我在生产服务器上安装SSL时遇到问题。我在端口80上运行Laravel,在端口8080上运行vue js。我已经安装了SSL证书。
但是现在当我尝试将任何请求发送到8000 a时出现错误:
xhr.js:178混合内容:“ https://www.example.com/login”上的页面 已通过HTTPS加载,但请求了不安全的XMLHttpRequest 端点“ http://www.example.com:8000/api/auth/login”。这个请求 已被阻止;内容必须通过HTTPS提供。
这是我的NGINX设置:
server {
listen 8000 default_server;
listen [::]:8000 default_server ipv6only=on;
root /var/www/laravel/public;
index index.php index.html index.htm index.nginx-debian.html;
server_name example.com www.example.com;
location / {
try_files $uri $uri/ /index.php?$query_string;
}
location ~ \.php$ {
include snippets/fastcgi-php.conf;
fastcgi_pass unix:/run/php/php7.2-fpm.sock;
}
location ~ /\.ht {
deny all;
}
}
server {
listen 80;
listen [::]:80;
server_name example.com www.example.com;
error_page 404 /index.html;
root /var/www/client/dist;
index index.html;
location / {
try_files $uri $uri/ =404;
}
listen [::]:443 ssl ipv6only=on; # managed by Certbot
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/example.com/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}
答案 0 :(得分:1)
我已通过将API移至子域并在其上添加一个SSL证书解决了该问题。该应用程序现在可以正常工作。