Home/ Questions/Q 7536721
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-30T06:39:12+00:00

I’m using Nginx as webserver, with a reverse proxy to a gunicorn django server.

  • 0

I’m using Nginx as webserver, with a reverse proxy to a gunicorn django server.

I tried using the SSLRedirect snippet from here:

http://djangosnippets.org/snippets/85/

Because this snippet would always return false from is_secure() with my setup, resulting in a redirect loop, I had to make some changes.

SSL works, but when I access http://domain.net/main it doesn’t redirect to https://domain.net/main. Isn’t it supposed to do that?

Below outlines the modification I made:

if 'HTTP_X_FORWARDED_PROTOCOL' in request.META:
    return True

And in my nginx conf (I only need SSL, http not required):

server {
listen 8888;
server_name domain.net;

ssl on;
ssl_certificate /path/to/domain.pem;
ssl_certificate_key /path/to/domain.key;

# serve directly - analogous for static/staticfiles
location /media/ {
    root /path/to/root;
}

location /static/ {
    root /path/to/root;
}

location / {
    proxy_pass_header Server;
    proxy_set_header Host $http_host;
    proxy_redirect off;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Scheme $scheme;
    proxy_connect_timeout 10;
    proxy_read_timeout 10;
    proxy_pass http://127.0.0.1:8881/;

    # note this line
    proxy_set_header X-Forwarded-Protocol https; 
}
}
Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Just do it entirely with nginx. No need to involve Django at all:

    server {
    listen 80;
    rewrite ^(.*) https://$host$1 permanent;
}

server {
    listen 443;
    # The rest of your original server config here
}
    • 0