您的位置:首页 > 理论基础 > 计算机网络

Passenger,nginx and SSL(http redirect to https)

2012-05-16 14:52 435 查看
参见配置SSL

Nginx + https + 免费SSL证书配置指南

但是配置完后,rails中的request.ssl? 永远返回false

Passenger 3 implements this feature with a new directive 
passenger_set_cgi_param
which behaves like
proxy_set_header
.

For example, to pass SSL variables to Rack, you could do this:

server {
listen 443 default ssl;

# other SSL stuff goes here
# other passenger stuff here

passenger_set_cgi_param  X_FORWARDED_PROTO       https;
passenger_set_cgi_param  X-SSL-Raw-Cert          $ssl_client_raw_cert;
passenger_set_cgi_param  X-SSL-Cert              $ssl_client_cert;
passenger_set_cgi_param  X-SSL-Client-S-DN       $ssl_client_s_dn;
passenger_set_cgi_param  X-SSL-Client-I-DN       $ssl_client_i_dn;
passenger_set_cgi_param  X-SSL-Client-Verify     $ssl_client_verify;
}


然后重写Rack::Request.scheme方法:

module Rack
class Request
def scheme
if self.headers['X_FORWARDED_PROTO'].eql?("https")
'https'
elsif @env['HTTPS'] == 'on'
'https'
elsif @env['HTTP_X_FORWARDED_SSL'] == 'on'
'https'
elsif @env['HTTP_X_FORWARDED_PROTO']
@env['HTTP_X_FORWARDED_PROTO'].split(',')[0]
else
@env["rack.url_scheme"]
end
end
end
end


在ApplicationController中添加代码

class ApplicationController < ActionController::Base
before_filter :redirect_to_https
def redirect_to_https
unless(request.ssl?)
redirect_to :protocol=>"https://"
return
end
end
end


此时的request.ssl?就生效了
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 点击这里给我发消息
标签: 
相关文章推荐
新的分享
章节导航