我无法让gitlab在我的服务器上正常工作。
环境是:
Ubuntu 16.04.1 LTS
阿帕奇2.4
我通过omnibus脚本安装了gitlab,编辑了gitlab.rb以使其可与apache一起使用,使其专用于虚拟主机,对SSL证书进行了一些努力,使其能够正常工作,但是遇到了无法解决的错误。
当我去https://gitlab.mydomain.com/users/sign_in时,我的评分为503。
错误日志显示:
[Tue Apr 18 16:58:56.556702 2017] [proxy:error] [pid 31966] (111)Connection refused: AH00957: HTTPS: attempt to connect to 127.0.0.1:8181 (*) failed
[Tue Apr 18 16:58:56.556722 2017] [proxy_http:error] [pid 31966] [client 93.182.244.38:60339] AH01114: HTTP: failed to make connection to backend: 127.0.0.1, referer: https://gitlab.mydomain.com/users/sign_in
这是使用的虚拟主机:
<VirtualHost *:443>
ServerName gitlab.mydomain.com
ServerSignature Off
SSLEngine on
SSLCertificateFile /etc/letsencrypt/live/mydomain.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/mydomain.com/privkey.pem
ProxyPreserveHost On
# Ensure that encoded slashes are not decoded but left in their encoded state.
# http://doc.gitlab.com/ce/api/projects.html#get-single-project
AllowEncodedSlashes NoDecode
<Location />
# New authorization commands for apache 2.4 and up
# http://httpd.apache.org/docs/2.4/upgrading.html#access
Require all granted
#Allow forwarding to gitlab-workhorse
ProxyPassReverse https://127.0.0.1:8181
ProxyPassReverse https://gitlab.mydomain.com/
</Location>
# Apache equivalent of nginx try files
# http://serverfault.com/questions/290784/what-is-apaches-equivalent-of-nginxs-try-files
# http://stackoverflow.com/questions/10954516/apache2-proxypass-for-rails-app-gitlab
RewriteEngine on
#Forward all requests to gitlab-workhorse
RewriteRule .* https://127.0.0.1:8181%{REQUEST_URI} [P,QSA]
# needed for downloading attachments
DocumentRoot /opt/gitlab/embedded/service/gitlab-rails/public
#Set up apache error documents, if back end goes down (i.e. 503 error) then a maintenance/deploy page is thrown up.
ErrorDocument 404 /404.html
ErrorDocument 422 /422.html
ErrorDocument 500 /500.html
ErrorDocument 503 /deploy.html
# It is assumed that the log directory is in /var/log/httpd.
# For Debian distributions you might want to change this to
# /var/log/apache2.
LogFormat "%{X-Forwarded-For}i %l %u %t \"%r\" %>s %b" common_forwarded
ErrorLog ${APACHE_LOG_DIR}/gitlab_error.log
CustomLog ${APACHE_LOG_DIR}/gitlab_forwarded.log common_forwarded
CustomLog ${APACHE_LOG_DIR}/gitlab_access.log combined env=!dontlog
CustomLog ${APACHE_LOG_DIR}/gitlab.log combined
</VirtualHost>
我做错了什么 ?
谢谢您的帮助。
最佳答案
gitlab-workhorse doesn't support SSL connections
Workhorse可以完全不涉及Rails地处理某些请求:
例如,直接提供Javascript文件和CSS文件
从磁盘。
主力军可以修改Rails发送的响应:例如,如果您使用
在Rails中发送send_file,然后gitlab-workhorse将在
磁盘并将其内容作为响应正文发送给客户端。
在获得Rails的许可后,Workhorse可以接管请求。
示例:处理git clone。
主力马可以在将请求传递给Rails之前对其进行修改。例:
处理Git LFS上传时,Workhorse首先会征求
Rails,然后将请求正文存储在临时文件中,然后发送
修改后的请求,其中包含指向Rails的tempfile路径。
Workhorse可以管理Rails的长期WebSocket连接。
示例:为环境处理终端Websocket。
Workhorse不连接到Postgres,仅连接到Rails和(可选)Redis。
我们假设所有到达Workhorse的请求都通过
上游代理(例如NGINX或Apache)。
Workhorse不接受HTTPS连接。
Workhorse不会清理空闲的客户端连接。
我们假设所有对Rails的请求都是通过Workhorse传递的。