Skip to content

Y
yd-csf-front
Commit 404f0b17 by zhangxingmin
Options

push

parent a12fa733
Showing with 32 additions and 35 deletions
nginx.conf
...@@ -2,8 +2,6 @@ ...@@ -2,8 +2,6 @@
upstream gateway_load_balance { upstream gateway_load_balance {
server 139.224.150.79:9010; # 管理节点服务器上的网关实例 server 139.224.150.79:9010; # 管理节点服务器上的网关实例
server 139.224.149.150:9011; # 工作节点服务器上的网关实例 server 139.224.149.150:9011; # 工作节点服务器上的网关实例
ip_hash; # 会话粘滞,避免同一用户请求分发到不同网关实例
keepalive 32; # 保持长连接,提升代理性能
} }
server { server {
...@@ -13,64 +11,59 @@ server { ...@@ -13,64 +11,59 @@ server {
root /usr/share/nginx/html; root /usr/share/nginx/html;
index index.html; index index.html;
# 核心:拦截包含undefined的异常路径,避免无效请求穿透
if ($request_uri ~* 'undefined') {
rewrite ^(.*)/undefined+(.*)$ $2 permanent; # 清理路径中的undefined片段
rewrite ^/undefined.*$ / permanent; # 兜底重定向到根路径
}
# 静态资源处理 - 必须放在最前面 # 静态资源处理 - 必须放在最前面
location ~* \.(js|css|png|jpg|jpeg|gif|ico|svg|woff|woff2|ttf|eot|map)$ { location ~* \.(js|css|png|jpg|jpeg|gif|ico|svg|woff|woff2|ttf|eot|map)$ {
# ✅ 关键:添加 try_files 指令
try_files $uri =404; try_files $uri =404;
# 静态资源缓存优化 # 确保静态资源有正确的过期时间和缓存头
expires 1y; expires 1y;
add_header Cache-Control "public, immutable"; add_header Cache-Control "public, immutable";
# CORS头 # 为静态资源添加CORS头
add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Allow-Origin' '*' always;
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always; add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization' always; add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization' always;
# 处理OPTIONS请求(CORS预检)
if ($request_method = 'OPTIONS') {
add_header 'Access-Control-Allow-Origin' '*';
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS';
add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization';
add_header 'Access-Control-Max-Age' 1728000;
add_header 'Content-Length' 0;
add_header 'Content-Type' 'text/plain; charset=UTF-8';
return 204;
}
} }
# 代理API请求到网关服务 # 代理API请求到网关服务
location /api/ { location /api/ {
# 负载均衡到两个网关服务实例
proxy_pass http://gateway_load_balance/; proxy_pass http://gateway_load_balance/;
rewrite ^/api/(.*)$ /$1 break; # 确保/api前缀被正确移除,避免路径错误
# 代理设置 # 代理设置
proxy_set_header Host $host; proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header Authorization $http_authorization; # 传递认证头
# 超时设置 # 超时设置
proxy_connect_timeout 30s; proxy_connect_timeout 30s;
proxy_read_timeout 30s; proxy_read_timeout 30s;
proxy_send_timeout 30s; proxy_send_timeout 30s;
# 缓冲区设置(优化) # 缓冲区设置
proxy_buffering on; proxy_buffering on;
proxy_buffer_size 16k; proxy_buffer_size 4k;
proxy_buffers 8 16k; proxy_buffers 8 4k;
# CORS头 # CORS
add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Allow-Origin' '*' always;
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always; add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization' always; add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization' always;
}
# 健康检查接口 # 处理OPTIONS请求(CORS预检)
location /health {
access_log off;
return 200 "healthy\n";
add_header Content-Type text/plain;
}
# 合并后的location /:同时处理OPTIONS请求和前端路由(核心修复)
location / {
# 1. 处理OPTIONS预检请求(整合原重复块的逻辑)
if ($request_method = 'OPTIONS') { if ($request_method = 'OPTIONS') {
add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Origin' '*';
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS'; add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS';
...@@ -80,17 +73,22 @@ server { ...@@ -80,17 +73,22 @@ server {
add_header 'Content-Type' 'text/plain; charset=UTF-8'; add_header 'Content-Type' 'text/plain; charset=UTF-8';
return 204; return 204;
} }
}
# 2. 前端路由处理(SPA history模式) # 健康检查接口
try_files $uri $uri/ /index.html; location /health {
access_log off;
return 200 "healthy\n";
add_header Content-Type text/plain;
}
# 3. CORS头 # 前端路由处理 - 放在最后,作为兜底规则
location / {
try_files $uri $uri/ /index.html; # 处理Vue路由history模式
# 为页面添加CORS头
add_header 'Access-Control-Allow-Origin' '*' always; add_header 'Access-Control-Allow-Origin' '*' always;
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always; add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization' always; add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization' always;
} }
# 日志配置(便于排查undefined路径等问题)
access_log /var/log/nginx/csf-front-access.log main;
error_log /var/log/nginx/csf-front-error.log warn;
} }
\ No newline at end of file
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment