大家好!我是新人, 在 apache+passenger ,nginx+passenger 部署 rails 项目也有 403 forbidden 的问题,但都解决了,现在 nginx+unicorn 部署,一直有 403 Forbidden,不知各位如何解决?
unicorn.rb ‘ rails_env = ENV['RAILS_ENV'] || 'production' worker_processes (rails_env == 'production' ? 10 : 2) APP_PATH = File.expand_path(File.dirname(File.dirname(FILE))) working_directory APP_PATH # available in 0.94.0+ listen APP_PATH+"/tmp/nginx/sockets/unicorn.sock", :backlog => 64 timeout 30 pid APP_PATH + "/tmp/pid/unicorn.pid" stderr_path APP_PATH + "/log/unicorn.stderr.log" stdout_path APP_PATH + "/log/unicorn.stdout.log" ’
nginx.conf
user root root; worker_processes 5; #error_log logs/error.log; #error_log logs/error.log notice; #error_log logs/error.log info; #pid logs/nginx.pid;
events { worker_connections 1024; }
http { include mime.types; default_type application/octet-stream; log_format main '$remote_addr - $remote_user [$time_local] "$request" ' '$status $body_bytes_sent "$http_referer" ' '"$http_user_agent" "$http_x_forwarded_for"';
access_log logs/access.log main;
sendfile on; #tcp_nopush on;
#keepalive_timeout 0;
keepalive_timeout 65;
#gzip on;
upstream unicorn_server {
# This is the socket we configured in unicorn.rb
server unix:/home/dong/workspace/blog/tmp/nginx/sockets/unicorn.sock fail_timeout=0;
}
server {
listen 80;
server_name www.piaoit.com;
#root /home/dong/workspace/blog/public;
#access_log logs/host.access.log main;
location / {
root /home/dong/workspace/blog/public;
index index.html index.htm;
#autoindex on;
}
error_page 404 /404.html;
# redirect server error pages to the static page /50x.html
#
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root html;
}
# proxy the PHP scripts to Apache listening on 127.0.0.1:80
#
#location ~ .php$ {
# proxy_pass http://127.0.0.1;
#}
# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000 # #location ~ .php$ { # root html; # fastcgi_pass 127.0.0.1:9000; # fastcgi_index index.php; # fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name; # include fastcgi_params; #}
# deny access to .htaccess files, if Apache's document root # concurs with nginx's one # #location ~ /.ht { # deny all; #} }
}
对,权限问题。最简单的 就是 把 unicorn 的权限改成 部署代码的用户的权限。
例如: 项目文件的权限是 app
lrwxrwxrwx 1 app app 42 Dec 8 15:31 current -> /home/app/apps/cms/releases/20111208072531
nginx+passenger 时修改 nginx.conf
user app;
worker_processes 1;
error_log logs/error.log;
#error_log logs/error.log notice;
#error_log logs/error.log info;
pid logs/nginx.pid;
events {
worker_connections 1024;
}
unicorn 也是一样 使用 app 用户执行 unicorn_rails -c /data/github/current/config/unicorn.rb -E production -D
谢谢以上楼主的回复,我给文件设置了 777 权限,也是不行,user root root 也不行,才把配置文件更新在帖子里,麻烦各位看一下是不是哪里配置有误,小弟,先谢谢各位了!
unicorn.rb 中这句先配置成固定的看看,看看文件路径获取的对不对。
APP_PATH = "/home/dong/workspace/blog/"
谢谢大家的关注,现在问题解决了,原来是 nginx.conf 配了 upstream,但 没配置 proxy_pass !!
upstream unicorn_server {
server unix:/home/dong/workspace/blog/tmp/nginx/sockets/unicorn.sock fail_timeout=0;
}
location / {
proxy_redirect off;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_buffering on;
proxy_pass http://unicorn_server;
}
#10 楼 @jialezhang 一般都是文件权限的问题,但不能确定具体什么原因。
一段配置参考下
` http {
...
passenger_root /home/dong/.rvm/gems/ruby-1.9.2-p290/gems/passenger-3.0.9;
passenger_ruby /home/dong/.rvm/wrappers/ruby-1.9.2-p290/ruby;
...
}
server {
listen 80;
server_name www.yourhost.com;
root /somewhere/public; # <--- be sure to point to 'public'!
passenger_enabled on;
#rails_env development; nginx 的 passenger 模块默认是生产模式,如果是在本机进行开发
} `
哥们!万分感谢!!!!今天我用 nginx_upload_module 模块来做文件上传,各种 403,折腾了我一下午,看到你说的 proxy_pass,我发现这个上传模块也需要配置 proxy_pass,果不其然,加了之后就好了!!
