Ensure encryption on all channels #34

New Issue

Max · 2020-03-21T10:35:49-07:00

Max commented

2020-03-21 10:35:49 -07:00

Make sure there is encryption on all chanels:

Website to server
Server to database

Make sure websockets also operate on a secure chanel

Make sure there is encryption on all chanels: * Website to server * Server to database Make sure websockets also operate on a secure chanel

Max commented

2020-03-22 07:24:07 -07:00

Nginx config looks like this

    location /api {
            proxy_set_header X-Real-IP $remote_addr;
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
            proxy_set_header Host $http_host;
            proxy_set_header X-NginX-Proxy true;

            proxy_pass http://expressapp;
            proxy_redirect off;
    }

    location /socket {
            proxy_set_header Upgrade $http_upgrade;
            proxy_set_header Connection "upgrade";
            proxy_http_version 1.1;
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
            proxy_set_header Host $host;
            proxy_pass http://127.0.0.1:3001;
    }

Nginx config looks like this location /api { proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Host $http_host; proxy_set_header X-NginX-Proxy true; proxy_pass http://expressapp; proxy_redirect off; } location /socket { proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_http_version 1.1; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Host $host; proxy_pass http://127.0.0.1:3001; }

Sign in to join this conversation.