Rails force_ssl causing NginX infinite loop
Today I've Learned postToday I was configuring some new security features on one of my employers websites. One of them was feature to always force ssl on application.
In Rails 3.2.x and 4.x you can do that by just using force_ssl in
Controller or in config/enviroment/production.rb More
info
Everything worked nice then I deployed to Staging and my server neded up in relally dumb infinite loop:
# log/staging.log
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Cache read: http://www.staging-my-app.com/?
Turns out that NginX needs to pass X-Forwarded-Proto header so that
Rails recognize that “yes I’m on ssl”
# /etc/nginx/nginx.conf # ..or one of your sites-enabled
# ...
location @unicorn {
# ...
proxy_set_header X-Forwarded-Proto https;
# ...
proxy_pass http://unicorn;
}
source:
Entire blog website and all the articles can be forked from this Github Repo