From d73265cdc76913b90561e631404fa42384e4e447 Mon Sep 17 00:00:00 2001
From: Khalu <Khalu@users.noreply.github.com>
Date: Mon, 12 Feb 2024 12:22:42 -0500
Subject: [PATCH] match nginx with other formatting, add httpd (#314)

Moves the summary of NGINX section to the top to match the others.
Added config section for Apache HTTPD.

Co-authored-by: keith <keith@swagler.casa>
---
 docs/config/reverse-proxies.md | 26 ++++++++++++++++++++++----
 1 file changed, 22 insertions(+), 4 deletions(-)

diff --git a/docs/config/reverse-proxies.md b/docs/config/reverse-proxies.md
index cc45ebfa9..3592c815c 100644
--- a/docs/config/reverse-proxies.md
+++ b/docs/config/reverse-proxies.md
@@ -25,7 +25,7 @@ services:
     volumes:
       - ./Caddyfile:/etc/caddy/Caddyfile:ro
       - ./caddy/data:/data
-      - ./caddy/config:/config 
+      - ./caddy/config:/config
     ports:
       - "80:80"
       - '443:443'
@@ -110,6 +110,10 @@ Please refer to the [official documentation](https://doc.traefik.io/traefik/user
 
 ## NGINX
 
+The SSL certificate is issued by Let's Encrypt. The [Certbot](https://certbot.eff.org/instructions) tool provides options for automatic updating upon expiration.
+At the very least you will need to adapt `server_name` and the `ssl_certificate/ssl_certificate_key` paths to match your setup.
+Please refer to their [official documentation](https://nginx.org/en/docs/) for further details.
+
 ```nginx title="NGINX Example Config"
 server {
   listen 443 ssl;
@@ -140,6 +144,20 @@ server {
 }
 ```
 
-The SSL certificate is issued by Let's Encrypt. The [Certbot](https://certbot.eff.org/instructions) tool provides options for automatic updating upon expiration.
-At the very least you will need to adapt `server_name` and the `ssl_certificate/ssl_certificate_key` paths to match your setup. 
-Please refer to their [official documentation](https://nginx.org/en/docs/) for further details.
+## Apache httpd
+
+Apache HTTP server can serve as a reverse proxy using [VirtualHosts](https://httpd.apache.org/docs/2.4/vhosts/examples.html). This snippet would be added to the bottom of httpd.conf. Certbot is supported on httpd but is not used in this example
+
+```<VirtualHost *:443>
+  ServerName budget.example.com
+  SSLProxyCheckPeerName off
+	SSLProxyVerify none
+  SSLEngine on
+  SSLProxyEngine on
+  SSLCertificateFile /etc/letsencrypt/live/example.com/fullchain.pem
+  SSLCertificateKeyFile /etc/letsencrypt/live/example.com/privkey.pem
+  ProxyPass / https://127.0.0.1:5006/ # this can be a remote host, or a container IP
+  ProxyPassReverse / https://127.0.0.1:5006/
+</VirtualHost>
+```
+