Reverse proxy problem with an application

Mik J mikydevel at yahoo.fr
Wed Mar 8 14:06:17 UTC 2017 

Hello BR,Thank you for your answer and for the hints. I'll investigate further in that direction.Have a nice week 

    Le Mercredi 8 mars 2017 14h03, B.R. via nginx <nginx at nginx.org> a écrit :
 

 This clearly looks like an application problem and not a nginx-related one.
nginx does not remove cookies nor, as the configuration snippet you shared suggest, handles authentication.

If you use DNS, make sure all requests are served by the instance of nginx you quote, including redirects which might happen on login (have a look at access logs).
You can also investigate the content of cookies received either from downstream or upstream if you think it is related to your problem.

If you got a question on the nginx configuration this ML is here to help. Otherwise, you'll need to rereoute your question where appropriate.
---
B. R.
On Mon, Mar 6, 2017 at 10:35 PM, Mik J via nginx <nginx at nginx.org> wrote:

Hello,
I have run an application behind a nginx reverse proxy and I can't make it to work
a) if I access this application using https://1.1.1.1:443 it works (certificate warning)b) if I access this application using https://myapp.mydomain.org, I get access to the login page    location ^~ / {
        proxy_pass        https://1.1.1.1:443;
        proxy_redirect    off;
        proxy_set_header  Host             $http_host;
        proxy_set_header  X-Real-IP        $remote_addr;
        proxy_set_header  X-Forwarded-For  $proxy_add_x_forwarded_for;
        proxy_hide_header X-Frame-Options;        proxy_hide_header X-Content-Security-Policy;
        proxy_hide_header X-Content-Type-Options;
        proxy_hide_header X-WebKit-CSP;
        proxy_hide_header content-security-policy;
        proxy_hide_header x-xss-protection;
        proxy_set_header  X-NginX-Proxy true;
        proxy_ssl_session_reuse off;
    }
c) I log in in the page and after some time (2/3 seconds) the application logs me out
When I log in directly case a) I notice that I have (firebug)
CookieSaveStateCookie=root; APPSESSIONID= 070ABC6AE433D2CAEDCFFB1E430744 16; testcookieenabled
Whereas when I log in in case c) I haveAPPSESSIONID= 070ABC6AE433D2CAEDCFFB1E430744 16; testcookieenabled

So I feel there's a problem with the session or something like that.PS: There is only one backend server and I can't run plain http (disable https)

Does anyone has an idea ?




______________________________ _________________
nginx mailing list
nginx at nginx.org
http://mailman.nginx.org/ mailman/listinfo/nginx



_______________________________________________
nginx mailing list
nginx at nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx

   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20170308/b4f2bc69/attachment-0001.html>

More information about the nginx mailing list