2
我試圖從nginx和django服務器保護用戶文件。Django + nginx提供私人靜態文件
nginx.conf:
server {
listen 80;
gzip off;
expires off;
location /static/ {
add_header X-Static hit;
autoindex on;
expires off;
root /Users/andrewshkovskii/workspace/ip_pbx/;
}
location/{
proxy_pass http://localhost:8000;
rewrite ^/audiofiles/get/(\d+)/ /audiofiles/serve/$1/ last;
}
location /media/audio {
internal;
root /var/ip_pbx/users;
}
}
Django的看法:
def get(self, request, *args, **kwargs):
audio_file = self.get_object()
ogg_file_version = audio_file.audiofileversion_set.filter(format="ogg")
if ogg_file_version.exists():
ogg_file_version = ogg_file_version[0]
res = HttpResponse()
res["Content-type"] = "audio/ogg"
res["X-Accel-Redirect"] = ogg_file_version.file.path
res["Content-length"] = ogg_file_version.file.size
return res
return Http404()
如果我試圖讓,讓我們說,本地主機/語音文件/獲取/ 74 /響應,Nginx將重寫它來查看(/audiofiles/serve/74 /),並且view會返回響應,但是它會在返回時拒絕,將嘗試GET localhost:8000 /%full_file_path%。爲什麼? (文件存在..)