Nginx反代Websocket原理

1
2

  Connection: Upgrade
  Protocol: protocol-name ["/" protocol-version]

1
2
3

HTTP/1.1 101 Switching Protocols
Connection: upgrade
Upgrade: HTTP/2.0

1
2
3
4
5
6

Connection: Upgrade
Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Sec-WebSocket-Key: fL1y0DQDYrqGCwWPWIkDOw==
Sec-WebSocket-Protocol: vite-hmr
Sec-WebSocket-Version: 13
Upgrade: websocket

1
2
3
4

Connection: Upgrade
Sec-WebSocket-Accept: jWe7MVRbWtE+T/o2ZfoCecA3J7A=
Sec-WebSocket-Protocol: vite-hmr
Upgrade: websocket

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11

This allows to proxy WebSockets by using configuration like this:

    location /chat/ {
        proxy_pass http://backend;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "upgrade";
    }

Connection upgrade is allowed as long as it was requested by a client
via the Upgrade request header.

1
2
3
4
5
6
7

            if (u->headers_in.status_n == NGX_HTTP_SWITCHING_PROTOCOLS) {
                u->keepalive = 0;

                if (r->headers_in.upgrade) {
                    u->upgrade = 1;
                }
            }

1
2
3
4

    if (u->upgrade) {
        ngx_http_upstream_upgrade(r, u);
        return;
    }

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11

ngx_http_upstream_upgrade(ngx_http_request_t *r, ngx_http_upstream_t *u)
{
// ...

    u->read_event_handler = ngx_http_upstream_upgraded_read_upstream;
    u->write_event_handler = ngx_http_upstream_upgraded_write_upstream;
    r->read_event_handler = ngx_http_upstream_upgraded_read_downstream;
    r->write_event_handler = ngx_http_upstream_upgraded_write_downstream;

//  ...
}