Skip to content

C
configuration
Commit 84644eaf by Arbab Nazar
Options

Merge pull request #2487 from edx/arbab/devops-3217 

Fix the HTTP-to-HTTPS redirect on sandboxes
parents e97975da 87b9f35b
Showing with 39 additions and 4 deletions
playbooks/roles/nginx/templates/edx/app/nginx/sites-available/cms.j2
......@@ -91,6 +91,11 @@ error_page {{ k }} {{ v }};
{% include "robots.j2" %}
{% include "static-files.j2" %}
{% if NGINX_SET_X_FORWARDED_HEADERS %}
if ($scheme != "https") {
rewrite ^ https://$host$uri permanent;
}
{% else %}
# Forward to HTTPS if we're an HTTP request...
if ($http_x_forwarded_proto = "http") {
set $do_redirect "true";
......@@ -100,5 +105,5 @@ error_page {{ k }} {{ v }};
if ($do_redirect = "true") {
rewrite ^ https://$host$request_uri? permanent;
}
{% endif %}
}
playbooks/roles/nginx/templates/edx/app/nginx/sites-available/ecommerce.j2
......@@ -53,7 +53,12 @@ location @proxy_to_app {
proxy_pass http://ecommerce_app_server;
}
# Forward to HTTPS if we're an HTTP request...
{% if NGINX_SET_X_FORWARDED_HEADERS %}
if ($scheme != "https") {
rewrite ^ https://$host$uri permanent;
}
{% else %}
# Forward to HTTPS if we're an HTTP request...
if ($http_x_forwarded_proto = "http") {
set $do_redirect "true";
}
......@@ -62,5 +67,6 @@ location @proxy_to_app {
if ($do_redirect = "true") {
rewrite ^ https://$host$request_uri? permanent;
}
{% endif %}
}
playbooks/roles/nginx/templates/edx/app/nginx/sites-available/insights.j2
......@@ -33,7 +33,12 @@ location @proxy_to_app {
proxy_pass http://insights_app_server;
}
# Forward to HTTPS if we're an HTTP request...
{% if NGINX_SET_X_FORWARDED_HEADERS %}
if ($scheme != "https") {
rewrite ^ https://$host$uri permanent;
}
{% else %}
# Forward to HTTPS if we're an HTTP request...
if ($http_x_forwarded_proto = "http") {
set $do_redirect "true";
}
......@@ -42,4 +47,5 @@ location @proxy_to_app {
if ($do_redirect = "true") {
rewrite ^ https://$host$request_uri? permanent;
}
{% endif %}
}
playbooks/roles/nginx/templates/edx/app/nginx/sites-available/lms-preview.j2
......@@ -76,6 +76,11 @@ server {
expires epoch;
}
{% if NGINX_SET_X_FORWARDED_HEADERS %}
if ($scheme != "https") {
rewrite ^ https://$host$uri permanent;
}
{% else %}
# Forward to HTTPS if we're an HTTP request...
if ($http_x_forwarded_proto = "http") {
set $do_redirect "true";
......@@ -85,4 +90,5 @@ server {
if ($do_redirect = "true") {
rewrite ^ https://$host$request_uri? permanent;
}
{% endif %}
}
playbooks/roles/nginx/templates/edx/app/nginx/sites-available/lms.j2
......@@ -180,6 +180,11 @@ location ~ ^{{ EDXAPP_MEDIA_URL }}/(?P<file>.*) {
{% include "robots.j2" %}
{% include "static-files.j2" %}
{% if NGINX_SET_X_FORWARDED_HEADERS %}
if ($scheme != "https") {
rewrite ^ https://$host$uri permanent;
}
{% else %}
# Forward to HTTPS if we're an HTTP request...
if ($http_x_forwarded_proto = "http") {
set $do_redirect "true";
......@@ -189,4 +194,5 @@ location ~ ^{{ EDXAPP_MEDIA_URL }}/(?P<file>.*) {
if ($do_redirect = "true") {
rewrite ^ https://$host$request_uri? permanent;
}
{% endif %}
}
playbooks/roles/nginx/templates/edx/app/nginx/sites-available/programs.j2
......@@ -52,7 +52,12 @@ location @proxy_to_app {
proxy_redirect off;
proxy_pass http://programs_app_server;
}
# Forward to HTTPS if we're an HTTP request...
{% if NGINX_SET_X_FORWARDED_HEADERS %}
if ($scheme != "https") {
rewrite ^ https://$host$uri permanent;
}
{% else %}
# Forward to HTTPS if we're an HTTP request...
if ($http_x_forwarded_proto = "http") {
set $do_redirect "true";
}
......@@ -61,4 +66,5 @@ location @proxy_to_app {
if ($do_redirect = "true") {
rewrite ^ https://$host$request_uri? permanent;
}
{% endif %}
}
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment