This way the user wouldn't be required to accept the newly generated certificate all the time.

It should be possible to proxy multiple services. We are currently doing this via try_files for a single named location, but might need to switch to multiple locations with paths to implement this.

Hi, thanks for making this great utility, its an absolutely awesome thing.

I have been using proxrox on MacOS for quite sometime now, but today I had to setup an environment on Linux (Linux Mint to be specific) and for some reason the default installation instructions did not work for me.

What worked though was using authbind to setup proxrox. I would be happy to contribute by opening a PR to suggest this as an alternative approach if that works for you?

Also see

I noticed that a POST request that works fine without being proxied through proxrox results in a 404 when proxied through proxrox. Here's what the logs say:

error log:

2015/08/08 16:24:48 [crit] 6549#0: *6 open() "/var/lib/nginx/body/0000000001" failed (13: Permission denied), client: 127.0.0.1, server: example, request: "POST /upload HTTP/1.1", host: "localhost:4000", referrer: "http://localhost:4000/"
2015/08/08 16:24:48 [error] 6549#0: *6 open() "/tmp/proxrox/c5f08868-85d1-4599-9e47-1af1bf9b88bb/html/50x.html" failed (2: No such file or directory), client: 127.0.0.1, server: example, request: "POST /upload HTTP/1.1", host: "localhost:4000", referrer: "http://localhost:4000/"

access.log

127.0.0.1 - - [08/Aug/2015:16:24:48 +0200] "POST /upload HTTP/1.1" 404 420 "http://localhost:4000/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/43.0.2357.130 Chrome/43.0.2357.130 Safari/537.36" "2.94"

The main issue seems to be open() "/var/lib/nginx/body/0000000001" failed (13: Permission denied). The directory /var/lib/nginx/body used to temporary store the request body and on my system, everything under /var/lib/nginx is owned by nobody:root. When running proxrox/nginx without sudo (I assume proxrox is intended to be run without sudo, right?) then nginx can not create new files there.

I verified this by temporarily chmodding /var/lib/nginx/body to 777, then the POST request works as expected.

A possible solution might be to set the client_body_temp_path directive in the nginx.conf. However, I could guess there might be more, similar cases where nginx needs a tmp dir for something and does not have the correct permissions. (For example, at least proxy_temp_path looks suspicious)

proxrox stop hangs on my Linux Mint box, reproducible. The nginx processes get killed though, but proxrox stop never returns control to the shell. I'm pretty sure it's shelljs' fault, as this one liner also hangs:

require('shelljs').exec('pkill -f foobar');

It's probably related to shelljs/shelljs#51

On a slightly related note, it feels a little bit brute-force-y to just kill all nginx master processes. It might be quite unlikely, but there could be another, completely unrelated, nginx process around, right?

What about spawning the nginx process via node core's child_process.spawn on proxrox start, remembering the pid (in the tmp folder), and killing only the process with that pid on proxrox stop?

This is a great idea. Currently I am using nginx to proxy two micro services into one website during development. If proxrox read a local proxrox.json file or something like that, and could set up proxies on the fly based on that file, it'd be incredibly useful. Something like

{
  "/foo": "http://127.0.0.1:8000",
  "/bar": "http://127.0.0.1:9000"
}

obviously that's super simplified, but the general idea.

Thinking of starting the server and being able to type https://my-project.local into the browser.

Unfortunately pagespeed does not yet support OS X (apache/incubator-pagespeed-ngx#149), but this feature may be very useful for Linux users.

Provide proxrox install support for the most common linux distributions and document proxrox's expections, i.e. that nginx is on the $PATH and that a server must be runnable without sudo.

Installation looks like this for Ubuntu 14.04 when we want to support pagespeed. If not, then aptitude would suffice.

set -eo pipefail

NPS_VERSION=1.9.32.3
NGINX_VERSION=1.6.2

INSTALL_PATH=/tmp/nginx/install
RUN_PATH=/tmp/nginx/run

rm -rf $INSTALL_PATH $RUN_PATH
mkdir -p $INSTALL_PATH
mkdir -p $RUN_PATH


# sudo apt-get update
sudo apt-get install openssl libpcre3 libpcre3-dev libssl-dev zlib1g-dev build-essential unzip

cd $INSTALL_PATH
wget https://github.com/pagespeed/ngx_pagespeed/archive/release-${NPS_VERSION}-beta.zip
unzip release-${NPS_VERSION}-beta.zip
cd ngx_pagespeed-release-${NPS_VERSION}-beta/
wget https://dl.google.com/dl/page-speed/psol/${NPS_VERSION}.tar.gz
tar -xzvf ${NPS_VERSION}.tar.gz  # extracts to psol/

cd ..
# check http://nginx.org/en/download.html for the latest version
wget http://nginx.org/download/nginx-${NGINX_VERSION}.tar.gz
tar -xvzf nginx-${NGINX_VERSION}.tar.gz
cd nginx-${NGINX_VERSION}/
./configure --add-module=../ngx_pagespeed-release-${NPS_VERSION}-beta \
            --with-http_ssl_module \
            --with-http_gzip_static_module \
            --with-http_spdy_module \
            --sbin-path=$RUN_PATH/nginx \
            --conf-path=$RUN_PATH/nginx.conf \
            --pid-path=$RUN_PATH/nginx.pid \
            --lock-path=$RUN_PATH/nginx.lock \
            --http-client-body-temp-path=$RUN_PATH/client_body_temp \
            --http-proxy-temp-path=$RUN_PATH/proxy_temp \
            --http-fastcgi-temp-path=$RUN_PATH/fastcgi_temp \
            --http-uwsgi-temp-path=$RUN_PATH/uwsgi_temp \
            --http-scgi-temp-path=$RUN_PATH/scgi_temp \
            --http-log-path=$RUN_PATH/access.log \
            --error-log-path=$RUN_PATH/error.log
make
sudo make install

nginx now has HTTP2 protocol support. This can be supported by proxrox!

This way the following use case would become easier:

https://github.com/bripkens/proxrox/blob/master/examples/inquirerDevModeWithWebpack/build/dev.js#L52-L69

As discussed in #14

@basti1302:

On a slightly related note, it feels a little bit brute-force-y to just kill all nginx master processes. It might be quite unlikely, but there could be another, completely unrelated, nginx process around, right?

What about spawning the nginx process via node core's child_process.spawn on proxrox start, remembering the pid (in the tmp folder), and killing only the process with that pid on proxrox stop?

@bripkens:

I very much like the idea! But then proxrox stop could only stop the last started nginx process. Can we come up with a strategy to stop the nginx process which is currently running for a given .proxrox.yaml file?

I investigated a bit yesterday. The pid returned by child_process.spawnSync is not the pid of the nginx master process. Apparently nginx -c ... -p ... (the command used to start nginx) starts a short lived process which in turn spawns the master process. However, the nginx pid is already available in /tmp/proxrox/uuid/log/nginx.pid because this is configured in the nginx config template.

So we could have a look at all existing files that match the pattern /tmp/proxrox/uuid/log/nginx.pid, read the pids from those files and kill only those processes. That still would kill all nginx processes created by proxrox but it is a bit better than killing all nginx intances, even those not created by proxrox.

The alternative would be to put a file (only the pid or the whole tmp structure) into the current directory but that creates some new problems.

I think there is no third alternative, as proxrox has no persistent storage between proxrox start and proxrox stop.

Is it possible to run this on Windows?

npm ERR! code EBADPLATFORM npm ERR! notsup Unsupported platform for [email protected]: wanted {"os":"darwin,linux"} (current: {"os":"win32","arch":"x64"})

my proxrox config

proxy:

• type: 'https'
  from: '/'
  to: 'https://app.*.ai:3000'

use case : redirect all requests from app..ai to app..ai:3000

please help