Quantcast
Channel: MobileRead Forums - Reading and Management
Viewing all articles
Browse latest Browse all 24016

Nginx Calibre Proxy

April 18, 2016, 8:11 am
$
0
0
Good morning everyone - I've been trying to get my calibre server to work behind a reverse proxy, however I've been having various issues.

This setup that I've done has worked for other services (e.g. couchpotato).

Ideally I'll get it running being a ssl connection, but my first goal is to get it working so I can access it via:

http://calibre.local
http://home.local/calibre

These are my nginix configs:


This config is commented out - eventually it'll redirect http://calibre.local to https://calibre.local
Quote:
#server {
# listen 80;
# server_name calibre.local;
# return 301 https://$server_name$request_uri;
#
# access_log /var/log/nginx/sites/calibre/access.80.log;
# error_log /var/log/nginx/sites/calibre/error.80.log info;
#}
Right now this is a normal http proxy - eventually will be ssl
Quote:
server {
listen 80;
# listen 443 ssl;
server_name calibre.local;

location / {
proxy_pass http://192.168.0.199:8080/;
proxy_redirect http://192.168.0.199:8080/calibre/ /;
#proxy_set_header X-Forwarded-Proto https;

access_log /var/log/nginx/sites/calibre/access.443.log;
error_log /var/log/nginx/sites/calibre/error.443.log info;
}
}
My home.local config - obviously http://home.local/calibre won't work
Quote:
server {
listen 80 default;
listen 443 ssl;
server_name home.local;

access_log /var/log/nginx/access.log;
error_log /var/log/nginx/error.log;

if ( $scheme = http )
{
rewrite ^ https://$server_name$request_uri? permanent;
}

include /etc/nginx/conf.d/ssl.conf;

location / {
root /var/www/intranet;
index index.html index.htm;
access_log /var/log/nginx/sites/intranet/access.log;
error_log /var/log/nginx/sites/intranet/error.log;
}

# Calibre doesn't support HTTPS?
# location /calibre {
# include /etc/nginx/conf.d/proxy.conf;
# proxy_pass https://192.168.0.199:8080/calibre;
# access_log /var/log/nginx/sites/calibre/access.log;
# error_log /var/log/nginx/sites/calibre/error.log info;
# }
proxy.conf
Quote:
client_max_body_size 10m;
client_body_buffer_size 128k;

#Timeout if the real server is dead
proxy_next_upstream error timeout invalid_header http_500 http_502 http_503;

# Advanced Proxy Config
send_timeout 5m;
proxy_read_timeout 240;
proxy_send_timeout 240;
proxy_connect_timeout 240;

# Basic Proxy Config
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
#proxy_set_header X-Forwarded-Proto https;
#proxy_redirect http:// $scheme://;

proxy_http_version 1.1;
proxy_set_header Connection "";
proxy_cache_bypass $cookie_session;
proxy_no_cache $cookie_session;
proxy_buffers 32 4k;

ssl.conf
Quote:
#ssl on;
ssl_certificate /opt/sslkey/server.crt;
ssl_certificate_key /opt/sslkey/server.key;

ssl_session_timeout 5m;

# Perfect forward secrecy
ssl_prefer_server_ciphers on;
ssl_dhparam /etc/nginx/ssl/dhparams.pem;
ssl_ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+A ES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES: RSA+3DES:!aNULL:!MD5:!DSS;
#ssl_ciphers EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+S HA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+a RSA+SHA256:EECDH+aRSA+RC4:EECDH:EDH+aRSA:RC4:!aNUL L:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4

# HSTS
add_header Strict-Transport-Security "max-age=31536000; includeSubdomains";


ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

This is my calibre.service file:

Quote:
[Unit]
Description=Calibre eBook Server
After=network.target

[Service]
Type=forking
User=calibre
Group=calibre
PIDFile=/var/run/calibre/calibre-server.pid
ExecStart=/usr/bin/calibre-server \
--daemonize \
--max-cover=600x800 \
--max-opds-items=100 \
--max-opds-ungrouped-items=100 \
--url-prefix /calibre \
--username=calibre \
--port=8080 \
--pidfile=/var/run/calibre/calibre-server.pid \
--with-library=/media/eBooks/

[Install]
WantedBy=multi-user.target
Search
Viewing all articles
Browse latest Browse all 24016

Trending Articles

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

SAHARA FLASH LIVE IN WERAGOLLA 2018-04-20

November 26, 2021, 5:21 am

Adolescence A Stage of Growth and Change Class 7 Extra Questions and Answers...

June 2, 2025, 2:24 am

HP P2000 Storage Error Controller A Unknown Issue Resolution Request

December 22, 2024, 5:53 pm

The 10 Tennessee Cities With The Largest Black Population For 2021

December 21, 2020, 10:12 am

Moondru Mudichu 04-10-2017 – Polimer tv Serial

October 4, 2017, 9:14 am

FortiLink mode supported over a layer-3 network

July 22, 2019, 12:55 pm

ZARIA CUMMINGS

February 20, 2017, 7:44 pm

Serial child killer David Threinen’s reign of terror

June 15, 2015, 6:04 pm

JACOB FORREST OGDEN Arrested by Clackamas County Sheriff's Office on Dec 30,...

December 30, 2019, 12:00 am

$22.6m payout to workers fired under UNC govts

July 19, 2018, 9:30 pm

Vocational Training Instructor (Carpenter) at States of Jersey

November 1, 2021, 5:00 am

Windows Update / Microsoft Update の接続先 URL について

February 27, 2017, 12:32 am

Bureau of Internal Revenue: Regional Offices (Directory)

January 9, 2014, 11:06 pm

'My best friend looked possessed, then he stabbed me', teenager tells court

February 5, 2013, 1:00 am

I want to a weather coin buyer genuine buyer r welcome

November 8, 2017, 1:28 am

Named and shamed: a round up of cases heard by Essex magistrates

August 23, 2014, 10:00 pm

Karimnagar District Tahsildars Phone Numbers-Mobile Numbers Telangana-State

February 18, 2016, 8:01 pm

(get) Tej Dosa Letter 81 - How To Make An Extra $200-$500/Week (In 2025)

July 1, 2025, 2:15 pm

Philly Mobster Ronnie Turchi Took Last Ride In October ’99, Turned Up Trunk...

October 20, 2019, 3:40 am
Search