Can not login
-
You also seem to be listening on port 80 and not 443 which will also cause you issues.
If
config.jsonis configured with https and the actual site is not served with https then they are considered different sites and the cookie/csrf issues will occur. -
@xianqu Looking at your
nginx.confI do not see any information relating to the reverse proxy settings. Are these contained in anotherconffile? Specifically, I need the contents ofinclude /www/sites/jiejingbao.xyz/proxy/*.conf; -
@phenomlab ocation ^~ / {
proxy_pass http://x.x.x.x:4567;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header REMOTE-HOST $remote_addr;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header X-Forwarded-Proto $scheme;
proxy_http_version 1.1;
add_header Cache-Control no-cache;
} -
@xianqu Thanks. There are several issues here. First, please ensure the config matches the below settings as they are currently incorrect
proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto https; proxy_set_header Host $http_host; proxy_set_header X-NginX-Proxy true; proxy_redirect off; # Socket.io Support proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade";Additionally, your reverse proxy points to a public IP address. It should read
proxy_pass http://127.0.0.1:4567;You should also not post your IP address on any public forum, as this completely negates the point of CloudFlare - you are exposing your IP address to the entire planet. If you'd like to denote a public IP, please consider using
x.x.x.xto do so.
