location 有以下6种语法规则
= 开头表示精确匹配
location = /api/ {
# http://abc.com/api/ [匹配成功]
# http://abc.com/index [匹配失败]
}
^~ 开头表示 api 以字符串开头的前缀匹配
location ^~ /api/ {
# http://abc.com/api/a.html [匹配成功]
# http://abc.com/api/aaa/a.html [匹配成功]
# http://abc.com/index [匹配失败]
}
~ 开头表示区分大小写的正则匹配
location ~ /api/ {
# http://abc.com/api/a.html [匹配成功]
# http://abc.com/Api/aaa/a.html [匹配失败]
}
~* 开头表示不区分大小写的正则匹配
location ~* /api/ {
# http://abc.com/api/a.html [匹配成功]
# http://abc.com/Api/aaa/a.html [匹配成功]
}
!~ 区分大小写不匹配的正则
location !~ /api/ {
# http://abc.com/api/a.html [匹配失败]
# http://abc.com/Api/aaa/a.html [匹配成功]
}
!~* 不区分大小写不匹配的正则
location !~* /api/ {
# http://abc.com/api/a.html [匹配失败]
# http://abc.com/Api/aaa/a.html [匹配成功]
}
/ 通用匹配,任何请求都会匹配到
location /api/ {
# http://abc.com/api/a.html [匹配成功]
# http://abc.com/api/aaa/a.html [匹配成功]
}
规则优先级
= 精确匹配(优先级最高)一旦匹配成功,则不再查找其他location的匹配项
^~ :精确前缀匹配,不支持正则表达式(优先级仅次于=),如果有多个location匹配成功的话,不会终止匹配过程,会匹配表达式最长的那个
~ :区分大小写的正则匹配(优先级次于^~)
~* :不区分大小写的正则匹配(优先级次于^~)
/uri :普通前缀匹配(优先级次于正则)
/ :通用匹配(优先级最低)
我的代理配置和localtion的匹配
server
{
listen 80;
listen 443 ssl http2;
server_name admin.*.com;
index index.php index.html index.htm default.php default.htm default.html;
root /www/wwwroot/admin.*.com/dist;
#SSL-START SSL相关配置,请勿删除或修改下一行带注释的404规则
#error_page 404/404.html;
ssl_certificate /www/server/panel/vhost/cert/admin.*.com/fullchain.pem;
ssl_certificate_key /www/server/panel/vhost/cert/admin.*.com/privkey.pem;
ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 10m;
error_page 497 https://$host$request_uri;
#SSL-END
#ERROR-PAGE-START 错误页配置,可以注释、删除或修改
#error_page 404 /404.html;
#error_page 502 /502.html;
#ERROR-PAGE-END
#PHP-INFO-START PHP引用配置,可以注释或修改
include enable-php-00.conf;
#PHP-INFO-END
#REWRITE-START URL重写规则引用,修改后将导致面板设置的伪静态规则失效
include /www/server/panel/vhost/rewrite/admin.*.com.conf;
#REWRITE-END
#禁止访问的文件或目录
location ~ ^/(\.user.ini|\.htaccess|\.git|\.svn|\.project|LICENSE|README.md)
{
return 404;
}
#一键申请SSL证书验证目录相关设置
location ~ \.well-known{
allow all;
}
#匹配前端界面
location / {
root /www/wwwroot/admin.*.com/dist; # Vue项目构建后的文件夹路径
try_files $uri $uri/ /index.html;
}
#api后缀访问tomcat
location ^~ /prod-api/ {
#return https://www.baidu.com;
proxy_pass http://localhost:9092/ruoyi-admin/; # 后端服务器地址和端口
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$
{
expires 30d;
error_log off;
access_log /dev/null;
}
location ~ .*\.(js|css)?$
{
expires 12h;
error_log off;
access_log /dev/null;
}
access_log /www/wwwlogs/admin.*.com.log;
error_log /www/wwwlogs/admin.*.com.error.log;
}
