Tomcat 登录到jaspersoft时重定向循环_Tomcat_Jasperserver_Nginx Reverse Proxy_Redirect Loop

Tomcat 登录到jaspersoft时重定向循环

tomcat

Tomcat 登录到jaspersoft时重定向循环,tomcat,jasperserver,nginx-reverse-proxy,redirect-loop,Tomcat,Jasperserver,Nginx Reverse Proxy,Redirect Loop,我已经在Windows上的Tomcat8上安装了jasperserver。我想让用户通过NGinx作为反向代理来访问它。我已经安装了nginx并为jaspersoft创建了一个服务器文件。当我访问jaspersoft的URL时，一切看起来都很好。但一旦我登录，我就被从“https://$URL/flow.html？”重定向到“https://$URL”。请参阅下面的配置和访问日志我在互联网上搜索了相关问题，但找不到解决方案这是我的nginx配置： listen 80; server_name

我已经在Windows上的Tomcat8上安装了jasperserver。我想让用户通过NGinx作为反向代理来访问它。我已经安装了nginx并为jaspersoft创建了一个服务器文件。当我访问jaspersoft的URL时，一切看起来都很好。但一旦我登录，我就被从“https://$URL/flow.html？”重定向到“https://$URL”。请参阅下面的配置和访问日志

我在互联网上搜索了相关问题，但找不到解决方案

这是我的nginx配置：

listen 80;
server_name jaspersoft-*.org;
return 301 https://$host$request_uri;
}

server {
listen 443 ssl http2;
server_name jaspersoft-*.org;
ssl on;
server_tokens off;
more_clear_headers Server;

ssl_certificate         /etc/nginx/ssl/*.crt;
ssl_certificate_key     /etc/nginx/ssl/*.key;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
ssl_prefer_server_ciphers on;
ssl_dhparam /etc/ssl/certs/dhparam.pem;
ssl_ciphers 'ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384::ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384';
ssl_ecdh_curve secp384r1;
ssl_session_timeout 10m;
ssl_session_cache shared:SSL:10m;
ssl_session_tickets off;
ssl_stapling on;
ssl_stapling_verify on;
add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always;
add_header X-Frame-Options SAMEORIGIN;
add_header X-XSS-Protection "1; mode=block";
add_header X-Content-Type-Options nosniff;
add_header Referrer-Policy "no-referrer";
add_header Feature-Policy "vibrate 'self'; usermedia *;";

location / {
proxy_pass https://*:9443;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Port $server_port;
proxy_set_header X-Request-Start $msec;
proxy_set_header Connection "upgrade";
proxy_set_header Host $host;
proxy_set_header X-Ssl on;
proxy_hide_header X-AspNet-Version;
proxy_hide_header X-Powered-By;
proxy_hide_header Server;
proxy_read_timeout 600s;
}
}

请参阅Jaspersoft社区论坛的帖子：

通常，可以通过tomcat日志中的以下消息来诊断问题：

2020-02-08T13:39:28,211 ERROR CsrfGuard,http-nio-8080-exec-8:45 - potential cross-site request forgery (CSRF) attack thwarted (user:<anonymous>, ip:127.0.0.1, method:POST, uri:/jasperserver/flow.html, error:required token is missing from the request)

不要忘记在之后重新启动Jaspersoft服务器。

我也遇到了同样的问题。你找到解决办法了吗？谢谢

org.owasp.csrfguard.TokenName=OWASPCSRFTOKEN