Reverse proxy with nginx returns blank pages?

lifeboy · June 2, 2022, 7:54pm

I have configured coolwsd without ssl and set up nginx as a reverse proxy with these settings:

server {
# listen       443 ssl;
 server_name  collabora1.xxx.com;

# ssl_certificate /path/to/certificate;
# ssl_certificate_key /path/to/key;

 # static files
 location ^~ /browser {
   proxy_pass http://127.0.0.1:9980;
   proxy_set_header Host $http_host;
 }

 # WOPI discovery URL
 location ^~ /hosting/discovery {
   proxy_pass http://127.0.0.1:9980;
   proxy_set_header Host $http_host;
 }

 # Capabilities
 location ^~ /hosting/capabilities {
   proxy_pass http://127.0.0.1:9980;
   proxy_set_header Host $http_host;
 }

 # main websocket
 location ~ ^/cool/(.*)/ws$ {
   proxy_pass http://127.0.0.1:9980;
   proxy_set_header Upgrade $http_upgrade;
   proxy_set_header Connection "Upgrade";
   proxy_set_header Host $http_host;
   proxy_read_timeout 36000s;
 }

 # download, presentation and image upload
 location ~ ^/(c|l)ool {
   proxy_pass http://127.0.0.1:9980;
   proxy_set_header Host $http_host;
 }

 # Admin Console websocket
 location ^~ /cool/adminws {
   proxy_pass http://127.0.0.1:9980;
   proxy_set_header Upgrade $http_upgrade;
   proxy_set_header Connection "Upgrade";
   proxy_set_header Host $http_host;
   proxy_read_timeout 36000s;
 }

    listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/collabora1.xxx.com/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/collabora1.xxx.com/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}

server {
    if ($host = collabora1.xxx.com) {
        return 301 https://$host$request_uri;
    } # managed by Certbot

 listen        80 ;
 server_name  collabora1.xxx.com;
    return 404; # managed by Certbot

}

However, visit for example https://collabora1.xxx.com/cool/adminws returns a black page, and so do other pages.

What am I missing?

lifeboy · June 3, 2022, 8:54am

I see in my /var/log/syslog:

Jun  3 10:45:44 Collabora1 coolwsd[7061]: wsd-07061-07099 2022-06-03 10:45:44.102249 +0200 [ websrv_poll ] ERR  Unknown resource: //hosting/capabilities G, host: collabora1.xxx.com, path: 2
Jun  3 10:45:44 Collabora1 coolwsd[7061]: [0] 'hosting'
Jun  3 10:45:44 Collabora1 coolwsd[7061]: [1] 'capabilities'
Jun  3 10:45:44 Collabora1 coolwsd[7061]: full URI: //hosting/capabilities| wsd/COOLWSD.cpp:3529

I don’t understand what that means though. Why does it mention “full URI: //hosting/capabilites” without the hostname?

lifeboy · June 3, 2022, 9:07am

Solved! The is a second ssl tag in the coolwsd.xml file, under storage, which I also had to change.

Now I get responses.

pedro.silva · June 9, 2022, 9:54am

related to Systemctl start coolwsd doesn't give error, but no ports are listening - #2 by lifeboy

Topic		Replies	Views
COOL does not work over https User Support answered	5	394	October 12, 2022
Missing config for CODE installation? Installation & Configuration	5	1621	June 9, 2022
Can't reach admin panel Installation & Configuration	4	513	February 18, 2022
Facing issue "Well, this is embarrassing, we cannot connect to your document. Please try again." Installation & Configuration english-en	7	286	December 13, 2023
Disable SSL in loolwsd.xml Installation & Configuration	2	3896	February 17, 2021

Reverse proxy with nginx returns blank pages?

Related Topics