Category: Nginx – ServerOK

Install Nginx Proxy Manager

Posted on September 21, 2020 by ServerOk

Nginx Proxy Manager is Docker based GUI for managing Nginx reverse proxy. It support LetsEncrypt free SSL. https://nginxproxymanager.com To install, create a folder

mkdir nginx-proxy-manager
cd nginx-proxy-manager

1 2	mkdir nginx-proxy-manager cd nginx-proxy-manager

Create config.json file

vi config.json

1	vi config.json

Add

{
  "database": {
    "engine": "mysql",
    "host": "db",
    "name": "npm",
    "user": "npm",
    "password": "npm",
    "port": 3306
  }
}

{

"database": {

"engine": "mysql",

"host": "db",

"name": "npm",

"user": "npm",

"password": "npm",

"port": 3306

}

Creaye docker-compose.yaml file

vi docker-compose.yaml

1	vi docker-compose.yaml

add following content

version: '3'
services:
  app:
    image: 'jc21/nginx-proxy-manager:latest'
    ports:
      - '80:80'
      - '81:81'
      - '443:443'
    volumes:
      - ./config.json:/app/config/production.json
      - ./data:/data
      - ./letsencrypt:/etc/letsencrypt
  db:
    image: 'jc21/mariadb-aria:10.4'
    environment:
      MYSQL_ROOT_PASSWORD: 'npm'
      MYSQL_DATABASE: 'npm'
      MYSQL_USER: 'npm'
      MYSQL_PASSWORD: 'npm'
    volumes:
      - ./data/mysql:/var/lib/mysql

version: '3'

services:

app:

image: 'jc21/nginx-proxy-manager:latest'

ports:

- '80:80'

- '81:81'

- '443:443'

volumes:

- ./config.json:/app/config/production.json

- ./data:/data

- ./letsencrypt:/etc/letsencrypt

db:

image: 'jc21/mariadb-aria:10.4'

environment:

MYSQL_ROOT_PASSWORD: 'npm'

MYSQL_DATABASE: 'npm'

MYSQL_USER: 'npm'

MYSQL_PASSWORD: 'npm'

volumes:

- ./data/mysql:/var/lib/mysql

If you don’t have docker and docker-compose installed, install it with

apt install docker.io docker-compose

1	apt install docker.io docker-compose

To start Nginx Proxy Manager, […]

LetsEncrypt SSL On Nginx Password Protected site

Posted on August 11, 2020 by ServerOk

When you develop a web site, you will need it password protected so others won’t see or you don’t want google to index the web pages while you are working on it. To password protect a web site in nginx, see Nginx Password Protect a website If you password protect a web site and try […]

Enable CORS in Nginx

Posted on August 1, 2020 (August 1, 2020) by ServerOk

To enable CORS in nginx, add following inside web sites sevrer config.

add_header 'Access-Control-Allow-Origin' '*';
add_header 'Access-Control-Allow-Credentials' 'true';
add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
add_header 'Access-Control-Allow-Headers' 'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';

add_header 'Access-Control-Allow-Origin' '*';

add_header 'Access-Control-Allow-Credentials' 'true';

add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';

add_header 'Access-Control-Allow-Headers' 'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';

Restart nginx

systemctl restart nginx

1	systemctl restart nginx

See CORS […]

List installed Modules in Nginx

Posted on July 30, 2020 by ServerOk

To list modules compiled with nginx, run

nginx -V 2>&1 | tr -- - '\n' | grep module

1	nginx -V 2>&1 \| tr -- - '\n' \| grep module

Example

root@ok:~# nginx -V 2>&1 | tr -- - '\n' | grep module
modules
path=/usr/lib/nginx/modules 
http_ssl_module 
http_stub_status_module 
http_realip_module 
http_auth_request_module 
http_v2_module 
http_dav_module 
http_slice_module 
http_addition_module 
http_gunzip_module 
http_gzip_static_module 
http_image_filter_module=dynamic 
http_sub_module 
http_xslt_module=dynamic 
stream_ssl_module 
mail_ssl_module
root@ok:~#

root@ok:~# nginx -V 2>&1 | tr -- - '\n' | grep module

modules

path=/usr/lib/nginx/modules

http_ssl_module

http_stub_status_module

http_realip_module

http_auth_request_module

http_v2_module

http_dav_module

http_slice_module

http_addition_module

http_gunzip_module

http_gzip_static_module

http_image_filter_module=dynamic

http_sub_module

http_xslt_module=dynamic

stream_ssl_module

mail_ssl_module

root@ok:~#

[…]

Nginx remove html from url

Posted on July 23, 2020 (July 23, 2020) by ServerOk

If you have a static website build using plain html files, your url will look like https://yourdomain/page.html. This .html extension is useful for the files when it is on your local computer, it help computer to associate the file with specific application, say your HTML editor. But on a web server this .html extension serve […]

Nginx show full url in access log

Posted on July 15, 2020 by ServerOk

To show full url in nginx access log, add following

log_format main '$http_x_forwarded_for - $remote_user [$time_local] '
                '"$request_method $scheme://$host$request_uri $server_protocol" '
                '$status $body_bytes_sent "$http_referer" '
                '"$http_user_agent" $request_time';

log_format main '$http_x_forwarded_for - $remote_user [$time_local] '

'"$request_method $scheme://$host$request_uri $server_protocol" '

'$status $body_bytes_sent "$http_referer" '

'"$http_user_agent" $request_time';

See Nginx […]

Nginx HTTP 414 request-URI too large

Posted on February 6, 2020 by ServerOk

On a Nginx server, when accessing a long url, i get error

HTTP 414 Request-URI Too Large

1	HTTP 414 Request-URI Too Large

To fix the error, edit

vi /etc/nginx/nginx.conf

1	vi /etc/nginx/nginx.conf

inside “http” section, find

large_client_header_buffers

1	large_client_header_buffers

Replace the line with

large_client_header_buffers 4 32k;

1	large_client_header_buffers 4 32k;

If your URL is very large, you may need to increase the 32k to higher or reduce the url length. Large url like this mostly happend […]

Show Real IP Nginx Behind Reverse Proxy

Posted on November 22, 2019 (November 22, 2019) by ServerOk

When your Nginx web server is running behind a reverse proxy, you will see IP of the reverse proxy server as visitor IP in web servers access log. To fix this, edit nginx.conf file

vi /etc/nginx/nginx.conf

1	vi /etc/nginx/nginx.conf

Find

http {

http {

Inside http section, add

set_real_ip_from IP_ADDRESS_OF_PROXY_SERVER_HERE;
real_ip_header X-Forwarded-For;

1 2	set_real_ip_from IP_ADDRESS_OF_PROXY_SERVER_HERE; real_ip_header X-Forwarded-For;

Example

set_real_ip_from 192.168.122.1;
real_ip_header X-Forwarded-For;

1 2	set_real_ip_from 192.168.122.1; real_ip_header X-Forwarded-For;

Restart Nginx

nginx -s reload

1	nginx -s reload

[…]

Nginx Location Directive

Posted on September 29, 2019 by ServerOk

Nginx Location Directive is used to route request to correct files. Match Exact match is used to match an exact URL.

server {
    listen 80 default_server;
    root /var/www/html;
    index index.html;
    server_name _;

    location /ok/ {
        root /home/;
    }
}

server {

listen 80 default_server;

root /var/www/html;

index index.html;

server_name _;

location /ok/ {

root /home/;

}

When location is used with no modifiers, then beginning of the URL is matched. In this case, any url http://domain/ok/FILE_NAME will be served from /home/ok/FILE_NAME Exact Match (=) Exact match is used to […]

Nginx Password Protect a website

Posted on August 3, 2019 by ServerOk

To password protect a web site, you need to install htpasswd utility. On Ubuntu/Debian, you can install it with command

apt install apache2-utils -y

1	apt install apache2-utils -y

Now create a password file with command

htpasswd -c /etc/nginx/.htpasswd  USER_NAME_HERE

1	htpasswd -c /etc/nginx/.htpasswd USER_NAME_HERE

It will ask for password. Edit configuration file for your web site and add following in the server entry for the web site.

auth_basic "Members Only";
auth_basic_user_file /etc/nginx/.htpasswd;

1 2	auth_basic "Members Only"; auth_basic_user_file /etc/nginx/.htpasswd;

Restart Nginx. […]