server {
listen 443 ssl http2;
server_name 域名;
ssl_certificate /opt/ssl/dev.pem;
ssl_certificate_key /opt/ssl/dev.key;
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 10m;
ssl_ciphers PROFILE=SYSTEM;
ssl_prefer_server_ciphers on;
// 上传限制
client_max_body_size 1024m;
client_body_buffer_size 1024k; #缓冲区代理缓冲用户端请求的最大字节数
# root /usr/share/nginx/html;
location / {
# 跨域问题
add_header Access-Control-Allow-Origin *;
add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS';
add_header Access-Control-Allow-Headers 'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization';
if ($request_method = 'OPTIONS') {
return 204;
}
#---------跨域技术------------------------------
proxy_connect_timeout 90; #nginx跟后端服务器连接超时时间(代理连接超时)
proxy_read_timeout 90; #连接成功后,后端服务器响应时间(代理接收超时)
proxy_buffer_size 1024k; #设置代理服务器(nginx)保存用户头信息的缓冲区大小
proxy_buffers 6 500k; #proxy_buffers缓冲区,网页平均在32k以下的话>,这样设置
proxy_busy_buffers_size 1024k; #高负荷下缓冲大小(proxy_buffers*2)
proxy_temp_file_write_size 1024k; #设定缓存文件夹大小,大于这个值,将从upstream服务器传
proxy_pass http://localhost:8080/;
# proxy_set_header referer "https://dev.yzxapp.com";
#重构请求头,获取客户端请求的IP地址
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
location /index.html {
root /opt/project/web/test;
}
location /MP_verify_tz4UZVx67JCGUp97.txt {
root /opt/project/web/MP_verify_tz4UZVx67JCGUp97.txt;
}
}
# http转https
server {
listen 80;
server_name localhost;
#将请求转成https
rewrite ^(.*)$ https://$host$1 permanent;
}
版权声明:本文为wdz985721191原创文章,遵循CC 4.0 BY-SA版权协议,转载请附上原文出处链接和本声明。