Django + NGINX https 重定向(414 请求 URI 太大)

tag-icon tag-icon nginx https redirect django
Django + NGINX https 重定向(414 请求 URI 太大)

我正在尝试解决 nginx 重定向到 https 的问题,但当我使用 www.ozkandurakoglu.com 时,我收到 414 Request-URI Too Large 错误。以下是我的 nginx 设置:

upstream ozkan_server {
  server unix:/home/ytsejam/public_html/ozkansimple/run/gunicorn.sock fail_timeout=10s;
}

server {
    listen   80;
    server_name ozkandurakoglu.com www.ozkandurakoglu.com;
    return 301 $scheme:https://ozkandurakoglu.com$request_uri;
}
server {
  listen 443 ssl;
  listen [::]:443 ssl;
  ssl on;
  ssl_certificate /etc/letsencrypt/live/ozkandurakoglu.com/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/ozkandurakoglu.com/privkey.pem;
  ssl_trusted_certificate /etc/letsencrypt/live/ozkandurakoglu.com/chain.pem;
  ssl_session_timeout 1d;
  ssl_session_cache shared:SSL:50m;
  ssl_session_tickets off;
  ssl_prefer_server_ciphers on;
  add_header Strict-Transport-Security max-age=15768000;
  ssl_stapling on;
  ssl_stapling_verify on;
  server_name www.ozkandurakoglu.com;
  return 301 $scheme:https://ozkandurakoglu.com$request_uri;
}
server {
  listen 443 ssl;
  listen [::]:443 ssl;
  ssl on;
  ssl_certificate /etc/letsencrypt/live/ozkandurakoglu.com/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/ozkandurakoglu.com/privkey.pem;
  ssl_trusted_certificate /etc/letsencrypt/live/ozkandurakoglu.com/chain.pem;
  ssl_session_timeout 1d;
  ssl_session_cache shared:SSL:50m;
  ssl_session_tickets off;
  ssl_prefer_server_ciphers on;
  add_header Strict-Transport-Security max-age=15768000;
  ssl_stapling on;
  ssl_stapling_verify on;
  server_name  www.ozkandurakoglu.com ozkandurakoglu.com;
  client_max_body_size 4G;
  root /home/ytsejam/public_html/ozkansimple/;
  access_log /home/ytsejam/public_html/ozkansimple/logs/nginx-access.log;
  error_log /home/ytsejam/public_html/ozkansimple/logs/nginx-error.log warn;
  large_client_header_buffers 6 16k;
...
}

答案1

您有server两次阻止https://www.ozkandurakoglu.com

如果您想要https://ozkandurakoglu.com重定向到https://www. ozkandurakoglu.com,则需要为https://www. ozkandurakoglu.com实际站点的托管留下一个块,然后使用这个块进行重定向:

server {
    listen 443 ssl;
    server_name ozkandurakoglu.com;
    ssl_certificate /etc/letsencrypt/live/ozkandurakoglu.com/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/ozkandurakoglu.com/privkey.pem;
    ssl_trusted_certificate /etc/letsencrypt/live/ozkandurakoglu.com/chain.pem;
    ssl_session_timeout 1d;
    ssl_session_cache shared:SSL:50m;
    ssl_session_tickets off;
    ssl_prefer_server_ciphers on;
    add_header Strict-Transport-Security max-age=15768000;
    ssl_stapling on;
    ssl_stapling_verify on;

    return 301 https://www.ozkandurakoglu.com$request_uri;
}

相关内容