这是我的Nginx配置文件:
location ~* ^/admin-panel/rest/(.*) {
auth_request /admin/admin_authentication/check_access?url=$request_uri;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
resolver 127.0.0.11 ipv6=off;
proxy_pass http://nginx:8000/$1$is_args$args;
}
我想将$request_uri作为GET参数发送到我的身份验证服务。但我收到这样的错误:
2019/06/23 06:30:07 [error] 6#6: *5 auth request unexpected status:
404 while sending to client, client: 192.168.224.1, server: , request:
"POST /admin-panel/rest/update HTTP/1.1", host: "localhost"
2019/06/23 06:30:07 [error] 6#6: *8 auth request unexpected status:
404 while sending to client, client: 192.168.224.1, server: , request:
"POST /admin-panel/rest/update HTTP/1.1", host: "localhost"
2019/06/23 06:31:56 [error] 6#6: *1 auth request unexpected status:
404 while sending to client, client: 192.168.224.1, server: , request:
"POST /admin-panel/rest/update HTTP/1.1", host: "localhost"
2019/06/23 06:31:57 [error] 6#6: *3 auth request unexpected status:
404 while sending to client, client: 192.168.224.1, server: , request:
"POST /admin-panel/rest/update HTTP/1.1", host: "localhost"
当我删除?url=$request_uri中的auth_request部分时,一切正常
答案 0 :(得分:2)
通过使用lua-nginx-module(或openresty码头工人形象),您可以像这样使用access_by_lua_block代替auth_request:
location ~* ^/admin-panel/rest/(.*) {
access_by_lua_block {
local res = ngx.location.capture("/admin/admin_authentication/check_access?url=" .. ngx.var.request_uri)
if res.status == ngx.HTTP_OK then
return
end
if res.status == ngx.HTTP_FORBIDDEN then
ngx.exit(res.status)
end
ngx.exit(ngx.HTTP_INTERNAL_SERVER_ERROR)
}
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
resolver 127.0.0.11 ipv6=off;
proxy_pass http://nginx:8000/$1$is_args$args;
}
实际上,此代码使用auth_request实现access_by_lua_block,并使用Lua串联运算符..创建URL。