Welcome! Log In Create A New Profile

Re: Allow internal redirect to URI x, but deny external request for x?

All files from this thread

File Name	File Size		Posted by	Date
smime.p7s	3.5 KB	open \| download	j94305	09/03/2019	Read message
smime.p7s	3.5 KB	open \| download	j94305	09/04/2019	Read message

Previous Message Next Message

Forum List Message List New Topic Print View

Francis Daly

August 31, 2019 03:28AM

On Sat, Aug 31, 2019 at 12:21:40AM +0100, Francis Daly wrote:

Hi there,

A few further thoughts here...

> It sounds like your desires are for requests:
>
> * starts with /my-app/current/ -> reject
> * starts with /my-app/releases/ -> reject
> * matches /my-app/something.php, or /myapp/something.php/anything ->

Typo there -- should be "/my-app/".

But note that the "/my-app/" in the request and the "/my-app/" on the
filesystem do not need to the same. (And also: the filesystem /my-app/
for the php files and the filesystem /my-app/ for other files do not
need to be the same; if you want to keep your "static" and "processed"
content separate.)

> fastcgi-process the file /srv/www/my-app/current/something.php
> * matches /my-app/something -> just send the file
> /srv/www/my-app/current/something
>
> Is that correct? If so -- do exactly that.
>
> For example (but mostly untested):
>
> ==
> location ^~ /my-app/current/ { return 200 "nothing to see at /current/\n"; }
> location ^~ /my-app/releases/ { return 200 "nothing to see at /releases/\n"; }
> location ^~ /my-app/ {
> location ~ \.php($|/) {
> fastcgi_split_path_info ^/my-app(/.*php)(.*);

If there might be more than one "php" in the request, that will split on
"the last one". Perhaps you want to split on "the first one followed by
slash". In that case, adjust the regex:

fastcgi_split_path_info ^/my-app(/.*?php)($|/.*);

> root /srv/www/my-app/current/;

You did also show a "if (!-f" config, which is "404 if the matching php
file is not present". That can be:

try_files $fastcgi_script_name =404;

because we have root and the variable set correctly here.

> include fastcgi.conf;

Possibly the only bits of that file that you care about are:

fastcgi_param PATH_INFO $fastcgi_path_info;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;

so you could just use those lines directly.

> fastcgi_pass unix:php.sock;
> }
> alias /srv/www/my-app/current/;
> }
> ==

Cheers,

f
--
Francis Daly francis@daoine.org
_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx

Reply Quote

RSS

Subject	Author	Posted
Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 30, 2019 01:34PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 30, 2019 02:22PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 30, 2019 02:38PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 30, 2019 03:00PM
Re: Allow internal redirect to URI x, but deny external request for x?	Francis Daly	August 30, 2019 04:56PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 30, 2019 06:00PM
Re: Allow internal redirect to URI x, but deny external request for x?	Francis Daly	August 30, 2019 07:22PM
Re: Allow internal redirect to URI x, but deny external request for x?	Francis Daly	August 31, 2019 03:28AM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 31, 2019 11:06AM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 31, 2019 10:12AM
Re: Allow internal redirect to URI x, but deny external request for x?	Francis Daly	August 31, 2019 04:52PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 31, 2019 05:56PM
Re: Allow internal redirect to URI x, but deny external request for x?	Francis Daly	September 02, 2019 05:04PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	September 03, 2019 01:28PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	September 03, 2019 05:32PM
Re: Allow internal redirect to URI x, but deny external request for x?	Ian Hobson	August 30, 2019 03:02PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	August 31, 2019 11:32AM
Re: Allow internal redirect to URI x, but deny external request for x?	Francis Daly	August 30, 2019 04:34PM
Re: Allow internal redirect to URI x, but deny external request for x?	gariac	August 30, 2019 05:24PM
Re: Allow internal redirect to URI x, but deny external request for x?	Ian Hobson	August 31, 2019 10:42AM
Re: Allow internal redirect to URI x, but deny external request for x?	j94305	August 30, 2019 06:28PM
Re: Allow internal redirect to URI x, but deny external request for x?	gariac	August 31, 2019 03:20PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	September 03, 2019 11:30PM
Re: Allow internal redirect to URI x, but deny external request for x?	j94305	September 03, 2019 11:56PM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	September 04, 2019 11:30AM
Re: Allow internal redirect to URI x, but deny external request for x?	j94305	September 04, 2019 11:44AM
Re: Allow internal redirect to URI x, but deny external request for x?	J. Lewis Muir	September 04, 2019 12:32PM
Re: Allow internal redirect to URI x, but deny external request for x?	j94305	September 10, 2019 02:46PM

Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 262

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018