From 28b2faec9dc95d98e93cf955a59926351dea38e2 Mon Sep 17 00:00:00 2001 From: moicen Date: Wed, 19 Jan 2022 19:17:03 +0800 Subject: [PATCH] update ts domain config --- conf/ts.conf | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) diff --git a/conf/ts.conf b/conf/ts.conf index e13f303..1ede711 100644 --- a/conf/ts.conf +++ b/conf/ts.conf @@ -2,19 +2,17 @@ server { # https://serverfault.com/questions/798734/use-variable-for-server-name-in-nginx# # server_name $servername; server_name "ts.moicen.com"; -# listen 443 ssl; + listen 443 ssl; listen 80; client_max_body_size 10M; # disable in local test env -# ssl_certificate /etc/letsencrypt/live/admin.moicen.com/fullchain.pem; # managed by Certbot -# ssl_certificate_key /etc/letsencrypt/live/admin.moicen.com/privkey.pem; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/ts.moicen.com/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/ts.moicen.com/privkey.pem; # managed by Certbot -# set $tmp_file_dir "/file_upload/"; # 文件存储路径 set $task_server "http://127.0.0.1:8080"; # task server host set $htyuc "http://127.0.0.1:3000"; #htyuc host set $resty_loc "/usr/local/openresty"; -# set $convert "/usr/bin/convert"; location / { try_files $uri $uri/ /index.html; @@ -32,6 +30,13 @@ server { location /api/v1/ts/ { proxy_pass http://127.0.0.1:8080/api/v1/ts/; proxy_set_header Host $host; + proxy_set_header X-Forwarded-For $remote_addr; + proxy_set_header X-Forwarded-Host $remote_addr; + if ($http_origin ~ [a-z]+\.moicen\.com$) { + proxy_set_header Access-Control-Allow-Origin $http_origin; + proxy_set_header Access-Control-Request-Methods GET,POST,OPTIONS; + } + proxy_set_header Access-Control-Allow-Headers x-requested-with; } }