Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Added CORS support for rev-proxy APIs #49

Open
wants to merge 7 commits into
base: master
Choose a base branch
from
Open

Added CORS support for rev-proxy APIs #49

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
be641e3
removed deprecated 'ssl on' directive
siexp May 20, 2021
f58ba95
Merge remote-tracking branch 'upstream/master'
siexp Jul 13, 2021
5ad4856
Added Access-Control-Allow-Origin
siexp Jul 13, 2021
496c1c4
Access-Control-Max-Age
siexp Jul 13, 2021
d74ed87
removed extra new line
siexp Jul 13, 2021
6ef5f36
added proxy_http_version 1.1; when doing upgrade
siexp Jul 13, 2021
b5bba80
Merge pull request #1 from siexp/feature/http_upgrade_version_for_web…
siexp Jul 14, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions defaults/main.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,7 @@ nginx_revproxy_sites: # List of sites to
hsts_max_age: 63072000 # Set HSTS header with max-age defined
letsencrypt: false # Set to True if you want use letsencrypt
letsencrypt_email: "" # Set email for letencrypt cert
allow_cors: false # Set to True if you want to allow Cross-Origin requests

nginx_revproxy_certbot_auto: false

Expand Down
6 changes: 6 additions & 0 deletions templates/reverseproxy.conf.j2
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,12 +27,18 @@ server {
listen [::]:{{ item.value.listen | default(80) }};
server_name {{ item.value.domains | join(' ') }};

{% if item.value.allow_cors is defined and item.value.allow_cors %}
add_header 'Access-Control-Allow-Origin' $http_origin;
add_header 'Access-Control-Max-Age' 600;
{% endif %}

location / {
gzip off;
client_max_body_size {{ item.value.client_max_body_size | default('50M') }};
proxy_read_timeout {{ item.value.proxy_read_timeout | default('300') }};
proxy_set_header Upgrade $http_upgrade;
{% if item.value.conn_upgrade is not defined or item.value.conn_upgrade %}
proxy_http_version 1.1;
proxy_set_header Connection "upgrade";
{% endif %}
proxy_set_header Host $http_host;
Expand Down
6 changes: 6 additions & 0 deletions templates/reverseproxy_ssl.conf.j2
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,6 +66,11 @@ server {
add_header Strict-Transport-Security "max-age={{ item.value.hsts_max_age }}; includeSubDomains; preload" always;
{% endif %}

{% if item.value.allow_cors is defined and item.value.allow_cors %}
add_header 'Access-Control-Allow-Origin' $http_origin;
add_header 'Access-Control-Max-Age' 600;
{% endif %}

access_log /var/log/nginx/{{ item.key }}_access.log;
error_log /var/log/nginx/{{ item.key }}_error.log error;

Expand Down Expand Up @@ -93,6 +98,7 @@ server {
proxy_read_timeout {{ item.value.proxy_read_timeout | default('300') }};
proxy_set_header Upgrade $http_upgrade;
{% if item.value.conn_upgrade is not defined or item.value.conn_upgrade %}
proxy_http_version 1.1;
proxy_set_header Connection "upgrade";
{% endif %}
proxy_set_header Host $http_host;
Expand Down