http请求转发正常,https返回403,nginx配置已添加proxy相关参数
cpp
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_pass http://127.0.0.1:8988;
在nginx排查了很久,后来在tomcat中加上了日志打印发现
cpp
request.getScheme() #返回的总是 http,而不是实际的http或https
tomcat开启https请求需要加上如下内容在conf/server.xml
cpp
<Valve className="org.apache.catalina.valves.RemoteIpValve"
remoteIpHeader="X-Forwarded-For"
protocolHeader="X-Forwarded-Proto"
protocolHeaderHttpsValue="https"/>
加上后重启tomcat,https恢复正常