wss連接不上，https可以訪問

Morning 2023-08-29

wss連接不上

大佬們，我現(xiàn)在用的nginx代理，用https可以直接訪問，但wss就是不通。。。
Nginx1.22 PHP7.2 workerman4.1

程序代碼

這是nginx配置

server
{
    listen 80;
    listen 443 ssl http2;
    server_name www.aaa.com;
    index index.php index.html index.htm default.php default.htm default.html;
    root /www/wwwroot/aaa/public;

    ssl_certificate    /www/server/panel/vhost/cert/www.aaa.com/fullchain.pem;
    ssl_certificate_key    /www/server/panel/vhost/cert/www.aaa.com/privkey.pem;
    ssl_protocols  TLSv1 TLSv1.1 TLSv1.2;
    ssl_ciphers    ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:10m;
    ssl_session_timeout 10m;
    add_header Strict-Transport-Security "max-age=31536000";
    error_page 497  https://$host$request_uri;

    # websocket請求代理轉(zhuǎn)發(fā)指定端口
    location  ~* /websocket{
        proxy_pass http://127.0.0.1:2020;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "Upgrade";
        proxy_set_header X-Real-IP $remote_addr;
    }
}

這是前端代碼
本人后端前端代碼是隨便百度的

<!DOCTYPE HTML>
<html>
<head>
    <meta charset="utf-8">
    <script type="text/javascript">
        function WebSocketTest() {
            // 打開一個 web socket
            var ws = new WebSocket("wss://www.aaa.com/websocket");
            ws.onopen = function () {
                // Web Socket 已連接上，使用 send() 方法發(fā)送數(shù)據(jù)
                ws.send("發(fā)送數(shù)據(jù)");
                alert("數(shù)據(jù)發(fā)送中...");
            };
            ws.onmessage = function (evt) {
                var received_msg = evt.data;
                alert("數(shù)據(jù)已接收...");
            };
            ws.onclose = function () {
                alert("連接已關(guān)閉...");
            }
            ws.onerror = function (ev) {
                console.log(this, ev);
            };
        }
    </script>
</head>
<body>
    <div id="sse">
        <a href="javascript:WebSocketTest()">運行 WebSocket</a>
    </div>
</body>
</html>

有沒有大佬幫幫忙，萬分感謝！

 2576  5 0

5個回答

six 2023-08-29

官方文檔 http://wtbis.cn/doc/workerman/faq/secure-websocket-server.html
沒看到nginx有http2的設(shè)置，http2去掉試下唄

Morning 2023-08-29

去掉了，還是不行

oliusha 2023-08-29

沒有正則表達(dá)式，不用 ~*

Morning 2023-08-29

完整的鏈接是這樣的：https://www.aaa.com/f8dbc98207eed1281a6d813d25c90c9b/websocket 前面有一串隨機數(shù) 每次都不一樣

PHP甩JAVA一條街 2023-08-29

map $http_upgrade $connection_upgrade {
    default upgrade;
    '' close;
}
upstream websocket {
    server 你的ip:7272;  #這里可以是多個服務(wù)端IP（分多行），設(shè)置權(quán)重就可以實現(xiàn)負(fù)載均衡了
}
server
{
    listen 80;
    listen 443 ssl http2;
    server_name dp.xx.com;
    index index.php index.html index.htm default.php default.htm default.html;
    root /www/wwwroot/dp/dapai/public;

      #wss協(xié)議轉(zhuǎn)發(fā) 小程序里面要訪問的鏈接
    # 訪問：wss://xxxx.com/wss
    location /wss {
        proxy_pass http://dp.xx.com:7272;#代理到上面的地址去，
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "Upgrade";
    }

    #SSL-START SSL相關(guān)配置，請勿刪除或修改下一行帶注釋的404規(guī)則
    #error_page 404/404.html;
    ssl_certificate    /www/server/panel/vhost/cert/dp.xx.com/fullchain.pem;
    ssl_certificate_key    /www/server/panel/vhost/cert/dp.xx.com/privkey.pem;
    ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
    ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:10m;
    ssl_session_timeout 10m;
    add_header Strict-Transport-Security "max-age=31536000";
    error_page 497  https://$host$request_uri;

    #SSL-END

    #ERROR-PAGE-START  錯誤頁配置，可以注釋、刪除或修改
    #error_page 404 /404.html;
    #error_page 502 /502.html;
    #ERROR-PAGE-END

    #PHP-INFO-START  PHP引用配置，可以注釋或修改
    include enable-php-72.conf;
    #PHP-INFO-END

    #REWRITE-START URL重寫規(guī)則引用,修改后將導(dǎo)致面板設(shè)置的偽靜態(tài)規(guī)則失效
    include /www/server/panel/vhost/rewrite/dp.xx.com.conf;
    #REWRITE-END

    #禁止訪問的文件或目錄
    location ~ ^/(\.user.ini|\.htaccess|\.git|\.svn|\.project|LICENSE|README.md)
    {
        return 404;
    }

    #一鍵申請SSL證書驗證目錄相關(guān)設(shè)置
    location ~ \.well-known{
        allow all;
    }

    location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$
    {
        expires      30d;
        error_log /dev/null;
        access_log /dev/null;
    }

    location ~ .*\.(js|css)?$
    {
        expires      12h;
        error_log /dev/null;
        access_log /dev/null; 
    }
    access_log  /www/wwwlogs/dp.xx.com.log;
    error_log  /www/wwwlogs/dp.xx.com.error.log;
}

PHP甩JAVA一條街 2023-08-29

這是wss，nginx配置，JAVA不行了，市場份額越來越少了，我們好幾個客戶不打算用JAVA做項目，改用php+webman了
PHP甩JAVA一條街 2023-08-29

關(guān)鍵JAVA費時間，工資要的老高，水平又一般，一個PHP程序員頂3個JAVA
Morning 2023-08-31

謝謝大佬，搞好了，是我們運維的問題。。。
wangkaiw 2023-10-07

請問一下，是運維的什么問題導(dǎo)致的？

oliusha 2023-08-30

試試這樣

location ~* ^/(.*)/websocket$
    {
        proxy_pass http://127.0.0.1:2020;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "Upgrade";
        proxy_set_header X-Real-IP $remote_addr;
    }