2

我已经设置了我们的 Rails 应用程序来提供文件send_file,因为我们不想让我们的应用程序忙于提供文件,所以我们将其与X-Accel-Redirect标题一起交给 Nginx。为此,我config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect'在我的production.rb文件中设置,并像这样设置我的 nginx.conf:

# In order to get the site running
# symlink this file to /etc/nginx/sites-enabled/production

upstream unicorn-production {
  server unix:/tmp/unicorn.sock fail_timeout=0;
}

server {
  listen 3000;
  server_name production.localhost;
  root /home/deployer/apps/production/current/public;
  access_log /var/log/nginx/production_access.log;
  rewrite_log on;

  try_files $uri/index.html $uri @unicorn;

  location ~ ^/downloads/(.*)$ {
    internal;
    alias /home/deployer/downloads/$1;
  }

  location @unicorn {
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $http_host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_redirect off;
    proxy_pass http://unicorn-production;

    proxy_set_header  X-Sendfile-Type   X-Accel-Redirect;
    proxy_set_header  X-Accel-Mapping   /downloads/=/home/deployer/downloads/;

    proxy_connect_timeout 90;
    proxy_send_timeout 90;
    proxy_read_timeout 90;
  }

  error_page 500 502 503 504 /500.html;
  client_max_body_size 4G;
  keepalive_timeout 10;
}

在我的控制器操作中,我执行以下操作: send_file "/home/deployer/downloads/testfile.foo"

.

这在理论上都应该有效,但是当我访问mysite.com/mycontroller/downloadChrome 时告诉我Duplicate headers received from server: Error 349 (net::ERR_RESPONSE_HEADERS_MULTIPLE_CONTENT_DISPOSITION): Multiple Content-Disposition headers received. This is disallowed to protect against HTTP response splitting attacks.

非常感谢任何帮助。

4

1 回答 1

3

使用 send_data 时,可以通过将内容处置文件名括在引号中来修复此错误:

从:

send_data data, :type => type,
          :disposition=>"attachment; filename=#{filename}"

到:

send_data data, :type => type,
          :disposition=>"attachment; filename='#{filename}'"

我假设在使用 send_file 方法时同样适用

见:https ://github.com/prior/prawnto/pull/16

于 2012-04-20T10:33:48.627 回答