeBasicAuth +ExportCertData +StdEnvVars +StrictRequire
#Self Signed certificates
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
Basically what you do is copy all the stuff from the
Just point the crt, key and ca.crt files to the ones you created in step 1 from the apple doc.
That's it! You should be ready to go!
Let me know if there are any errors in this and I'll correct them... I wasn't making notes as I went along, so this is done from looking back, so maybe I've left something out.