stackoom
  简体   繁体   中英

Configure Ngnix with Django and Gunicorn

 原文  2020-05-30 00:31:46       django/ nginx

Question

I have the Nginx code below. It sort of works.

If I enter 'https://' to go to the site, the SSL kicks in. However, if I just enter www.thaifoodbypla.com, it does not re-direct to HTTPS, it just loads HTTP.

Nginx config: 

upstream gunicorn{
# fail_timeout=0 means we always retry an upstream even if it failed
# to return a good HTTP response (in case the Unicorn master nukes a
# single worker for timing out).

# for UNIX domain socket setups:

server unix:/home/ubuntu/thaiFoodByPla/project.sock  fail_timeout=0;

# for TCP setups, point these to your backend servers
# server 127.0.0.1:9000 fail_timeout=0;
}
server {
listen 80;
listen 443 ssl http2;
server_name www.thaifoodbypla.com;
ssl_certificate /etc/ssl/private/ssl-bundle.crt;
ssl_certificate_key /etc/ssl/private/briefing_key.pem;



# path for static files
root /home/ubuntu/thaiFoodByPla/project/project;

location / {
  # checks for static file, if not found proxy to app
  try_files $uri @proxy_to_app;
}

location @proxy_to_app {
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

    # When Nginx is handling SSL it is helpful to pass the protocol information
    # to Gunicorn. Many web frameworks use this information to generate URLs.
    # Without this information, the application may mistakenly generate http
    # URLs in https responses, leading to mixed content warnings or broken
    # applications. In this case, configure Nginx to pass an appropriate header:
    proxy_set_header X-Forwarded-Proto $scheme;

    # pass the Host: header from the client right along so redirects
    # can be set properly within the Rack application
    proxy_set_header Host $http_host;

    # we don't want nginx trying to do something clever with
    # redirects, we set the Host: header above already.
    proxy_redirect off;


    # Try to serve static files from nginx, no point in making an
    # *application* server like Unicorn/Rainbows! serve static files.
    proxy_pass http://gunicorn;
}

I'm not sure what to do. What can I change to make it forward to https:// automatically?

1 answers

solution1
 0 ACCPTED  2020-05-30 00:44:39

By adding listen 80 nginx will listen on http and serve that directly to gunicorn.

You can solve that by removing listen 80 and create a redirect from port 80 to 443 as the following:

server {
    listen 443 ssl http2;
    server_name www.thaifoodbypla.com;
    ssl_certificate /etc/ssl/private/ssl-bundle.crt;
    ssl_certificate_key /etc/ssl/private/briefing_key.pem;
    # rest of this block
}

server {
    # if a request is made on port 80 to your domain, it will be redirected
    if ($host = www.thaifoodbypla.com) {
        return 301 https://$host$request_uri; 
    }
    listen 80;
    server_name www.thaifoodbypla.com;
    return 404;
}

This way all requests on port 80 to your domain will be redirected to https, and 404 response is returned if the domain doesn't match.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Django Fails with Basic Auth with Ngnix + Gunicorn 502 bad gateway on Ngnix+Gunicorn+Django configuratoin Serving static content with Django, Gunicorn and Ngnix in shared development environment How to configure nginx for django with gunicorn? Configure SSL in NGINX and Gunicorn in Django Dockerizing django, postgres, gunicorn, ngnix - only admin static works, other 404 Django Logging: ValueError: Unable to configure handler 'gunicorn' Configure nginx/gunicorn django behind a load balancer ngnix + gunicorn throws truncated response body How to Configure Django on Gunicorn and Nginx (Mac OS X)
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM