Basically, you should accept all HTTP headers. Also, you should pass the necessary headers and cookies.
每日一折腾
Laravel – Google 2Factor Auth
Reference: https://www.sitepoint.com/2fa-in-laravel-with-google-authenticator-get-secure/
Restore Real IP in Nginx Reverse Proxy
Compile Nginx with real ip module. The origin server will then be able to get the real ip address from the proxy server.
IP Address CIDR Chart
- 10.0.0.1-10.0.0.255: 10.0.0.0/24
- 10.0.0.1-10.0.255.255: 10.0.0.0/16
- 10.0.0.1-10.255.255.255: 10.0.0.0/8
Fix /usr/bin/env: ‘php’: No such file or directory
Add a soft link to /usr/local/bin/php should solve the problem.
Configure AWS for Pureftpd
The ftp account is correct, but failed to get directory list: “Could not retrieve directory listing”. Strange, isn’t it?
At first, I thought it was something wrong with the ftp add user script. So I tried to do it manually but still didn’t work.
After a one-hour research, here is the answer: I should use passive mode. And for Pureftpd to run on passive mode, I should open more ports to the public. So this is mainly a firewall issue.
Laravel5: Securing Files on AWS S3
Spent the whole afternoon searching for answers to secure files on AWS S3. Here is how I solve it:
Upload the files to S3 as “private” files. So the public users won’t have access even knowing the file url.
Then use Laravel routing to retrieve the file. And at the same time, adding auth middleware to the route.