How to configure mongrel_cluster + PHP + SSL with nginx

Igor Sysoev igor at sysoev.ru
Wed May 12 13:48:04 MSD 2010


On Wed, May 12, 2010 at 03:09:08PM +0530, karthi r wrote:

>  <http://nginx.org/en/docs/http/configuring_https_servers.html>
> 
> 
> I tried following steps below link, after  i access PHP application ex:
> https://loclahost/phpapp1/ <http://loclahost/php/> asking save as  index.php
> 
> 
> 
> http://nginx.org/en/docs/http/configuring_https_servers.html
> 
> This sample my sample nginx config file
> upstream railsapp1 {
>   server 127.0.0.1:9000;
>   server 127.0.0.1:9001;
> }
> upstream
>  railsapp2 {
>   server 127.0.0.1:9010;
> 
>   server 127.0.0.1:9011;
> }
> 
> server {
>     listen               443;
>     server_name          mydomain.com;
>     ssl                  on;
>     ssl_certificate      mydomain_com.crt;
>     ssl_certificate_key  mydomain_com.key;
>     ssl_protocols        SSLv3 TLSv1;
>     ssl_ciphers          HIGH:!ADH:!MD5;
> 
> }
> 
>   location = / { rewrite ^
> /phpapp1/ permanent; }
>   location ~ ^/phpapp1/.*\.php$ {
> 
>     root /srv/http/php;
>     fastcgi_pass 127.0.0.1:9100;
> 
> fastcgi_index index.php;
>     fastcgi_param SCRIPT_FILENAME
> $request_filename;
>     include fastcgi_params;
>   }
> 
>   location /phpapp1/ {
>     root /srv/http/php;
>     index
> index.php;
>     try_files $uri $uri/ /phpapp1/index.php;
>   }
> 
> location = /phpapp1 { rewrite ^ /phpapp1/ permanent; }
>   location
> @railsapp1 { proxy_pass http://railsapp1;
>  }
> 
>   location = /railsapp1 { rewrite ^ /railsapp1/ permanent; }
> 
> location /railsapp1/ {
>     alias /srv/http/rails/railsapp1/
> 
> public/;
>     try_files $uri @railsapp1;
>     expires max;
>   }
>   location @railsapp2 { proxy_pass http://railsapp2; }
>   location = /railsapp2 { rewrite ^ /railsapp2/ permanent; }
>   location /railsapp2/ {
>     alias /srv/http/rails/devel/railsapp2/public/;
>     try_files $uri @railsapp2;
>     expires max;
>   }
>   location /whatever/ {
>     root /srv/temp;
>     autoindex on;
>   }
>   location /apacheapp/ { proxy_pass http://127.0.0.1:9200; }
> }

It's really hard to understand so broken formatted configuration,
but it's seems nginx did not accept it (try to run "nginx -t"),
because of

 server {
     listen               443;
     ...
     ssl_ciphers          HIGH:!ADH:!MD5;
 }

 location ...


-- 
Igor Sysoev
http://sysoev.ru/en/



More information about the nginx mailing list