- Create new file cockpit.conf on
/etc/cockpit, and enter following script in to cockpit.conf.
[WebService]
AllowUnencrypted=true
- Update or Create new file conf nginx for access cockpit.
map $http_upgrade $connection_upgrade {
default upgrade;
'' close;
}
upstream cockpit {
server localhost:9090;
}
server {
server_name cockpit.domain.com;
location / {
proxy_pass http://cockpit;
proxy_http_version 1.1;
proxy_buffering off;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $remote_addr;
# needed for websocket
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $connection_upgrade;
# change scheme of "Origin" to http
proxy_set_header Origin http://$host;
# Pass ETag header from cockpit to clients.
# See: https://github.com/cockpit-project/cockpit/issues/5239
gzip off;
}
}
