From 23f705f2d0f10ed765929afa923ee096d9f0e136 Mon Sep 17 00:00:00 2001
From: jelhan <jeldrik@systemli.org>
Date: Tue, 24 Jul 2018 22:42:23 +0000
Subject: Fix: redirect non-SSL request for gitlab registry to valid URL

HTTP host and URI should not be separated by a colon. Generated URLs was looking like http://registry.examples.com:/foo. That is throwing up let's encrypt cert requests for gitlab registry.
---
 lib/support/nginx/registry-ssl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'lib/support')

diff --git a/lib/support/nginx/registry-ssl b/lib/support/nginx/registry-ssl
index 92511e26861..908d26a0da2 100644
--- a/lib/support/nginx/registry-ssl
+++ b/lib/support/nginx/registry-ssl
@@ -10,7 +10,7 @@ server {
   listen *:80;
   server_name  registry.gitlab.example.com;
   server_tokens off; ## Don't show the nginx version number, a security best practice
-  return 301 https://$http_host:$request_uri;
+  return 301 https://$http_host$request_uri;
   access_log  /var/log/nginx/gitlab_registry_access.log gitlab_access;
   error_log   /var/log/nginx/gitlab_registry_error.log;
 }
-- 
cgit v1.2.3