Server Https / Reverse Proxy

[leonor]

Hello, i have some trouble with my new Server "Webserver" and Visiolist.

First i think you need to know that i use Https(Let's Encrypt) and a Nginx Reverse Proxy in front of mine Web-Server.

I installed my VL worked fine, then i deleted /install and tried to open my new installed Visiolist, but nothing.
I getting a redirection error. Logs on both Server just say that he attempt to open index.php. One Request attempt to open the Index.php like 20 times.

I checked if i entered the correct VL URL with HTTPS
Server redirect every request to https://example.com

Is there something in vl where i can disable redirection? I think the problem is that VL read something from the Header. And thee that the Request comes not from https://example.com, rather from http://backend.example.com.

Some one have any idea?

Greetz,

leonor

 

[cajkan]

From my personal experience HTTPS is bad for toplists because when you send users traffic they cannot see as referral which is bad and they will think that you don't provide any traffic

 

[Mark]

I think in the next year or 2 everyone will be https, I use lets encrypt on my lists and it works fine so I don't think that would be the cause. I suspect the issue is nginx reverse proxy, but I am not sure about the redirect issue you are seeing, I do recall basti wrote some code a long time ago involving header check and redirect but don't recall exactly what or why. I will read up on reverse proxy and see if I can understand why that might be useful and why it might be conflicting, but off the top I have no idea.

 

[leonor]

@cajkan I have some users on my list that are using https:// and when they are use the button code from they are getting warnings from there browser. On my setup it's not possible to get any http connections. And google give you a bit more rank power, because they want that the users use https:// for more safety in Internet.

@Mark I can show you so whole configuration and if you like ssh access to the two server. I just need a your public ssh key
I will use nginx reverse proxy because I can handle my backend servers easier. And the next step is to add the cache location, delivery any static files from cache.

AND yes, my real VL websites use let's encrypt without problems. with nginx <3


Greetz,

Leonor
Writing from my cell phone is really crap -.-

 

[cajkan]

They get warnings because some of your links are still http, you need to make sure all your links are https

 

[leonor]

No cajkan you miss understood me, some site owner was contacting me too use Https because they can't load my vote banner.
And now all people can use my Banners, because my webserver will redirect every http connection to https =)

Back to Topic:

Here this what i get when i try to read my header:

Connection: upgrade
Host: example.com
X-Real-Ip: CLIENT_IP
X-Forwarded-For: CLIENT_IP
X-Forwarded-Proto: https
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/54.0.2840.99 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Accept-Encoding: gzip, deflate, sdch, br
Accept-Language: de-DE,de;q=0.8,en-US;q=0.6,en;q=0.4
Cookie:

 

[leonor]

@Mark is there something new about my problem? I found that people are using wordpress had also problems and i found this. There is something interesting inside over cookies. Could this maybe solve the problem? https://github.com/autopilotpattern/wordpress/issues/19

 

[Mark]

sorry nothing new to report, I am not a user of nginx and VisioList does not officially support it, I'm really not sure where the problem lies with your server config. You might need to go through and disabled lines/files until you isolate the cause.

 

[leonor]

@Mark i got the Fix =) it was something in both Nginx config files. Right now my testing the new environment is finished and i migrate my sites.

When i am done and every thing is working fine i will share my setup, maybe its helpfully for some one. =)