Alternative auth entry point.
This commit is contained in:
parent
91d0eb88e0
commit
84dcebe59c
GPG Key ID:
147ABE6CEB9E20FF
|
|
@ -31,279 +31,24 @@ server {
|
|||
# Required for new HTTP-based CLI
|
||||
proxy_request_buffering off;
|
||||
|
||||
location /wicket/resource/ {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /telemetry.html {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_buffering off; # Required for HTTP-based CLI to work over SSL
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location ~ /telemetry.html.* {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /projects.html {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
#proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location ~ /projects.html.* {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /users.html {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location ~ /users.html.* {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location ~ /de\.tudarmstadt\.ukp\.inception.* {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /p/ {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location ~ /whoops.* {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /whoops {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /sm/ {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /manage/ {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /admin/ {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /favicon.ico {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /favicon.png {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /spinner.gif {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /images/ {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
#proxy_set_header Authorization "Bearer $auth_token";
|
||||
#proxy_set_header remote_user "$remote_user";
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location / {
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header Connection ""; # Clear for keepalive
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Host $host;
|
||||
proxy_set_header X-Forwarded-Server $host;
|
||||
proxy_set_header X-Forwarded-Port $server_port;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
proxy_set_header X-Original-URI $request_uri;
|
||||
proxy_pass http://_inception-server;
|
||||
}
|
||||
|
||||
location /_d4sauth {
|
||||
js_content pep.enforce;
|
||||
if (!-e $request_filename){
|
||||
rewrite ^(.+)$ / last;
|
||||
}
|
||||
}
|
||||
|
||||
location @backend {
|
||||
|
|
|
|||
Loading…
Reference in New Issue