首頁 探索 說明
註冊 登入
root
/
nicegui
镜像来自 https://github.com/zauberzeug/nicegui.git
1
0
複刻 0
檔案 問題管理 0 Wiki
目錄樹: 8eeb8ac634
分支列表 標籤列表
nicegui
/
examples
/
nginx_https
Thomas Lamant 8eeb8ac634 Add details and examples in docs for running apps with https (#3213) 11 月之前
..
app 8eeb8ac634 Add details and examples in docs for running apps with https (#3213) 11 月之前
README.md 8eeb8ac634 Add details and examples in docs for running apps with https (#3213) 11 月之前
docker-compose.yml 8eeb8ac634 Add details and examples in docs for running apps with https (#3213) 11 月之前
nginx.conf 8eeb8ac634 Add details and examples in docs for running apps with https (#3213) 11 月之前
nginx_site.conf 8eeb8ac634 Add details and examples in docs for running apps with https (#3213) 11 月之前

README.md

Serving an App with HTTPS encryption behind a Reverse Proxy (NGINX)

This example shows how to serve NiceGUI with HTTPS encryption behind NGINX. For running the App under a Subpath, have a look at https://github.com/zauberzeug/nicegui/blob/main/examples/nginx_subpath.

Try Out

  1. Create the certs/ directory:

    mkdir certs

  2. Generate and self-sign SSL an certificate for localhost

    openssl req -x509 -out certs/localhost.crt -keyout certs/localhost.key -newkey rsa:2048 -nodes -sha256 -subj '/CN=localhost' -extensions EXT -config <( printf "[dn]\nCN=localhost\n[req]\ndistinguished_name = dn\n[EXT]\nsubjectAltName=DNS:localhost\nkeyUsage=digitalSignature\nextendedKeyUsage=serverAuth")

  3. Run the containerized app

    docker compose up

  4. Try to access http://localhost without the "s". You will be automatically redirected to the https version.

  5. Depending on your browser, you should typically receive a warning that the certificate authority is invalid. This is perfectly normal as we issued and self-signed a simple certificate for demo use locally. So proceed anyway, e.g. on Chrome, click on Advanced > Proceed to localhost (unsafe)

  6. Note the Hello World message from the app accessed with encrypted connection

Deploy in production in your self-hosted NGINX

  • For production, you'll need your own domain and a proper SSL certificate issued by a recognized Certificate Authority (CA). You can consider the free CA Let's Encrypt provided by the Internal Security Research Group, and use their Certbox tool to generate the certicates for your own domain.

  • If you already have an NGINX server running and want to add your NiceGUI app, you can reuse a stripped down version of the nginx.conf file, nginx_site.conf

    sudo cp nginx_site.conf /etc/nginx/sites-available/my_nicegui_app.conf
sudo nano /etc/nginx/sites-available/my_nicegui_app.conf # customize your domain, certificates, port number, etc.
sudo ln -s /etc/nginx/sites-available/mynicegui_app.conf /etc/nginx/sites-enabled
sudo systemctl reload nginx