最近公司项目升级https,在nginx端配置好后项目打开访问不了资源文件,发现jsp页面中有一句:
String basePath = request.getScheme() + "://" + request.getServerName() + ":" + request.getServerPort() + path + "/";
request.getScheme()获取的地址不是https而是http,而我访问的地址为https,f12打开发现满屏错误码:
This request has been blocked, the content must be served over HTTPS
按照网上查的方法,在tomcat的server.xml中加入:
<Valve className="org.apache.catalina.valves.RemoteIpValve"
remoteIpHeader="X-forwarded-For"
protocolHeader="X-Forwarded-Proto"
ProtocolHeaderHttpsValue="https"/>
在nginx的nginx.conf中加入:
proxy_set_header X-Forwarded-Proto $scheme;
测试环境正常
生产环境问题依旧
于是发现部分文章中的server.xml配置多了两个参数:
<Valve className="org.apache.catalina.valves.RemoteIpValve" remoteIpHeader="X-Forwarded-For"
protocolHeader="X-Forwarded-Proto" protocolHeaderHttpsValue="https"
internalProxies="127\.0\.0\.1|0:0:0:0:0:0:0:1" proxiesHeader="x-forwarded-by"/>
internalProxies,将127.0.0.1换为nginx服务的地址,问题解决.