设置:Rails 5.1.3,带乘客和Nginx的Dreamhost VPS。由于它是VPS,因此我无法执行任何需要根本权限的功能。
情况:目前,我已经重做了一个具有动作功能的Rails应用程序。较早的配置是使用Apache而不是HTTP服务器的NGINX。除Websocket外,一切都很好,我阅读了很多文章,所有确认Action Cables Apache都无法正常工作。
这一点,我切换到Nginx。使用NGINX,我的第一个观察结果是,该应用程序不断尝试" GET Cable/"过程,并且无法升级到Websocket。在阅读了各种讨论之后,我设法解决了以下问题:
location /cable {
proxy_pass http://127.0.0.1:8000/cable;
proxy_http_version 1.1;
proxy_set_header Host $http_host;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
由于我没有词根权限访问常规dt/etc/nginx/......./ghyde。cundFile,使用Dream -Host VPS软件包,我可以在/home/username/nginx/添加一个文件(appname.com)/(任何file-name.conf),这会添加到nginx"服务器块",根据dreamhost文档。
^^因此,该目录中的一个名为" redis.conf"的文件中,单独的代码上面块对Action Cables问题进行了排序。它成功地开始在频道上流式传输,一切都很好。
我后来意识到,主要问题是我无法执行任何创建,更新,销毁操作 - 任何需要发布或删除方法的事物,因为它会导致真实性令牌错误,并说"请求origin(http:http:http:http:http:http:http:http://siik.io-- 这是应用程序& domain name )与request.base_url(http://127.0.0.1)。
详细信息错误:
I, [2017-09-11T03:27:28.623080 #7273] INFO -- : [50a21156-0333-413e-94b
8-07b791c209fc] Completed 200 OK in 83ms (Views: 56.0ms | ActiveRecord: 16.6ms)
I, [2017-09-11T03:27:31.950732 #7273] INFO -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] Started POST "/conversations/1/messages" for 106.208.156.243 at 2017-09-11 03:27:31 -0700
I, [2017-09-11T03:27:31.953339 #7273] INFO -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] Processing by MessagesController#create as JS
I, [2017-09-11T03:27:31.953511 #7273] INFO -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] Parameters: {"utf8"=>"✓", "message"=>{"user_id"=>"1", "body"=>"sdfgh"}, "commit"=>"Send", "conversation_id"=>"1"}
W, [2017-09-11T03:27:31.954325 #7273] WARN -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] HTTP Origin header (http://www.siik.io) didn't match request.base_url (http://127.0.0.1:8000)
I, [2017-09-11T03:27:31.954890 #7273] INFO -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] Completed 422 Unprocessable Entity in 1ms (ActiveRecord: 0.0ms)
F, [2017-09-11T03:27:31.956888 #7273] FATAL -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d]
F, [2017-09-11T03:27:31.956969 #7273] FATAL -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] ActionController::InvalidAuthenticityToken (ActionController::InvalidAuthenticityToken):
F, [2017-09-11T03:27:31.957017 #7273] FATAL -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d]
F, [2017-09-11T03:27:31.957126 #7273] FATAL -- : [dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal/request_forgery_protection.rb:195:in `handle_unverified_request'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal/request_forgery_protection.rb:227:in `handle_unverified_request'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] devise (4.3.0) lib/devise/controllers/helpers.rb:253:in `handle_unverified_request'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal/request_forgery_protection.rb:222:in `verify_authenticity_token'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:413:in `block in make_lambda'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:197:in `block (2 levels) in halting'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/abstract_controller/callbacks.rb:12:in `block (2 levels) in <module:Callbacks>'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:198:in `block in halting'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:507:in `block in invoke_before'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:507:in `each'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:507:in `invoke_before'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:130:in `run_callbacks'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/abstract_controller/callbacks.rb:19:in `process_action'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal/rescue.rb:20:in `process_action'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal/instrumentation.rb:32:in `block in process_action'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/notifications.rb:166:in `block in instrument'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/notifications/instrumenter.rb:21:in `instrument'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/notifications.rb:166:in `instrument'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal/instrumentation.rb:30:in `process_action'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal/params_wrapper.rb:252:in `process_action'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activerecord (5.1.3) lib/active_record/railties/controller_runtime.rb:22:in `process_action'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/abstract_controller/base.rb:124:in `process'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionview (5.1.3) lib/action_view/rendering.rb:30:in `process'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal.rb:189:in `dispatch'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_controller/metal.rb:253:in `dispatch'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/routing/route_set.rb:49:in `dispatch'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/routing/route_set.rb:31:in `serve'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/journey/router.rb:46:in `block in serve'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/journey/router.rb:33:in `each'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/journey/router.rb:33:in `serve'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/routing/route_set.rb:834:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] remotipart (1.3.1) lib/remotipart/middleware.rb:32:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] warden (1.2.7) lib/warden/manager.rb:36:in `block in call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] warden (1.2.7) lib/warden/manager.rb:35:in `catch'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] warden (1.2.7) lib/warden/manager.rb:35:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/etag.rb:25:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/conditional_get.rb:38:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/head.rb:12:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/session/abstract/id.rb:232:in `context'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/session/abstract/id.rb:226:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/cookies.rb:613:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/callbacks.rb:26:in `block in call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/callbacks.rb:97:in `run_callbacks'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/callbacks.rb:24:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/debug_exceptions.rb:59:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/show_exceptions.rb:31:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] railties (5.1.3) lib/rails/rack/logger.rb:36:in `call_app'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] railties (5.1.3) lib/rails/rack/logger.rb:24:in `block in call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/tagged_logging.rb:69:in `block in tagged'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/tagged_logging.rb:26:in `tagged'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/tagged_logging.rb:69:in `tagged'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] railties (5.1.3) lib/rails/rack/logger.rb:24:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/remote_ip.rb:79:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/request_id.rb:25:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/method_override.rb:22:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/runtime.rb:22:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] activesupport (5.1.3) lib/active_support/cache/strategy/local_cache_middleware.rb:27:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] actionpack (5.1.3) lib/action_dispatch/middleware/executor.rb:12:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] rack (2.0.3) lib/rack/sendfile.rb:111:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] railties (5.1.3) lib/rails/engine.rb:522:in `call'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] passenger (5.1.8) src/ruby_supportlib/phusion_passenger/rack/thread_handler_extension.rb:97:in `process_request'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] passenger (5.1.8) src/ruby_supportlib/phusion_passenger/request_handler/thread_handler.rb:160:in `accept_and_process_next_request'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] passenger (5.1.8) src/ruby_supportlib/phusion_passenger/request_handler/thread_handler.rb:113:in `main_loop'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] passenger (5.1.8) src/ruby_supportlib/phusion_passenger/request_handler.rb:416:in `block (3 levels) in start_threads'
[dd8e08f7-f28b-497b-9ae9-e57a6a45c35d] passenger (5.1.8) src/ruby_supportlib/phusion_passenger/utils.rb:113:in `block in create_thread_and_abort_on_exception'
,但是,当我通过http://siik.ia.ia访问该网站时:8000一切都可以很好地工作,甚至Websockets都咬合而无需redis.conf文件。
我已经经历了一周的各种修复和文档的价值,但未能找到解决方案。我认为基本要求是将更多标头添加到位置/{}块中以添加到nginx.conf文件...(我列出了我在下面尝试过的一些示例。)
listen 80;
listen *:80;
server_name siik.io www.siik.io http://siik.io;
location / {
proxy_redirect off;
proxy_set_header Host $host:8000;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_http_version 1.1;
proxy_set_header X-Real-IP $remote_addr:8000;
proxy_set_header X-Forwarded-Port $server_port;
proxy_pass http://127.0.0.1:8000/;
}
..所以我基本上正在尝试各种组合&amp;上述值的排列要查看什么有效,因为很明显,我不知道这是如何工作的 - 我对反向代理和HTTP服务器有一些概念知识。
是的,我知道request.origin == request.base_url的东西来自protect_from_forgery in rails,我不觉得关闭它是一个解决方案,尽管我确实在某个地方阅读了包括正确的标题将解决的地方这个问题。我已经尝试了此标头组的几个变体,但没有任何作用,并且想知道包括正确的标头是否应该到达HTTP Origin头将从domainname.io更改为IP地址或请求。BASE_URL将从domainname的IP地址??
哦,是的,当我在redis.conf旁边的新文件proxy.conf中添加位置/{}块时,它会完全断开。该网站通过domainname.io拒绝连接,而domainname.io:8000可以很好地工作。即使是位于位置下的空块/打破它 - 我正在测试以查看是否有任何特定的protxy_set命令导致它破裂 - 但没有。只是"位置/{}"的位打破了 - 也许这是可以预期的?
当我通过siik.io:8000访问它时,为什么它可以明确访问它?
?任何帮助都非常感谢!!!
固定。
我不完全确定这是如何解决的,我仍在尝试弄清楚为什么一切都起作用。基本上,问题似乎与维护乘客 NGINX配置的方式有关。 - 我相信这是一个梦幻主机的特定问题。
我的初始VPS配置是在YouTube上的Dave Jones的教程之后,用Apache作为HTTP服务器完成的。在Dreamhost面板的"域托管"部分中,有一个复选框,可将乘客与Ruby应用程序一起使用,该应用程序按照我关注的原始教程未检查。在 @camden的链接上阅读 - 非常有帮助 - 我决定从头开始重新配置所有内容,并在控制面板上检查了此乘客盒,以及HTTPS Secure Bit,在" Let's Encrypt SSL"中添加了证书,并重新启动了我的服务器。一切都根据需要开始完美工作。我还在conf文件中的"/电缆"的位置块下添加了443端口的标题 - 并在config.force_ssl设置为true的configert.force_ssl中添加了http://www.domainnam.io。
因此,总而言之,我知道问题是乘客Nginx集成的配置不当。谢谢@camden的链接。
您不需要在另一个端口上运行操作电缆服务器,请按照以下说明:https://www.phusionpassenger.com/library/config/config/nginx/action_cable_integration/
根据规则™复制此处:
在sub-uri
下运行在同一主机和端口上运行动作电缆服务器这是Rails建议的默认设置,也是最简单的设置。它通过将ActionCable.server安装到config/routes.rb中的某个路径来起作用。这样,您的操作电缆服务器将与您的应用程序在同一主机和端口上运行,但是在sub-uri下运行。
例如,您的routes.rb可能包含:
# Serve websocket cable requests in-process
mount ActionCable.server => '/cable'
(尽管routes.rb评论说安装ActionCable.server是为了在程序进行服务,但乘客实际上坚持将其作为一个单独的过程运行。)
要在乘客 NGINX中进行此工作,您需要在Nginx虚拟主机中添加摘要。假设您已经有一个用于应用程序的虚拟主机,看起来像这样:
server {
listen 80;
server_name www.foo.com;
root /path-to-your-app/public;
passenger_enabled on;
}
您需要插入一个配置操作电缆终点的位置块,如以下:
server {
listen 80;
server_name www.foo.com;
root /path-to-your-app/public;
passenger_enabled on;
### INSERT THIS!!! ###
location /cable {
passenger_app_group_name YOUR_APP_NAME_HERE_action_cable;
passenger_force_max_concurrent_requests_per_process 0;
}
}
按照路由中指定的实际操作电缆路径替换/cable.rb。
将YOUR_APP_NAME_HERE替换为唯一标识符,该标识符不会出现在Nginx配置文件中。
passenger_force_max_concurrent_requests_per_process选项调音乘客以进行最佳Websocket性能。