Skip to content

Instantly share code, notes, and snippets.

@joakimk

joakimk/config.ru

Created March 31, 2012 20:35
Show Gist options
  • Star 5 You must be signed in to star a gist
  • Fork 1 You must be signed in to fork a gist
  • Save joakimk/2268269 to your computer and use it in GitHub Desktop.
Save joakimk/2268269 to your computer and use it in GitHub Desktop.
Download ZIP
Notes on how to successfully run faye in a rails app using thin behind a https / SSL nginx proxy with basic auth
Raw
config.ru
require 'faye'
Faye::WebSocket.load_adapter('thin')
use Faye::RackAdapter, :mount => '/faye', :timeout => 25
require ::File.expand_path('../config/environment', __FILE__)
run App::Application
Raw
faye.js.coffee
faye_url = "#{window.location.protocol}//#{window.location.host}/faye"
faye = new Faye.Client(faye_url)
# We need to disable both of these to get faye to use long-polling
faye.disable('websocket')
faye.disable('eventsource')
Raw
nginx.conf
server {
listen 443;
server_name example.com;
ssl on;
ssl_certificate ssl.crt;
ssl_certificate_key ssl.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
location / {
auth_basic "Restricted";
auth_basic_user_file /etc/nginx/htpass;
proxy_pass http://127.0.0.1:4488;
}
}
Raw
start_command.sh
bundle exec thin start -p 4488
@joakimk
Copy link
Author

joakimk commented Mar 31, 2012

One gotcha to watch out for here is that faye stores sessions in memory, if you have multiple processes for your rails app that won't work. In that case you probably need another storage backend, like redis.

@randito
Copy link

randito commented Feb 6, 2013

Is there a way for nginx to forward websockets?

@vandamon
Copy link

do we require to use a different certificate from what we are using for the Rails server?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment