Https Proxy for Realm Object Server 不起作用

proxy.https.enable: true  
proxy.https.listen_address: ::  
proxy.https.listen_port: 9443  
proxy.https.certificate_path: 'cert_path'
proxy.https.private_key_path: 'private_key_path'

Realm 对象服务器是由 "realm" 用户启动的，您应该检查该用户是否具有访问证书的权限。

以下是在 Ubuntu 16.04 上使用 letsencrypt 设置 https 的说明列表，也许它有助于确定您的问题：

1. 安装 ROS，让我们加密并生成证书

curl -s https://packagecloud.io/install/repositories/realm/realm/script.deb.sh | sudo bash

apt-get install realm-object-server-developer
apt-get install letsencrypt
letsencrypt certonly --standalone -d ${mydomain.com}
# set up permissions for the realm user on /etc/letsencrypt.
sudo groupadd ssl
sudo usermod -a -G ssl realm
sudo chgrp -R ssl /etc/letsencrypt
sudo chmod -R g=rX /etc/letsencrypt

2. 编辑配置以在"代理"部分中启用 ssl

/etc/realm/configuration.yml部分 ：

  https:
    ## Whether or not to enable the HTTPS proxy module. It enables multiplexing requests
    ## by forwarding incoming requests on a single port to all services.
    ## Note that even if it enabled, the HTTPS proxy will only start if supplied
    ## with a valid pair of certificates through certificate_path and private_key_path below.
    enable: true
    ## The path to the certificate and private keys (in PEM format) that will be used
    ## to set up the HTTPS server accepting connections.
    ## These configuration options are MANDATORY to start the HTTPS proxy module.
    certificate_path: '/etc/letsencrypt/live/${mydomain.com}/cert.pem'
    private_key_path: '/etc/letsencrypt/live/${mydomain.com}/privkey.pem'
    ## The address/interface on which the HTTPS proxy module should listen. This defaults
    ## to 127.0.0.1. If you wish to listen on all available interfaces,
    ## uncomment the following line.
    listen_address: '::'
    ## The port that the HTTPS proxy module should bind to.
    # listen_port: 9443

3. 连接到仪表板并创建一个帐户。( 转到https://${mydomain.com}:9443 (

4. 转到浏览器并选择"连接到对象服务器"输入realms://${mydomain.com}:9443作为服务器 URL 以及刚刚创建的用户名和密码。您应该会看到一个领域列表。