docker/mod/nginx/bbb/web.nginx

151 lines
5.2 KiB
Plaintext
Raw Normal View History

2020-04-09 08:48:47 +02:00
# Handle request to bbb-web running within a SpringBoot Tomcat embedded servlet container. This is for BBB-API and Presentation.
location /bigbluebutton {
proxy_http_version 1.1;
location /bigbluebutton {
2021-04-17 18:24:00 +02:00
proxy_pass http://bbb-web:8090;
2020-04-09 08:48:47 +02:00
proxy_redirect default;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# Workaround IE refusal to set cookies in iframe
add_header P3P 'CP="No P3P policy available"';
}
location ~ "^\/bigbluebutton\/presentation\/(?<prestoken>[a-zA-Z0-9_-]+)/upload$" {
2021-04-17 18:24:00 +02:00
proxy_pass http://bbb-web:8090;
2020-04-09 08:48:47 +02:00
proxy_redirect default;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# Workaround IE refusal to set cookies in iframe
add_header P3P 'CP="No P3P policy available"';
2021-04-17 18:23:19 +02:00
# high limit for presentation as bbb-web will reject upload if larger than configured
client_max_body_size 1000m;
2020-04-09 08:48:47 +02:00
client_body_buffer_size 128k;
proxy_connect_timeout 90;
proxy_send_timeout 90;
proxy_read_timeout 90;
proxy_buffer_size 4k;
proxy_buffers 4 32k;
proxy_busy_buffers_size 64k;
proxy_temp_file_write_size 64k;
include fastcgi_params;
proxy_request_buffering off;
# Send a sub-request to allow bbb-web to refuse before loading
2021-04-17 18:23:19 +02:00
# If file is larger than configured bbb-web will return with code 403 and Header: x-file-too-large = 1
auth_request /bigbluebutton/presentation/checkPresentation;
error_page 403 = @error403;
auth_request_set $file_too_large_header $upstream_http_x_file_too_large;
2020-04-09 08:48:47 +02:00
}
2020-04-29 16:35:03 +02:00
location /bigbluebutton/presentation/download {
return 404;
}
location ~ "^/bigbluebutton/presentation/download\/[0-9a-f]+-[0-9]+/[0-9a-f]+-[0-9]+$" {
2021-04-17 18:23:19 +02:00
if ($arg_presFilename !~ "^[0-9a-f]+-[0-9]+\.[0-9a-zA-Z]+$") {
2020-04-29 16:35:03 +02:00
return 404;
}
2021-04-17 18:24:00 +02:00
proxy_pass http://bbb-web:8090$uri$is_args$args;
2020-04-29 16:35:03 +02:00
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# Workaround IE refusal to set cookies in iframe
add_header P3P 'CP="No P3P policy available"';
}
2020-04-09 08:48:47 +02:00
location = /bigbluebutton/presentation/checkPresentation {
2021-04-17 18:24:00 +02:00
proxy_pass http://bbb-web:8090;
2020-04-09 08:48:47 +02:00
proxy_redirect default;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Presentation-Token $prestoken;
proxy_set_header X-Original-URI $request_uri;
proxy_set_header Content-Length "";
proxy_set_header X-Original-Content-Length $http_content_length;
2021-04-17 18:23:19 +02:00
# high limit for presentation as bbb-web will reject upload if larger than configured
client_max_body_size 1000m;
2020-04-09 08:48:47 +02:00
client_body_buffer_size 128k;
proxy_pass_request_body off;
proxy_request_buffering off;
}
# To check connection authentication, include:
# auth_request /bigbluebutton/connection/checkAuthorization;
# auth_request_set $auth_status $upstream_status;
#
# and make sure to add sessionToken param in the request URI
location = /bigbluebutton/connection/checkAuthorization {
internal;
2021-04-17 18:24:00 +02:00
proxy_pass http://bbb-web:8090;
2020-04-09 08:48:47 +02:00
proxy_pass_request_body off;
proxy_set_header Content-Length "";
proxy_set_header X-Original-URI $request_uri;
}
location = /bigbluebutton/connection/validatePad {
internal;
2021-04-17 18:24:00 +02:00
proxy_pass http://bbb-web:8090;
proxy_pass_request_body off;
proxy_set_header Content-Length "";
proxy_set_header X-Original-URI $request_uri;
}
2020-04-09 08:48:47 +02:00
location ~ "^/bigbluebutton\/textTrack\/(?<textTrackToken>[a-zA-Z0-9]+)\/(?<recordId>[a-zA-Z0-9_-]+)\/(?<textTrack>.+)$" {
# Workaround IE refusal to set cookies in iframe
add_header P3P 'CP="No P3P policy available"';
# Allow 30M uploaded presentation document.
client_max_body_size 30m;
client_body_buffer_size 128k;
proxy_connect_timeout 90;
proxy_send_timeout 90;
proxy_read_timeout 90;
proxy_buffer_size 4k;
proxy_buffers 4 32k;
proxy_busy_buffers_size 64k;
proxy_temp_file_write_size 64k;
include fastcgi_params;
proxy_request_buffering off;
# Send a sub-request to allow bbb-web to refuse before loading
auth_request /bigbluebutton/textTrack/validateAuthToken;
default_type text/plain;
alias /var/bigbluebutton/captions/$recordId/$textTrack;
}
location = /bigbluebutton/textTrack/validateAuthToken {
internal;
2021-04-17 18:24:00 +02:00
proxy_pass http://bbb-web:8090;
2020-04-09 08:48:47 +02:00
proxy_redirect default;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-textTrack-token $textTrackToken;
proxy_set_header X-textTrack-recordId $recordId;
proxy_set_header X-textTrack-track $textTrack;
proxy_set_header X-Original-URI $request_uri;
}
}
2021-04-17 18:23:19 +02:00
location @error403 {
if ($file_too_large_header = '1') {
return 413;
}
return 403;
}