关于java:Nginx常用配置避坑指南

装置 Nginx

# 更新软件包，请确保服务器的软件包曾经是最新的。sudo yum update -y# 增加 Nginx 源sudo rpm -Uvh http://nginx.org/packages/centos/7/noarch/RPMS/nginx-release-centos-7-0.el7.ngx.noarch.rpm# 装置 Nginxsudo yum install -y nginx# 启动 Nginxsudo systemctl start nginx.service# 设置开机自启 Nginxsudo systemctl enable nginx.service

配置 Nginx

# 应用 vim 编辑创立 文件名.confvim /etc/nginx/conf.d/文件名.conf增加配置1（配置1和2能够共事监听80端口，绑定不同域名，实现一台服务器nginx同时配置多个前端网站，多个域名空格隔开）server {    listen 80;    server_name 域名1 域名2 localhost;    location / {        proxy_set_header HOST $host;        proxy_set_header X-Forwarded-Proto $scheme;        proxy_set_header X-Real-IP $remote_addr;        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;        proxy_pass http://127.0.0.1:端口/;    }}增加配置2server {    listen 80;    server_name 域名1 域名2 localhost;    location / {        proxy_set_header HOST $host;        proxy_set_header X-Forwarded-Proto $scheme;        proxy_set_header X-Real-IP $remote_addr;        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;        proxy_pass http://127.0.0.1:端口/;    }}代理动态网站 root指定磁盘目录server {    listen       80;    server_name  域名1 域名2 多个域名空格隔开 localhost;    location / {       try_files $uri $uri/ /index.html;       root D:\test-web;    }}

常用命令

查看配置是否有误sudo nginx -t重载/重启 Nginx 配置sudo nginx -s reload查看nginx装置目录ps -ef | grep nginx

谬误及解决办法

不能拜访子门路谬误：location /flow {    proxy_pass http://127.0.0.1:9083/;}批改：location /flow/ {    proxy_pass http://127.0.0.1:9083/;}解决：/flow 前面加个/配置多个前端代码/a/ /b/不能拜访解决：把/a/ /b/放在根目录上面 （就是只有一个根目录，不过根目录外面能够放很多我的项目文件夹）去掉申请前面的斜杠 增加在location节点外面 解决浏览器申请拼接到接口后面的诡异问题rewrite ^/(.*)/$ /$1 permanent;

前后端拆散我的项目部署

##前端配置location /gov_flow {                ##放再nginx下的/content/gov_flow目录                alias /var/html/gov_flow;                try_files $uri $uri/ /index.html;                index index.html;        }        ##后端接口配置            location /stage-prod-api/ {            proxy_set_header Host $http_host;            proxy_set_header X-Real-IP $remote_addr;            proxy_set_header REMOTE-HOST $remote_addr;            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;            proxy_pass http://flow:9083/;    }location /stage-test-api/{        proxy_set_header Host $http_host;        proxy_set_header X-Real-IP $remote_addr;        proxy_set_header REMOTE-HOST $remote_addr;        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;        proxy_pass http://localhost:8080/;}    #两个后端我的项目接口合并成一个 给前端拜访9991server {    listen       9991;    server_name  localhost;    location /yqt/{        proxy_pass http://127.0.0.1:8888/yqt/;    }    location /ad/{        proxy_pass http://127.0.0.1:8090/ad/;    }}   

nginx配置ssl证书示例1

http{  #http节点中能够增加多个server节点  server{      #ssl 须要监听443端口      listen 443;      # CA证书对应的域名      server_name www.ilovey.live;      # 开启ssl      ssl on;      # 服务器证书绝对路径      ssl_certificate /www/server/nginx/conf.d/4467149_www.ilovey.live.pem;      # 服务器端证书key绝对路径       ssl_certificate_key /www/server/nginx/conf.d/4467149_www.ilovey.live.key;      # session超时      ssl_session_timeout 5m;      # 协定类型      ssl_protocols TLSv1 TLSv1.1 TLSv1.2;      # ssl算法列表       ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;      #  是否 服务器决定应用哪种算法  on/off   TLSv1.1 的话须要开启      ssl_prefer_server_ciphers on;      location ^~  /zhihao/ {          proxy_set_header Host $host;          proxy_pass http://127.0.0.1:8080/;      }  }  # 如果用户通过 http 拜访 间接重写 跳转到 https 这个是一个很有必要的操作  server{      listen 80;      server_name www.ilovey.live;      rewrite ^/(.*)$ https://www.ilovey.live:443/$1 permanent;  }}

nginx配置ssl证书示例2

server{  listen 80;  listen 443 ssl http2;  server_name ilovey.live;  index index.php index.html index.htm default.php default.htm default.html;  root /www/wwwroot/网站目录;  #SSL-START SSL相干配置，请勿删除或批改下一行带正文的404规定  #error_page 404/404.html;  ssl_certificate    /www/server/nginx/conf.d/4467149_www.ilovey.live.pem;  ssl_certificate_key    /www/server/nginx/conf.d/4467149_www.ilovey.live.key;  ssl_protocols TLSv1 TLSv1.1 TLSv1.2;  ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;  ssl_prefer_server_ciphers on;  ssl_session_cache shared:SSL:10m;  ssl_session_timeout 10m;  error_page 497  https://$host$request_uri;  #SSL-END  #ERROR-PAGE-START  谬误页配置，能够正文、删除或批改  #error_page 404 /404.html;  #error_page 502 /502.html;  #ERROR-PAGE-END  #PHP-INFO-START  PHP援用配置，能够正文或批改  #PROXY-START  location /  {      proxy_pass http://localhost:8886;      proxy_set_header Host $host;      proxy_set_header X-Real-IP $remote_addr;      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;      proxy_set_header REMOTE-HOST $remote_addr;      #长久化连贯相干配置      #proxy_connect_timeout 30s;      #proxy_read_timeout 86400s;      #proxy_send_timeout 30s;      #proxy_http_version 1.1;      #proxy_set_header Upgrade $http_upgrade;      #proxy_set_header Connection "upgrade";      ##expires 12h;  }  #PHP-INFO-END  #禁止拜访的文件或目录  location ~ ^/(\.user.ini|\.htaccess|\.git|\.svn|\.project|LICENSE|README.md)  {      return 404;  }  #一键申请SSL证书验证目录相干设置  location ~ \.well-known{      allow all;  }}

起源：https://ilovey.live/2021/09/0...

近期热文举荐：

1.1,000+ 道 Java面试题及答案整顿(2021最新版)

2.别在再满屏的 if/ else 了，试试策略模式，真香！！

3.卧槽！Java 中的 xx ≠ null 是什么新语法？

4.Spring Boot 2.5 重磅公布，光明模式太炸了！

5.《Java开发手册（嵩山版）》最新公布，速速下载！

感觉不错，别忘了顺手点赞+转发哦！