valitovgaziz/tp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

modified: serv_nginx/docker-compose.yml

Browse Source 
new file:   serv_nginx/keycloak/.env.keycloak
	new file:   serv_nginx/keycloak/realm-config/setup-realm.json
	modified:   serv_nginx/nginx/nginx-ssl.conf
revert to ald setting into nginx
This commit is contained in:
Газиз Валитов
2025-10-21 22:29:43 +05:00
parent bb284c6293
commit c04077bb8c
4 changed files with 162 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files
serv_nginx/nginx/nginx-ssl.conf
+19 -38
View File
@@ -1,16 +1,3 @@
# Upstreams
upstream keycloak_backend {
server keycloak:8080;
}
upstream api_backend {
server api:8080;
}
upstream api_bb_backend {
server api_bb:8080;
}
server {
listen 80;
server_name yalarba.ru www.yalarba.ru valitovgaziz.ru www.valitovgaziz.ru easysite102.ru www.easysite102.ru begushiybashkir.ru xn--80abahjtcfl5d0a8di.xn--p1ai;
@@ -49,31 +36,6 @@ server {
index index.html;
try_files $uri $uri/ /index.html;
}
# Keycloak integration - исправленная конфигурация
location /auth/ {
proxy_pass http://keycloak_backend;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
# Убрать trailing slash в proxy_pass
proxy_pass http://keycloak_backend;
# Важные настройки для Keycloak
proxy_buffer_size 128k;
proxy_buffers 4 256k;
proxy_busy_buffers_size 256k;
# Таймауты
proxy_connect_timeout 30s;
proxy_send_timeout 30s;
proxy_read_timeout 30s;
}
# REST API
location /api/ {
proxy_pass http://api_backend/;
@@ -141,6 +103,25 @@ server {
index index.html;
try_files $uri $uri/ /index.html;
}
location /api/ {
proxy_pass http://api_bb_backend/;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-Port $server_port;
proxy_connect_timeout 600;
proxy_send_timeout 600;
proxy_read_timeout 600;
}
location /uploads/ {
alias /uploads/;
expires 1y;
add_header Cache-Control "public, immutable";
}
}
server {