OpenI
/
aiforge
Not watched
1
0
Fork 0
Code
Releases 128 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
10629 Commits
197 Branches
392 MB
8616 Download
Tree: 81ebbe5926
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '81ebbe5926'
${ noResults }
aiforge/docs/content/doc/usage/reverse-proxies.en-us.md

reverse-proxies.en-us.md 8.8 kB
Raw Normal View History

Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Correct a language error in reverse proxy doc (#9455) * Correct a language error in reverse proxy doc * Apply suggestions from code review Co-Authored-By: zeripath <art27@cantab.net> Co-authored-by: zeripath <art27@cantab.net>
5 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Copyedit docs (#6275)
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
[assets] configurable URL for static resources (#7911) * static url * add cors support for static resources * [assets] work on the migration to configurable url for assets Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [misc] fix whitespace Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [assets] fix the loading of the manifest.json It is generated dynamically, and as such can not be served by the cdn. Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * Revert "add cors support for static resources" This reverts commit 42f964fd181dbb8b139808b9be623470d4f0e40f Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [docs] add the STATIC_URL_PREFIX option Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [docs] reverse-proxy: nginx: add two setups for STATIC_URL_PREFIX Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [assets] migrate the url of a new asset to the static url prefix REF: f2a3abc683ad4b2177b7c7c6160a2c0b4316120a Signed-off-by: Jakob Ackermann <das7pad@outlook.com>
5 years ago
Update static resources documentation (#10270) Signed-off-by: Gary Kim <gary@garykim.dev> Co-authored-by: Lauris BH <lauris@nix.lv> Co-authored-by: zeripath <art27@cantab.net>
5 years ago
[assets] configurable URL for static resources (#7911) * static url * add cors support for static resources * [assets] work on the migration to configurable url for assets Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [misc] fix whitespace Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [assets] fix the loading of the manifest.json It is generated dynamically, and as such can not be served by the cdn. Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * Revert "add cors support for static resources" This reverts commit 42f964fd181dbb8b139808b9be623470d4f0e40f Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [docs] add the STATIC_URL_PREFIX option Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [docs] reverse-proxy: nginx: add two setups for STATIC_URL_PREFIX Signed-off-by: Jakob Ackermann <das7pad@outlook.com> * [assets] migrate the url of a new asset to the static url prefix REF: f2a3abc683ad4b2177b7c7c6160a2c0b4316120a Signed-off-by: Jakob Ackermann <das7pad@outlook.com>
5 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Copyedit docs (#6275)
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Specify using AllowEncodedSlashes and nocanon for httpd (#7540) When using wiki page names that include a slash behind a Apache HTTPD reverse proxy, AllowEncodedSlashes NoDecode and appending nocanon to the ProxyPass directive is required. This commit adds that information to the documentation. Signed-off-by: Gary Kim <gary@garykim.dev>
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Apache configuration for Let's Encrypt webroot validation (#9438)
5 years ago
Copyedit docs (#6275)
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Fix regression in reverse proxy documentation (#7634) From Apache: AllowEncodedSlashes not allowed in <Proxy> context Move this out of <Proxy> block Fixes #7632
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
ZH-CN translation of Usage part (#5086)
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Copyedit docs (#6275)
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Copyedit docs (#6275)
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Copyedit docs (#6275)
6 years ago
Add documentation for reverse proxies (#4022) Fixes #3904
7 years ago
Gitea with Caddy with sub-path documentation. (#4028) Matches rest of headings
7 years ago
Add IIS Reverse Proxy documentation (#10881) * Add IIS Reverse Proxy documentation @mahdiit in #10748 described how to set up IIS as a reverse proxy. This PR adds these to our documentation. Close #10748 Signed-off-by: Andrew Thornton <art27@cantab.net> * Update docs/content/doc/usage/reverse-proxies.en-us.md Co-Authored-By: mrsdizzie <info@mrsdizzie.com> Co-authored-by: mrsdizzie <info@mrsdizzie.com>
5 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232 
  1. ---

  2. date: "2018-05-22T11:00:00+00:00"

  3. title: "Usage: Reverse Proxies"

  4. slug: "reverse-proxies"

  5. weight: 17

  6. toc: true

  7. draft: false

  8. menu:

  9.   sidebar:

  10.     parent: "usage"

  11.     name: "Reverse Proxies"

  12.     weight: 16

  13.     identifier: "reverse-proxies"

  14. ---

  15. 

  16. ##  Using Nginx as a reverse proxy

  17. If you want Nginx to serve your Gitea instance, add the following `server` section to the `http` section of `nginx.conf`:

  18. 

  19. ```

  20. server {

  21.     listen 80;

  22.     server_name git.example.com;

  23. 

  24.     location / {

  25.         proxy_pass http://localhost:3000;

  26.     }

  27. }

  28. ```

  29. 

  30. ## Using Nginx with a sub-path as a reverse proxy

  31. 

  32. In case you already have a site, and you want Gitea to share the domain name, you can setup Nginx to serve Gitea under a sub-path by adding the following `server` section inside the `http` section of `nginx.conf`:

  33. 

  34. ```

  35. server {

  36.     listen 80;

  37.     server_name git.example.com;

  38. 

  39.     location /git/ { # Note: Trailing slash

  40.         proxy_pass http://localhost:3000/; # Note: Trailing slash

  41.     }

  42. }

  43. ```

  44. 

  45. Then set `[server] ROOT_URL = http://git.example.com/git/` in your configuration.

  46. 

  47. ##  Using Nginx as a reverse proxy and serve static resources directly

  48. We can tune the performance in splitting requests into categories static and dynamic. 

  49. 

  50. CSS files, JavaScript files, images and web fonts are static content.

  51. The front page, a repository view or issue list is dynamic content.

  52. 

  53. Nginx can serve static resources directly and proxy only the dynamic requests to gitea.

  54. Nginx is optimized for serving static content, while the proxying of large responses might be the opposite of that

  55.  (see https://serverfault.com/q/587386).

  56. 

  57. Download a snapshot of the Gitea source repository to `/path/to/gitea/`.

  58. After this, run `make webpack` in the repository directory to generate the static resources. We are only interested in the `public/` directory for this task, so you can delete the rest.

  59. (You will need to have [Node with npm](https://nodejs.org/en/download/) and `make` installed to generate the static resources)

  60. 

  61. Depending on the scale of your user base, you might want to split the traffic to two distinct servers,

  62.  or use a cdn for the static files.

  63. 

  64. ### using a single node and a single domain

  65. 

  66. Set `[server] STATIC_URL_PREFIX = /_/static` in your configuration.

  67. 

  68. ```

  69. server {

  70.     listen 80;

  71.     server_name git.example.com;

  72. 

  73.     location /_/static {

  74.         alias /path/to/gitea/public;

  75.     }

  76. 

  77.     location / {

  78.         proxy_pass http://localhost:3000;

  79.     }

  80. }

  81. ```

  82. 

  83. ### using two nodes and two domains

  84. 

  85. Set `[server] STATIC_URL_PREFIX = http://cdn.example.com/gitea` in your configuration.

  86. 

  87. ```

  88. # application server running gitea

  89. server {

  90.     listen 80;

  91.     server_name git.example.com;

  92. 

  93.     location / {

  94.         proxy_pass http://localhost:3000;

  95.     }

  96. }

  97. ```

  98. 

  99. ```

  100. # static content delivery server

  101. server {

  102.     listen 80;

  103.     server_name cdn.example.com;

  104. 

  105.     location /gitea {

  106.         alias /path/to/gitea/public;

  107.     }

  108. 

  109.     location / {

  110.         return 404;

  111.     }

  112. }

  113. ```

  114. 

  115. ## Using Apache HTTPD as a reverse proxy

  116. 

  117. If you want Apache HTTPD to serve your Gitea instance, you can add the following to your Apache HTTPD configuration (usually located at `/etc/apache2/httpd.conf` in Ubuntu):

  118. 

  119. ```

  120. <VirtualHost *:80>

  121.     ...

  122.     ProxyPreserveHost On

  123.     ProxyRequests off

  124.     AllowEncodedSlashes NoDecode

  125.     ProxyPass / http://localhost:3000/ nocanon

  126.     ProxyPassReverse / http://localhost:3000/

  127. </VirtualHost>

  128. ```

  129. 

  130. Note: The following Apache HTTPD mods must be enabled: `proxy`, `proxy_http`

  131. 

  132. If you wish to use Let's Encrypt with webroot validation, add the line `ProxyPass /.well-known !` before `ProxyPass` to disable proxying these requests to Gitea.

  133. 

  134. ## Using Apache HTTPD with a sub-path as a reverse proxy

  135. 

  136. In case you already have a site, and you want Gitea to share the domain name, you can setup Apache HTTPD to serve Gitea under a sub-path by adding the following to you Apache HTTPD configuration (usually located at `/etc/apache2/httpd.conf` in Ubuntu):

  137. 

  138. ```

  139. <VirtualHost *:80>

  140.     ...

  141.     <Proxy *>

  142.          Order allow,deny

  143.          Allow from all

  144.     </Proxy>

  145.     AllowEncodedSlashes NoDecode

  146.     # Note: no trailing slash after either /git or port

  147.     ProxyPass /git http://localhost:3000 nocanon

  148.     ProxyPassReverse /git http://localhost:3000

  149. </VirtualHost>

  150. ```

  151. 

  152. Then set `[server] ROOT_URL = http://git.example.com/git/` in your configuration.

  153. 

  154. Note: The following Apache HTTPD mods must be enabled: `proxy`, `proxy_http`

  155. 

  156. ## Using Caddy as a reverse proxy

  157. 

  158. If you want Caddy to serve your Gitea instance, you can add the following server block to your Caddyfile:

  159. 

  160. ```

  161. git.example.com {

  162.     proxy / http://localhost:3000

  163. }

  164. ```

  165. 

  166. ## Using Caddy with a sub-path as a reverse proxy

  167. 

  168. In case you already have a site, and you want Gitea to share the domain name, you can setup Caddy to serve Gitea under a sub-path by adding the following to your server block in your Caddyfile:

  169. 

  170. ```

  171. git.example.com {

  172.     proxy /git/ http://localhost:3000 # Note: Trailing Slash after /git/

  173. }

  174. ```

  175. 

  176. Then set `[server] ROOT_URL = http://git.example.com/git/` in your configuration.

  177. 

  178. ## Using IIS as a reverse proxy

  179. 

  180. If you wish to run Gitea with IIS. You will need to setup IIS with URL Rewrite as reverse proxy.

  181. 

  182. 1. Setup an empty website in IIS, named let's say, `Gitea Proxy`.

  183. 2. Follow the first two steps in [Microsoft's Technical Community Guide to Setup IIS with URL Rewrite](https://techcommunity.microsoft.com/t5/iis-support-blog/setup-iis-with-url-rewrite-as-a-reverse-proxy-for-real-world/ba-p/846222#M343). That is:

  184.   - Install Application Request Routing (ARR for short) either by using the Microsoft Web Platform Installer 5.1 (WebPI) or downloading the extension from [IIS.net]( https://www.iis.net/downloads/microsoft/application-request-routing)

  185.   - Once the module is installed in IIS, you will see a new Icon in the IIS Administration Console called URL Rewrite.

  186.   - Open the IIS Manager Console and click on the `Gitea Proxy` Website from the tree view on the left. Select and double click the URL Rewrite Icon from the middle pane to load the URL Rewrite interface.

  187.   - Choose the `Add Rule` action from the right pane of the management console and select the `Reverse Proxy Rule` from the `Inbound and Outbound Rules` category.

  188.   - In the Inbound Rules section, set the server name to be the host that Gitea is running on with its port. e.g. if you are running Gitea on the localhost with port 3000, the following should work: `127.0.0.1:3000`

  189.   - Enable SSL Offloading 

  190.   - In the Outbound Rules, ensure `Rewrite the domain names of the links in HTTP response` is set and set the `From:` field as above and the `To:` to your external hostname, say: `git.example.com`

  191.   - Now edit the `web.config` for your website to match the following: (changing `127.0.0.1:3000` and `git.example.com` as appropriate)

  192. 

  193. ```xml

  194. <?xml version="1.0" encoding="UTF-8"?>

  195. <configuration>

  196.     <system.webServer>

  197.         <rewrite>

  198.             <rules>

  199.                 <rule name="ReverseProxyInboundRule1" stopProcessing="true">

  200.                     <match url="(.*)" />

  201.                     <action type="Rewrite" url="http://127.0.0.1:3000/{R:1}" />

  202.                     <serverVariables>

  203.                         <set name="HTTP_X_ORIGINAL_ACCEPT_ENCODING" value="HTTP_ACCEPT_ENCODING" />

  204.                         <set name="HTTP_ACCEPT_ENCODING" value="" />

  205.                     </serverVariables>

  206.                 </rule>

  207.             </rules>

  208.             <outboundRules>

  209.                 <rule name="ReverseProxyOutboundRule1" preCondition="ResponseIsHtml1">

  210.                     <!-- set the pattern correctly here - if you only want to accept http or https -->

  211.                     <!-- change the pattern and the action value as appropriate -->

  212.                     <match filterByTags="A, Form, Img" pattern="^http(s)?://127.0.0.1:3000/(.*)" />

  213.                     <action type="Rewrite" value="http{R:1}://git.example.com/{R:2}" />

  214.                 </rule>

  215.                 <rule name="RestoreAcceptEncoding" preCondition="NeedsRestoringAcceptEncoding">

  216.                     <match serverVariable="HTTP_ACCEPT_ENCODING" pattern="^(.*)" />

  217.                     <action type="Rewrite" value="{HTTP_X_ORIGINAL_ACCEPT_ENCODING}" />

  218.                 </rule>

  219.                 <preConditions>

  220.                     <preCondition name="ResponseIsHtml1">

  221.                         <add input="{RESPONSE_CONTENT_TYPE}" pattern="^text/html" />

  222.                     </preCondition>

  223.                     <preCondition name="NeedsRestoringAcceptEncoding">

  224.                         <add input="{HTTP_X_ORIGINAL_ACCEPT_ENCODING}" pattern=".+" />

  225.                     </preCondition>

  226.                 </preConditions>

  227.             </outboundRules>

  228.         </rewrite>

  229.         <urlCompression doDynamicCompression="true" />

  230.     </system.webServer>

  231. </configuration>

  232. ```

No Description