added the nginx redirected logic

22bb5110 · arbabnazar · a6149ea5 · 22bb5110
Commit 22bb5110 authored Jan 09, 2016 by arbabnazar
Show whitespace changes
Inline Side-by-side

Showing with 21 additions and 5 deletions

playbooks/roles/ansible-role-django-ida/templates/templates/edx/app/nginx/sites-available/ROLE_NAME.j2
+21 -5

No files found.
--- a/playbooks/roles/ansible-role-django-ida/templates/templates/edx/app/nginx/sites-available/ROLE_NAME.j2
+++ b/playbooks/roles/ansible-role-django-ida/templates/templates/edx/app/nginx/sites-available/ROLE_NAME.j2
@@ -58,13 +58,29 @@ server {
    proxy_pass http://{{ role_name }}_app_server;
  }
-  # Forward to HTTPS if we're an HTTP request...
+  # Nginx does not support nested condition or or conditions so
-  if ($http_x_forwarded_proto = "http") {
+  # there is an unfortunate mix of conditonals here.
-    set $do_redirect "true";
+  {{ '{%' }} if NGINX_REDIRECT_TO_HTTPS {{ '%}' }}
+     {{ '{%' }} if NGINX_HTTPS_REDIRECT_STRATEGY == "scheme" {{ '%}' }}
+  # Redirect http to https over single instance
+  if ($scheme != "https") 
+  { 
+   set $do_redirect_to_https "true";
  }
+     {{ '{%' }} endif {{ '%}' }}
+  {{ '{%' }} NGINX_HTTPS_REDIRECT_STRATEGY == "forward_for_proto" {{ '%}' }}
-  # Run our actual redirect...
+  # Forward to HTTPS if we're an HTTP request... and the server is behind ELB 
-  if ($do_redirect = "true") {
+  if ($http_x_forwarded_proto = "http") 
+  {
+   set $do_redirect_to_https "true";
+  }
+     {{ '{%' }} endif {{ '%}' }}
+  # Execute the actual redirect
+  if ($do_redirect_to_https = "true")
+  {
  rewrite ^ https://$host$request_uri? permanent;
  }
+  {{ '{%' }} endif {{ '%}' }}
 }