React-native无法连接到https

时间:2018-06-22 07:43:39

标签: ssl react-native meteor websocket

将ssl证书添加到网站域,并将Meteor.connect更改为

 METEOR_URL = 'wss://example.com/websocket'; 

也尝试过

METEOR_URL = 'wss://example.com:3000/websocket';

但是生产android apk无法连接到ddp连接。

我的Nginx设置看起来像这样,并且可以很好地用于安全设置:

server {
        listen *:80;
        server_name example.com www.example.com;
        return 301 https://example.com;
        access_log /var/log/nginx/example.access.log;
        error_log /var/log/nginx/example.error.log;

       location / {
          proxy_pass http://127.0.0.1:3027;
          proxy_http_version 1.1;
          proxy_set_header Upgrade $http_upgrade;
          proxy_set_header Connection 'upgrade';
          proxy_set_header X-Forwarded-For $remote_addr;
       }
      }
 server {
        listen 443 ssl http2;
        listen [::]:443 ssl http2;
        server_name example.com www.example.com;
        ssl_certificate /home/ubuntu/.ssh/chain.pem;
        ssl_certificate_key /home/ubuntu/.ssh/private_key.key;
        ssl_prefer_server_ciphers on;
        ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
        ssl_ciphers 'ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS';
       ssl_session_cache builtin:1000 shared:SSL:50m;
       ssl_session_timeout 1d;
       ssl_stapling on;
       ssl_stapling_verify on;
       ssl_session_tickets off;
       ssl_ecdh_curve secp384r1:secp256k1;
       resolver_timeout 5s;
       resolver 8.8.8.8 8.8.4.4 valid=300s; #Cache resolver
       add_header Strict-Transport-Security "max-age=31536000; includeSubdomains; preload" always;
       add_header X-Frame-Options DENY;
       add_header X-Content-Type-Options nosniff;
       add_header X-XSS-Protection "1; mode=block";
       add_header X-Robots-Tag none;
       access_log /var/log/nginx/example.access.log;
       error_log /var/log/nginx/example.error.log;
       location / {
               proxy_pass http://127.0.0.1:3027;
               proxy_http_version 1.1;
               proxy_set_header Upgrade $http_upgrade;
               proxy_set_header Connection 'upgrade';
               proxy_set_header X-Forwarded-For $remote_addr;
        }

    }

任何帮助将不胜感激。

0 个答案:

没有答案