[英]Why my nodejs REST API doesn't work on HTTPS?
I have droplet on digital ocean.我在数字海洋上有液滴。 I use nginx as reverse proxy for my REST API in nodeJS我在 nodeJS 中使用 nginx 作为我的 REST API 的反向代理
root@ubuntu-s-1vcpu-1gb-nyc1-01:/var/www/html/app# curl -v -k https://0.0.0.0:8080/api/posts
* Trying 0.0.0.0...
* TCP_NODELAY set
* Connected to 0.0.0.0 (127.0.0.1) port 8080 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
* CAfile: /etc/ssl/certs/ca-certificates.crt
CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* error:1408F10B:SSL routines:ssl3_get_record:wrong version number
* Closing connection 0
curl: (35) error:1408F10B:SSL routines:ssl3_get_record:wrong version number
I still have this error and I am not able to solve it (CURL just on HTTP give me expected JSON as a result, so it's ok).我仍然有这个错误,我无法解决它(HTTP 上的 CURL 给了我预期的 JSON 结果,所以没关系)。
This is my config这是我的配置
index index.html index.htm;
server {
listen 80;
server_name premonstrati2021.cz www.premonstrati2021.cz;
location / {
proxy_pass https://0.0.0.0:8080;
proxy_ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
proxy_ssl_ciphers HIGH:!aNULL:!MD5;
proxy_ssl_trusted_certificate /etc/nginx/trusted_ca_cert.crt;
proxy_ssl_server_name on;
proxy_ssl_verify on;
proxy_ssl_verify_depth 2;
proxy_ssl_session_reuse on;
}
return 301 https://$server_name$request_uri;
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
root /var/www/html/app/dist;
server_name premonstrati2021.cz www.premonstrati2021.cz;
ssl_dhparam /etc/nginx/dhparam.pem
ssl_certificate "/etc/letsencrypt/live/premonstrati2021.cz/cert.pem";
ssl_certificate_key "/etc/letsencrypt/live/premonstrati2021.cz/privkey.pem";
ssl_verify_client optional;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers 'ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES2$
location / {
proxy_pass http://0.0.0.0:8080;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection 'upgrade';
proxy_set_header Host $host;
proxy_cache_bypass $http_upgrade;
proxy_ssl_server_name on;
}
}
Log from PM2 is clear, there is no problem. PM2的日志清晰,没有问题。
Any idea what's wrong?知道有什么问题吗? Thanks.谢谢。
Finally I solved it - I haven't prepare my nodejs app on https:-(.最后我解决了 - 我还没有在 https 上准备我的 nodejs 应用程序:-(。
It was listening just on http.它只是在听 http。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.