How can I prevent a redirect loop by using SSL with gunicorn / nginx?

I get a redirect loop when using SSL middleware to redirect certain urls to HTTPS. What should I do?

My nginx config is set up to forward requests to gunicorn.

There are a couple of steps here.

First of all, modify the way your middleware checks for SSL:

  def _is_secure(self, request):
    if request.is_secure():
      return True

    if 'HTTP_X_SSL_PROTOCOL' in request.META:
      return True

    return False

Then change your nginx config as follows:

server {
    listen 80;
    listen 443 ssl;

    ...

    location / {

        ...
        proxy_set_header X-SSL-Protocol $ssl_protocol;
        proxy_pass http://localhost:8000/;
    }
}

proxy_set_header will only be passed on if ssl_protocol is not null, i.e., it's a secure connection.

Restart nginx and you're done.

How do I repair a redirect loop when using Currency with SSL on the staging server?

I've installed a self signed cert on my staging server. I'm using that to test my ssl set up. I'm using Devise 1.5 for logins and following this article on the devise wiki for ssl / http config. The docs say: And make sure to enable SSL on the server

How can you prevent arbitrary client applications from using your anonymous Web API?

Apologies if this has already been asked and answered; I've looked around a bunch but haven't found exactly what I'm asking. -- Suppose my web app at http://example.com/ uses a private and undocumented web API at http://api.example.com/ to fetch data

How can I decrement lives on a collision, using XNA with C #?

I have an assignment for my computer graphics class, were we have to alter a game code. The class itself is entirely about theory, so we pretty much have to figure out the code for ourselves and I've never programmed in C#, so sorry for any ignorance

How can I teach the machine learning algorithm using data with a large disproportion of classes? (SVM)

I am trying to teach my SVM algorithm using data of clicks and conversion by people who see the banners. The main problem is that the clicks is around 0.2% of all data so it's big disproportion in it. When I use simple SVM in testing phase it always

How can I prevent the MATLAB loop from crashing

I'm trying to do the following in MATLAB call a loop - for i=1:1000 and inside the loop I optimize a function using fminunc. Optimization is over a vector of parameters, one of which appears in a matrix in the function. Now it seems that fminunc call

How can I prevent an infinite loop JSON array in Jackson?

I have two tables. One has a list of menu items, and the other is just a reference-table to keep track of which items go well with another item. Here's the table layout: MenuItems CompMenuItems ----------- ------------- MenuItemID <------- MenuItemID

How can I prevent the designer from filling my properties with null values?

When I add a control to a form, visual studio assigns various of the properties of that form a value of null in the auto-generated designer code. I don't want the designer to make the redundant assignment (the value is already null). Can anyone tell

How can I prevent Capistrano from performing the composer installation with --no-dev?

I currently have the following: namespace :deploy do desc "Build" after :updated, :build do on roles(:app) do within release_path do execute :composer, "install --quiet" # install dependencies execute :chmod, "u+x artisan" #

How can I prevent jenkins's journal from being spammed with strange messages?

This question already has an answer here: How to stop Jenkins log from becoming huge? 3 answers Nearly every week our development server running jenkins has no disk space left because the jenkins log file gets huge (>100g). It gets completely filled

How can I prevent my character from passing through objects with actionscript 3?

I am new to flash and want to make it so when my character hits an object, they won't go through it, but still maintains control after they have hit it. I want it to be a solid object from all 4 points (top, left, right, bottom) of the object. Here i

How can I prevent users from editing their data only with Linq To SQL?

Background: I've been working on a small proof-of-concept web application in ASP.NET 4.0 with C# and I've been using Linq To SQL because it's quick and easy. I've now got to restrict one user from seeing another user's data in the same database. So I

How can I prevent the alert & ldquo; constant unicode cast with potential data loss " to Lazarus?

I'm trying to assign the Tricolon Unicode character #$205D as the caption to a button in a Lazarus Windows program like this: MyButton.Caption := #$205D; It works, the button displays the Tricolon fine, but the compiler emits the warning "Warning: Un

How can I change the URL link and use it with selenium

I have some URL like "https://some.url.ru/new-token". I need change it to "http://some.url.ru/new-token" (mean change HTTPS to HTTP). I can't change whole URL, because every time I get new token. (Selenium, Java). So, my question: I ge

How do I have CodeIgniter load specific pages using SSL?

How can I have CodeIgniter load specific pages using SSL? I have an apache2/mode_ssl server. mod_ssl uses a different document root than non-secure pages. For example, https (port 443) would serve pages out of /var/www/ssl_html/ And http (port 80) se

Related Articles