詹金斯为什么说我的反向代理设置坏了?

时间:2017-02-16 07:33:52

标签: jenkins

我在Ubuntu 16.04计算机上安装了Jenkins 2.32.2,并按照on their wiki所述配置了Apache代理。

我在/etc/default/jenkins中更改了这些行:

HTTP_PORT=8380

JENKINS_ARGS="--webroot=/var/cache/$NAME/war --httpPort=$HTTP_PORT --prefix=/jenkins"

有了这些,我可以http://myhost:8380/jenkins/

访问Jenkins

对于代理,我使用以下内容创建了文件/etc/apache2/conf-available/jenkins.conf

ProxyPass         /jenkins  http://myhost:8380/jenkins nocanon
ProxyPassReverse  /jenkins  http://myhost:8380/jenkins
ProxyRequests     Off
ProxyPreserveHost On
AllowEncodedSlashes NoDecode

# Local reverse proxy authorization override
# Most unix distribution deny proxy by default (ie /etc/apache2/mods-enabled/proxy.conf in Ubuntu)
<Proxy http://myhost:8380/jenkins*>
  Order deny,allow
  Allow from all
</Proxy>

然后我启用了配置(使用sudo a2enconf jenkins)并重新启动了Apache。现在我可以http://myhost/jenkins访问Jenkins。

原则上它没关系,但在&#34;管理Jenkins&#34;页面我收到一条消息,上面写着&#34;您的反向代理设置似乎已损坏。&#34; 带有a wiki page with possible solutions的链接。

其中一个建议是尝试进行诊断:

curl -iL -e http://myhost/jenkins/manage http://myhost/jenkins/administrativeMonitor/hudson.diagnosis.ReverseProxySetupMonitor/test

这是输出:

HTTP/1.1 403 Forbidden
Date: Thu, 16 Feb 2017 07:01:00 GMT
Server: Jetty(9.2.z-SNAPSHOT)
X-Content-Type-Options: nosniff
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: text/html;charset=UTF-8
X-Hudson: 1.395
X-Jenkins: 2.32.2
X-Jenkins-Session: 7b3e99ac
X-You-Are-Authenticated-As: anonymous
X-You-Are-In-Group: 
X-Required-Permission: hudson.model.Hudson.Read
X-Permission-Implied-By: hudson.security.Permission.GenericRead
X-Permission-Implied-By: hudson.model.Hudson.Administer
Content-Length: 973
Set-Cookie: JSESSIONID.34f83688=1rkbqf12ykw0w1clnm0l7cc9l6;Path=/jenkins;HttpOnly

<html><head><meta http-equiv='refresh' content='1;url=/jenkins/login?from=%2Fjenkins%2FadministrativeMonitor%2Fhudson.diagnosis.ReverseProxySetupMonitor%2Ftest'/><script>window.location.replace('/jenkins/login?from=%2Fjenkins%2FadministrativeMonitor%2Fhudson.diagnosis.ReverseProxySetupMonitor%2Ftest');</script></head><body style='background-color:white; color:white;'>


Authentication required
<!--
You are authenticated as: anonymous
Groups that you are in:

Permission you need to have (but didn't): hudson.model.Hudson.Read
 ... which is implied by: hudson.security.Permission.GenericRead
 ... which is implied by: hudson.model.Hudson.Administer
-->

</body></html>

匿名/ 403是个问题吗?在Jenkins,我在登录时收到错误。

我还检查过&#34;詹金斯位置/詹金斯网址&#34;在设置中,它没关系:http://myhost/jenkins/

1 个答案:

答案 0 :(得分:1)

我遇到了这个问题。

你需要查看/var/log/jenkins/jenkins.log

就我而言,我有

WARNING h.d.ReverseProxySetupMonitor#getTestForReverseProxySetup: http://myhost/manage vs. https:%2F%2Fmyhost%2Fmanage

诀窍是两个 url 应该相同。可以看出,就我而言,有两个问题:

斜线的编码,这个已经通过在ProxyPass末尾添加nocanon进行排序。

ProxyPass / http://localhost:8083/ nocanon

https变成了http,这已经通过添加以下行进行排序

RequestHeader set X-Forwarded-Proto https
相关问题
最新问题