使用与根位置不同的路径提供 Wordpress 静态服务

Question

看起来您在尝试修复配置时已经破坏了不少配置。我已尽力将其恢复到正常工作状态。

将来，请确保在常规非正则表达式位置块的末尾有一个尾部斜杠。Nginx 指令对尾部斜杠很敏感；只需添加或删除斜杠，就可以完全改变指令的行为。

从技术上讲，处理这种情况的正确方法是使用别名指令，但它与许多流行的 Nginx 功能（包括 fastcgi 模块）结合使用时，漏洞非常多。因此，我选择了重写路线。这不会导致重定向；重写是内部的。

#user  nobody;
worker_processes  1;

error_log   /var/log/nginx/error.log;
#error_log  /var/log/nginx/notice.log  notice;
#error_log  /var/log/nginx/info.log    info;

events {
    worker_connections  1024;
}


http {
    #allows file uploads up to 50 megabytes
    client_max_body_size 50M;

    server_tokens off;
    include       mime.types;
    default_type  application/octet-stream;

    log_format  main  '$http_x_forwarded_for - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    client_header_buffer_size 4k;
    large_client_header_buffers 4 16k;

    sendfile        on;
    #tcp_nopush     on;

    keepalive_timeout  65;

    server {
        listen       80;
        server_name  localhost;

        root /var/www/webroot;
        index index.php index.html index.htm;

        #cookies default descomplica
        client_header_buffer_size 4k;
        large_client_header_buffers 4 16k;

        #charset koi8-r;

        # TODO: This may need to be removed.  This could be part of the problem.
        include /etc/nginx/aliases.conf;

        location ~ /\. { return 404; }

        location ~ \.php$ {
            include fastcgi_params;
            fastcgi_pass 127.0.0.1:9000;
            fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
            fastcgi_param DOCUMENT_ROOT $realpath_root;
            fastcgi_param PATH_INFO $fastcgi_script_name;
        }

        location ^~ /wordpress/myapp/ {
            # We could use the `alias` directive instead, but that tends to break in combination with the fastcgi module.
            rewrite ^/wordpress/myapp(/.*)$ $1;
        }

        location /wordpress/ {
            # If you want to prevent people from visiting /wordpress/ directly and require that they visit /wordpress/myapp/, you can try uncommenting the next line.  You'll also need to duplicate the PHP location block, change the regex in the new one to `^/wordpress/.*\.php$`, and add the `internal` directive to that, too.
            #internal;
            try_files $uri $uri/ /wordpress/index.php;  # This PHP file has to come last.  It's deliberately missing `myapp`.
        }

        location / {
            try_files $uri $uri/ =404;
        }

        # TODO: This either needs to be `location = /ws` or `location ^~ /ws/`.  Note the trailing slash.
        #location /ws {
        #    proxy_pass http://websocket;
        #    proxy_http_version 1.1;
        #    proxy_set_header Upgrade $http_upgrade;
        #    proxy_set_header Connection "Upgrade";
        #}
    }

    include /etc/nginx/conf.d/*.conf;
}

Answer 1

看起来您在尝试修复配置时已经破坏了不少配置。我已尽力将其恢复到正常工作状态。

将来，请确保在常规非正则表达式位置块的末尾有一个尾部斜杠。Nginx 指令对尾部斜杠很敏感；只需添加或删除斜杠，就可以完全改变指令的行为。

从技术上讲，处理这种情况的正确方法是使用别名指令，但它与许多流行的 Nginx 功能（包括 fastcgi 模块）结合使用时，漏洞非常多。因此，我选择了重写路线。这不会导致重定向；重写是内部的。

#user  nobody;
worker_processes  1;

error_log   /var/log/nginx/error.log;
#error_log  /var/log/nginx/notice.log  notice;
#error_log  /var/log/nginx/info.log    info;

events {
    worker_connections  1024;
}


http {
    #allows file uploads up to 50 megabytes
    client_max_body_size 50M;

    server_tokens off;
    include       mime.types;
    default_type  application/octet-stream;

    log_format  main  '$http_x_forwarded_for - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    client_header_buffer_size 4k;
    large_client_header_buffers 4 16k;

    sendfile        on;
    #tcp_nopush     on;

    keepalive_timeout  65;

    server {
        listen       80;
        server_name  localhost;

        root /var/www/webroot;
        index index.php index.html index.htm;

        #cookies default descomplica
        client_header_buffer_size 4k;
        large_client_header_buffers 4 16k;

        #charset koi8-r;

        # TODO: This may need to be removed.  This could be part of the problem.
        include /etc/nginx/aliases.conf;

        location ~ /\. { return 404; }

        location ~ \.php$ {
            include fastcgi_params;
            fastcgi_pass 127.0.0.1:9000;
            fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
            fastcgi_param DOCUMENT_ROOT $realpath_root;
            fastcgi_param PATH_INFO $fastcgi_script_name;
        }

        location ^~ /wordpress/myapp/ {
            # We could use the `alias` directive instead, but that tends to break in combination with the fastcgi module.
            rewrite ^/wordpress/myapp(/.*)$ $1;
        }

        location /wordpress/ {
            # If you want to prevent people from visiting /wordpress/ directly and require that they visit /wordpress/myapp/, you can try uncommenting the next line.  You'll also need to duplicate the PHP location block, change the regex in the new one to `^/wordpress/.*\.php$`, and add the `internal` directive to that, too.
            #internal;
            try_files $uri $uri/ /wordpress/index.php;  # This PHP file has to come last.  It's deliberately missing `myapp`.
        }

        location / {
            try_files $uri $uri/ =404;
        }

        # TODO: This either needs to be `location = /ws` or `location ^~ /ws/`.  Note the trailing slash.
        #location /ws {
        #    proxy_pass http://websocket;
        #    proxy_http_version 1.1;
        #    proxy_set_header Upgrade $http_upgrade;
        #    proxy_set_header Connection "Upgrade";
        #}
    }

    include /etc/nginx/conf.d/*.conf;
}

使用与根位置不同的路径提供 Wordpress 静态服务

答案1

相关内容