I am running openhab 2 behind an ssl nginx reverse proxy with http basic auth (as described in the docs http://docs.openhab.org/configuration/nginx.html). Within the browser (classic ui as well as basic ui) all icons are working fine. When accessing openhab through the iOS app the icons run into an http 401 not authorized regarding nginx access log. Why are the authentication settings are not used while accessing the icons?
I am using app version 1.7.1 and openhab 2.0.0~b4 from linux repositories.
As a temporary workaround I have created a separate “location ^~ /icon {” block in nginx config without http basic auth.
Very strange, I’m using pretty much those settings, and it’s working on both my android phone and my partner’s iPhone.
Could you post the contents of your file at /etc/nginx/sites-enabled/? (remember to omit your domain/IP, but tell me which method you are using) I can take a look and test using similar settings and her iPhone.
This is my nginx site config. I have replaced my domain by DOMAIN and the ip address with IPADDRESS. The icon-part is the workaround I described above.
Try without the ^~ and including the final / on the proxy_pass address? There’s a slight difference in how those locations will be processed. (you’ll need to remove the icon block also): e.g:
That http2 option is available for newer versions of NGINX than I can use, but I am aware that there’s some problems with mobile browsing using that setting. This also may be the case for your restriction to TLSv1.2, any reason why you’ve set that and other headers particularly the X-Permitted-Cross-Domain-Policies?
Your final setup differs a lot to the suggested setup. Does it work using the “Putting it all together” configuration as suggested in the docs? I see you’re using a different method to access /.well-known/ so feel free to keep that part as it was if you’re able to certbot -renew --dry-run