You Can use Apache as well with mod wsgi . its very easy . you can check tutorial here :-

https://youtu.be/tquH5BUtar4

https://github.com/yogeshdmca/python-odoo-apache-wsgi
you will get a series of video  for lean Apache with mod wsgi on Ubuntu.

Regards

Tried this for days. Had problems when logging out etc. The redirect would redirect to http not https as requested.

Here is my solution. 

<IfModule mod_ssl.c>
    <VirtualHost *:8088>
        ServerName odoo.whereever.com
        ServerAdmin odoo@whereever.com
        <Proxy *>
            Order deny,allow
            Allow from all
        </Proxy>
        SSLProxyEngine on
        ProxyPreserveHost On
        SSLEngine on
        SSLCertificateFile /etc/apache2/ssl/odoo.wherever.com.pem
        SSLCertificateKeyFile /etc/apache2/ssl/odoo.wherever.com.pem
        ProxyRequests Off
        ProxyPassMatch ^/(.*) http://127.0.0.1:8169/$1
        #ProxyPass ^/(.*) http://127.0.0.1:8169/$1
        ProxyPassReverse /web http://odoo.wherever.com:8088/web
        ProxyErrorOverride off
        LogLevel debug
        TransferLog /var/log/apache2/odoo.wherever.com-8088-transfer.log
        ErrorLog /var/log/apache2/odoo.wherever.com-8088-error.log
        CustomLog /var/log/apache2/odoo.wherever.com-8088.log combined
        #Fix IE problem (httpapache proxy dav error 408/409)
        SetEnv proxy-nokeepalive 1 RequestHeader set "X-Forwarded-Proto" "https"
    </VirtualHost>
</IfModule>

Mmmm? whats up with this board. Had to reformat my code by hand. No newlines????

Regards

Grahame Jordan

This subject is quiet old but i just decided to do the same. Unfortunately step 11 openssl genrsa –out privkey.pem 2048

does nothing and gives me an error:

<pre>

root@nefitari:/etc/apache2# openssl genrsa –out privkey.pem 2048

usage: genrsa [args] [numbits]

-des encrypt the generated key with DES in cbc mode

-des3 encrypt the generated key with DES in ede cbc mode (168 bit key)

-seed

encrypt PEM output with cbc seed

-aes128, -aes192, -aes256

encrypt PEM output with cbc aes

-camellia128, -camellia192, -camellia256

encrypt PEM output with cbc camellia

-out file output the key to 'file

-passout arg output file pass phrase source

-f4 use F4 (0x10001) for the E value

-3 use 3 for the E value

-engine e use engine e, possibly a hardware device.

-rand file:file:...

load the file (or the files in the directory) into

the random number generator

root@nefitari:/etc/apache2#

</pre>

Any suggestions what i suppose to do with it ?

all other steps works just fine.

Of course at the end https://localhost doesn't work ...... 

EDIT:

I found the culprit, wrong syntax ;) 

Thanks to the post of Fabian I've got everything working. All credit goes to him, and so should the 'upvotes'. :)
This is an easy step-by-plan for Odoo 8 on Ubuntu 14.04:

1. Sudo apt-get install apache2
2. Sudo a2enmod ssl
3. Sudo a2enmod rewrite
4. Sudo a2enmod proxy_http
5. Sudo a2enmod headers
6. Sudo service apache2 restart
7. Cd /etc/ssl
8. Sudo mkdir erp
9. Sudo chmod 777 erp
10. Sudo cd erp
11. openssl genrsa –out privkey.pem 2048
12. openssl req -x509 -nodes -days 1095 -newkey rsa:2048 -keyout localhost.key -out localhost.crt
    If the line “Common Name (e.g. server FQDN or YOUR name) []:” is asked be sure to give in “localhost”!
13. cd /etc/apache2/sites-available
14. sudo nano odoo.conf
15. Add following lines in odoo.conf: http://pastebin.com/s0BXgvHS
16. Cd ../
17. Sudo nano ports.conf
18. Add following lines in ports.conf: http://pastebin.com/mp5bPm7y
19. Sudo a2ensite odoo
20. Sudo service apache2 restart
21. Sudo nano /etc/apache2/apache2.conf
22. Add this to the last line of the file: ServerName localhost

Surf to https://localhost/ and you've got a nice HTTPS connection!

I don't know, but my browsers do not trust these connections. whatever I'm doing. I see that it's always redirecting to the ssl domain (I tried various tutorials, but I always get (depending on the browser) untrusted connection messages. 

for example in firefox: this website does not supply identity information, the conneciton of the website is not fully secure because it contains unencrypted elements (such as images)

Also in Chrome I get: Your conneciton is not private. 

Only in safari I can see the the odoo starting page, without complaints. But I can't see the https hint in the browser bar:( only the domain name is there. 

don't I have to certify this certificate somewhere? 

any suggestions? 

Malte

Hi,

I followed your guides to install a Commercial SSL certificate on apache (Domain Validation),  I set up the certificate correctly according to https://www.sslchecker.com,  however two things are happening, 1.-  the redirect it's no working, ej (http redirects to https) and 2. Similar to Malte, I get an untrusted connection (warning sign before domain) on Firefox and Chrome, Safari opens the site normally.

Any suggestions? 

Regards

Don't use Apache2. Rather use Nginx. 

You can follow this guide:

http://www.schenkels.nl/2013/01/reverse-ssl-proxy-using-nginx-with-openerp-v7/

http://www.theopensourcerer.com/2012/03/how-to-openerp-6-1-ubuntu-10-04-lts-nginx-ssl-reverse-proxy/

I've tried it and it works.

I have created a blog for various setup issues regarding Odoo. Setting up Apache as an SSL Reverse Proxy with Odoo running on Ubuntu 14.04. If you still need help the link is below:

http://www.nkr1ptd.com/2014/11/using-apache-with-odoo-8-and-ubuntu-1404.html

Thanks

-Brandon