Hi, I've recently changed some shit around and now my comments to ghost from nodebb is playing up. I think I've got all the nginx configuration files proper however still dishes out 502 error in console for unable to Access-Control-Allow-Origin. Any help would be appreciated to get this up and working again.
I was adding the following:
proxy_set_header 'Access-Control-Allow-Origin' '*';
proxy_set_header 'Access-Control-Allow-Credentials' 'true';
add_header Access-Control-Allow-Origin *;
Under the forum.example.com nginx config subdomain.
Ghost is under the main domain.
#NGINX CONFIG
upstream io_nodes {
ip_hash;
server 127.0.0.1:4567;
server 127.0.0.1:4568;
server 127.0.0.1:4569;
}
server {
listen 0.0.0.0:80;
server_name forum.coinhodling.com;
access_log /home/xx/logs/forum_access.log;
error_log /home/xx/logs/forum_error.log warn;
#Nodebb proxy
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
proxy_set_header X-NginX-Proxy true;
# Socket.io Support
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
gzip on;
gzip_min_length 1000;
gzip_proxied off;
gzip_types text/plain application/xml text/javascript application/javascript application/x-javascript text/css application/json;
location ^~ /.well-known/acme-challenge/ {
alias /home/xx/public_html/.well-known/acme-challenge/;
}
location @nodebb {
proxy_pass http://io_nodes;
}
location ~ ^/assets/(.*) {
root /home/xx/nodebb/;
try_files /public/$1 @nodebb;
}
location /plugins/ {
root /home/xx/nodebb/build/public/;
try_files $uri @nodebb;
}
location / {
proxy_pass http://io_nodes;
}
}
server {
listen 0.0.0.0:443 ssl;
server_name forum.example.com;
access_log /home/xx/logs/forum_access.log;
error_log /home/xx/logs/forum_error.log warn;
###
# SSL Enabled variables
ssl on;
ssl_certificate /home/xx/ssl.cert;
ssl_certificate_key /home/xx/ssl.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 10m;
ssl_ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS;
add_header Strict-Transport-Security "max-age=31536000";
#Nodebb proxy
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
proxy_set_header X-NginX-Proxy true;
# Socket.io Support
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
gzip on;
gzip_min_length 1000;
gzip_proxied off;
gzip_types text/plain application/xml text/javascript application/javascript application/x-javascript text/css application/json;
location ^~ /.well-known/acme-challenge/ {
alias /home/xx/public_html/.well-known/acme-challenge/;
}
location @nodebb {
proxy_pass http://io_nodes;
}
location ~ ^/assets/(.*) {
root /home/xx/nodebb/;
try_files /public/$1 @nodebb;
}
location /plugins/ {
root /home/xx/nodebb/build/public/;
try_files $uri @nodebb;
}
location / {
proxy_pass http://io_nodes;
}
}
More or less posting to see if anyone notices something im missing.