我們正在更新我們的依賴項。我們最近將 spring-boot 從 2.4.4 更新到 2.5.9。
從那時起,我們無法在本地測驗我們的部分功能。這涉及使用代理傳遞的自定義域。我們在本地有以下設定:
**Nginx proxy** (local.alavoie.mytestdomain.com which points to 127.0.0.1 listening on 443)
|
|
**NPM app** with proxy table (listening on 0.0.0.0 8080)
|
|
**Spring-boot app** (listening on 0.0.0.0 8081)
當我們使用request.getServerName()時,它現在回傳localhost而不是提供的 urllocal.alavoie.mytestdomain.com
根據我的調查,一旦我更新到 spring-boot 2.5.x,問題就開始了。2.4.x 的所有版本都在作業。
tomcat更新的依賴沒有任何問題。據我所知,RemoteIpValve 沒有被添加到請求的 tomcat 引擎管道中。
這是我的 nginx 配置
# configuration file /usr/local/etc/nginx/nginx.conf:
#worker_processes 1;
events {
worker_connections 1024;
}
http {
server {
listen 80;
server_name *.alavoie.mytestdomain.com;
return 301 https://$host$request_uri;
}
server {
listen 443 ssl;
client_max_body_size 5G;
ssl_certificate /users/alavoie/ssl/certificate.pem;
ssl_certificate_key /users/alavoie/ssl/key.pem;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_prefer_server_ciphers on;
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
add_header Strict-Transport-Security "max-age=63072000" always;
location / {
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "Upgrade";
# Fix the “It appears that your reverse proxy set up is broken" error.
proxy_pass http://localhost:8081;
proxy_read_timeout 90;
}
}
# General settings
#
access_log off;
server_tokens off;
##
# Proxy settings
#
proxy_buffering off;
proxy_buffer_size 128k;
proxy_buffers 100 128k;
proxy_headers_hash_bucket_size 128;
##
# gzip settings
#
gzip on;
gzip_disable "msie6";
}
這是我們的 npm 代理表。
'use strict'
// Template version: 1.2.5
// see http://vuejs-templates.github.io/webpack for documentation.
const path = require('path')
module.exports = {
dev: {
// Paths
assetsSubDirectory: 'static',
assetsPublicPath: '/',
proxyTable: {
'/rest/**': {
target: 'http://localhost:8080',
logLevel: 'debug'
},
'/api/**': 'http://localhost:8080',
'/assets/**': 'http://localhost:8080',
'/auth/*': {
target: 'http://localhost:8080',
changeOrigin: true,
logLevel: 'debug'
},
'/login/twofactor': {
target: 'http://localhost:8080',
changeOrigin: true,
logLevel: 'debug'
},
'/socket': {
target: 'ws://localhost:8080',
ws: true,
},
},
// Various Dev Server settings
host: '0.0.0.0', // can be overwritten by process.env.HOST
port: 8081, // can be overwritten by process.env.PORT, if port is in use, a free one will be determined
autoOpenBrowser: false,
errorOverlay: true,
notifyOnErrors: true,
poll: false, // https://webpack.js.org/configuration/dev-server/#devserver-watchoptions-
// Use Eslint Loader?
// If true, your code will be linted during bundling and
// linting errors and warnings will be shown in the console.
useEslint: true,
// If true, eslint errors and warnings will also be shown in the error overlay
// in the browser.
showEslintErrorsInOverlay: false,
/**
* Source Maps
*/
// https://webpack.js.org/configuration/devtool/#development
devtool: 'eval-source-map',
// If you have problems debugging vue-files in devtools,
// set this to false - it *may* help
// https://vue-loader.vuejs.org/en/options.html#cachebusting
cacheBusting: true,
// CSS Sourcemaps off by default because relative paths are "buggy"
// with this option, according to the CSS-Loader README
// (https://github.com/webpack/css-loader#sourcemaps)
// In our experience, they generally work as expected,
// just be aware of this issue when enabling this option.
cssSourceMap: false,
},
build: {
// Template for index.html
index: path.resolve(__dirname, '../dist/index.html'),
// Paths
assetsRoot: path.resolve(__dirname, '../dist'),
assetsSubDirectory: 'static',
assetsPublicPath: '/',
/**
* Source Maps
*/
productionSourceMap: true,
// https://webpack.js.org/configuration/devtool/#production
devtool: '#source-map',
// Gzip off by default as many popular static hosts such as
// Surge or Netlify already gzip all static assets for you.
// Before setting to `true`, make sure to:
// npm install --save-dev compression-webpack-plugin
productionGzip: false,
productionGzipExtensions: ['js', 'css'],
// Run the build command with an extra argument to
// View the bundle analyzer report after build finishes:
// `npm run build --report`
// Set to `true` or `false` to always turn it on or off
bundleAnalyzerReport: process.env.npm_config_report
}
}
我在 Mac 上運行一切。誰能幫我弄清楚我們做錯了什么
uj5u.com熱心網友回復:
如果在前端服務器和代理后面運行,請使用 Forwarded Headers。提供有關初始請求的資訊。
對于您的配置集:
server.forward-headers-strategy=NATIVE
OR
server.forward-headers-strategy=FRAMEWORK
參考:https ://docs.spring.io/spring-boot/docs/current/reference/html/howto.html cap 3.12。
參考:https ://datatracker.ietf.org/doc/html/rfc7239
轉載請註明出處,本文鏈接:https://www.uj5u.com/caozuo/444869.html