In the Camunda BPM configuration file (mine is in production.yml
there are some properties to set:
server:
# https://docs.camunda.org/manual/latest/user-guide/camunda-bpm-run/#https
# do not use the provided certificate in production
ssl:
key-store: classpath:keystore.p12
key-store-password: camunda
key-store-type: pkcs12
key-alias: camunda
key-password: camunda
port: 8443
# https://docs.camunda.org/manual/latest/user-guide/security/#http-header-security-in-webapps
# https://docs.camunda.org/manual/latest/webapps/shared-options/header-security/
servlet.session.cookie:
secure: true
http-only: true
You will, of course, have to provide your own keystone and password, etc.
If you’re planning to use LetsEncrypt for the SSL cert, this post will help you with that aspect as well: Camunda Platform Run with Let's Encrypt
Best Regards,
dg