How do I configure Couchdb to use ssl, I've followed the instructions here with no success.
I generate my own self-signed certificate:
mkdir cert && cd cert
openssl genrsa > privkey.pem
openssl req -new -x509 -key privkey.pem -out mycert.pem -days 1095
I uncomment the relevent lines in /usr/local/etc/couchdb/local.ini
httpsd = {couch_httpd, start_link, [https]}
and point to my certificates
cert_file = /usr/local/etc/couchdb/certs/mycert.pem
key_file = /usr/local/etc/couchdb/certs/privkey.pem
But when I try test it
curl -k -v https://127.0.0.1:6984
* About to connect() to 127.0.0.1 port 6984 (#0)
* Trying 127.0.0.1... connected
* successfully set certificate verify locations:
* CAfile: none
CApath: /etc/ssl/certs
* SSLv3, TLS handshake, Client hello (1):
* Unknown SSL protocol error in connection to 127.0.0.1:6984
* Closing connection #0
curl: (35) Unknown SSL protocol error in connection to 127.0.0.1:6984
I'm really not sure what is wrong.
Notes
I've installed couchdb 1.2 from source as per the instructions here.
Best Answer
So I executed the following commands:
After that, I configure the the local.ini as follow: (making sure that those certificate files are acessible from couchdb user):
When I run this command at my pc, this works fine: