okay - i'm now in a worse state. i did the following:
generated SSL key and cert data from my web hoster for subdomain (canvas.gameaudioinstitute.com)
copied SSL key and cert into server.crt and server.key
verified bitnami.conf file was present. did not edit
after this i got the 'too many redirects' and the site would not load in any way.
i then changed the A record of my subdomain to point to the IP address of the Canvas server (18.104.22.168)
i also wiped out the older SSL key and cert files and replaced them with the pasted SSL data from the external hoster which i set up through Let's Encrypt. since SSL appeared to not be working anyway i didn't think the older key and cert data were relevant, and the docs clearly say the file needs to be replaced once you have a domain.
the new SSL data is clearly now causing an issue with the config files on the server. but i cannot seem to find what config file is creating the loop. i found an excellent site that tests the SSL of the subdomain. it clearly shows the redirect but i'm not sure what i can do to stop it. https://canvas.gameaudioinstitute.com forwards to https://canvas.gameaudioinstitute.com/login. and then https://canvas.gameaudioinstitute.com/login forwards to http://22.214.171.124 and the cycle begins again:https://www.ssllabs.com/ssltest/analyze.html?d=canvas.gameaudioinstitute.com
i have tried numerous things but have not really gotten anywhere. i just want to disable the redirect to the HTTP IP address and leave it as HTTPS. forcing HTTPS redirection with httpd-prefix.conf doesn't work either.
i'm try to follow the list of troubleshooting redirection loops but about the only errors shown in Apache is this:
script '/opt/bitnami/apps/canvaslms/htdocs/public/wp-login.php' not found or unable to stat, referer: https://google.com
also this one:
localhost:443:0 server certificate does NOT include an ID which matches the server name
i edited the localhost file to canvas.gameaudioinstitute.com. no change. same error.
i edited httpd-vhosts.conf to reflect the information for the canvas.gameaudioinstitute.com server. no change.
at this point i guess i could generate the SSL file again locally. i know the procedure but not sure how it works with a subdomain created elsewhere that points to the server's IP.
if you have further suggestions or tips, please let me know. i'm quite frustrated because it seems like a small configuration issue, but i haven't found the blockage yet.