256 字
1 分钟
Nginx 踩坑
2025-08-13
Record
Nginx

Nginx无限重定向#

背景#

在为 Django 项目配置好 nginx 后,测试外网请求时无限显示 301

...
backend-1     | 172.23.0.1 - - [05/Aug/2025:15:20:58 +0000] "PUT /api/v1.0/<url>/ HTTP/1.0" 301 0 "<url>" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
backend-1     | 172.23.0.1 - - [05/Aug/2025:15:20:58 +0000] "PUT /api/v1.0/<url>/ HTTP/1.0" 301 0 "<url>" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
backend-1     | 172.23.0.1 - - [05/Aug/2025:15:20:58 +0000] "PUT /api/v1.0/<url>/ HTTP/1.0" 301 0 "<url>" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36"
...

问题定位#

Django 配置#

# Django 会检测当前请求是否是 HTTPS,如果不是,就会重定向到 HTTPS
SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")
SECURE_SSL_REDIRECT = True

Nginx 配置#

location / {
    proxy_pass http://127.0.0.1:8000;
    proxy_set_header Host $host;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    # proxy_set_header X-Forwarded-Proto $scheme;  # 缺少此项关键配置
}

请求流程#

  1. 浏览器(HTTPS) → Nginx(HTTPS)
  2. Nginx(HTTP) → Django(HTTP)
  3. Django 判断不是 HTTPS → 重定向到 HTTPS
  4. 浏览器再走一次 1 → 2 → 3 循环往复,形成无限重定向。

问题解决#

在nginx配置中添加关键配置

proxy_set_header X-Forwarded-Proto $scheme; #  $scheme 会根据客户端访问协议自动填充为 http 或 https。
Nginx 踩坑
https://blog.beocean.net/posts/nginx-issues/
作者
Beocean
发布于
2025-08-13
许可协议
CC BY-NC-SA 4.0
管理 debian 日志大小
© 2025 Beocean. All Rights Reserved. / RSS / Sitemap
Powered by Astro & Fuwari