Need help on Oauth-2.0 Token with Nginx reverse proxy
blason
nginx-forum at forum.nginx.org
Wed Jul 31 03:27:46 UTC 2019
blason Wrote:
-------------------------------------------------------
> Hi Folks,
>
> I am trying to setup a reverse proxy on nginx with server at backend
> and from HAR file I understand it uses Oauth-Token-2.0 with POST
> method.
>
> However I am unable to set the stuff and seeking help here.
>
> My original server here is assuming
>
> https://test.example.net:9084
> And for Outh from har file I can see the request goes to
> https://test.example.net:99/connect/token
>
> Here is my config
> *********************************
> server {
> listen 443 ssl;
> listen 8084;
> listen 88;
> server_name test.example.net;
> ssl_protocols TLSv1.1 TLSv1.2;
> ssl_certificate /etc/nginx/certs/star_xxxx.com.crt;
> ssl_certificate_key /etc/nginx/certs/server.key;
> ssl on;
> ssl_ciphers
> 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH';
> gzip on;
> gzip_proxied any;
> gzip_types text/plain text/xml text/css
> application/x-javascript;
> gzip_vary on;
> gzip_comp_level 6;
> gzip_buffers 16 8k;
> gzip_http_version 1.1;
> gzip_min_length 256;
> gzip_disable "MSIE [1-6]\.(?!.*SV1)";
> ssl_prefer_server_ciphers on;
> ssl_session_cache shared:SSL:10m;
> access_log /var/log/nginx/test/access.log;
> error_log /var/log/nginx/test/error.log;
>
>
> location / {
> proxy_pass https://test.example.net:9084;
> proxy_redirect https://test.example.net:99/ /;
> client_max_body_size 10m;
> client_body_buffer_size 128k;
> #proxy_redirect off;
> proxy_send_timeout 90;
> proxy_read_timeout 90;
> proxy_buffer_size 128k;
> proxy_buffers 4 256k;
> proxy_busy_buffers_size 256k;
> proxy_temp_file_write_size 256k;
> proxy_connect_timeout 30s;
> proxy_set_header Host $host;
> proxy_set_header X-Real-IP $remote_addr;
> proxy_set_header X-Forwarded-Proto $scheme;
> proxy_set_header X-Forwarded-For
> $proxy_add_x_forwarded_for;
> add_header Strict-Transport-Security "max-age=31536000;
> includeSubDomains" always;
> add_header X-Content-Type-Options nosniff;
> add_header X-XSS-Protection "1; mode=block";
> add_header Referrer-Policy "no-referrer-when-downgrade";
> add_header X-Frame-Options "SAMEORIGIN" always;
> }
Here are HAR file Headers
Date
Tue, 30 Jul 2019 07:56:26 GMT
Strict-Transport-Security
max-age=31536000; includeSubDomains
X-Content-Type-Options
nosniff
X-AspNet-Version
4.0.30319
X-Powered-By
ASP.NET
Connection
keep-alive
Content-Length
919
X-XSS-Protection
1; mode=block
Pragma
no-cache
Referrer-Policy
no-referrer-when-downgrade
Server
nginx
X-Frame-Options
SAMEORIGIN
Access-Control-Allow-Methods
*
Content-Type
application/json; charset=utf-8
Access-Control-Allow-Origin
*
Cache-Control
no-store, no-cache, max-age=0, private
Access-Control-Allow-Headers
Origin, X-Requested-With, Content-Type, Accept
Request Headers
Accept
application/json, text/plain, */*
Referer
https://test.example.net/
Origin
https://test.example.net
User-Agent
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like
Gecko) Chrome/75.0.3770.142
Safari/537.36
Content-Type
application/x-www-form-urlencoded
Posted at Nginx Forum: https://forum.nginx.org/read.php?2,285048,285049#msg-285049
More information about the nginx
mailing list