If you want to use only uWSGI, without nginx, you shouldn't be using fastrouter but http router instead. Also I see http-to option there, so why do you use subscriptions for? I happen to use http/https uWSGI with subscriptions, frontend config is here: https://github.com/prymitive/upaas-router/blob/master/uwsgi/upaas-router.ini
2014-05-20 23:55 GMT+02:00 Guido N. <[email protected]>: > Hello all, I'm trying to setup uwsgi "alone" (i.e. without any webserver > front-end) to serve multiple sites (and domain names), using http and > https. > > I setup a few vassals. The first, which I'll call "frontend", run http > and https routers, fastrouter and subscription server (the last could be > overkill, but let's continue..) > > There are a few vassals actually serving sites, subscribing to the > fastrouter. > All is working well, but for SNI. The (as of now, only) vassal which > make use of https has sni configured, ssl certificate included. But that > site is always served with the wrong certificate (actually the one > configured in frontend, on the https line). > > These are the configurations of the relevant vassals. Does someone note > something relevant about the behaviour I described? > > > frontend: > [uwsgi] > shared-socket = 0.0.0.0:443 > shared-socket = 0.0.0.0:80 > fastrouter = /run/uwsgi/uwsgi.sock > fastrouter-subscription-server = 127.0.0.2:7000 > mycert = /etc/ssl/certs/generic.crt > mykey = /etc/ssl/private/generic.key > https = =0,%(mycert),%(mykey) > http = =1 > master = true > http-to = /run/uwsgi/uwsgi.sock > logger = syslog:%n > threads = 20 > auto-procname = true > procname-prefix-spaced = %n / > > the ssl site: > [uwsgi] > master = true > socket = /run/uwsgi/sites/%n > logger = syslog:%n > auto-procname = true > procname-prefix-spaced = %n / > > mycert = /etc/ssl/certs/mysite.crt > mykey = /etc/ssl/private/mysite.key > processes = 4 > home = /home/something > pythonpath = /var/local/otherthing > module = django.core.handlers.wsgi:WSGIHandler() > env = DJANGO_SETTINGS_MODULE=settings > offload-threads = 3 > static-map = /static=/var/local/media > static-safe = /var/local/media > route-if-not = equal:${HTTPS};on redirect-permanent:https:// > %n${REQUEST_URI} > subscribe2 = server=127.0.0.2:7000 > ,key=%n,sni_key=%(mykey),sni_crt=%(mycert) > > > cheers > Guido > > > _______________________________________________ > uWSGI mailing list > [email protected] > http://lists.unbit.it/cgi-bin/mailman/listinfo/uwsgi > -- Łukasz Mierzwa
_______________________________________________ uWSGI mailing list [email protected] http://lists.unbit.it/cgi-bin/mailman/listinfo/uwsgi
