Signalr in linux behind reverse nginx #9796

15 Answer(s)

• 

  0

  AI-Bot created 20 days ago

  Support Team ABP Agent

  To use SignalR behind Nginx with ABP on Linux, you need to ensure both your Nginx configuration and your application's Content Security Policy (CSP) are set up to allow WebSocket connections.

  Solution:

  1. Nginx Configuration for WebSockets

     Make sure your Nginx reverse proxy forwards WebSocket connections. Add the following to your Nginx site configuration for the SignalR endpoint:

  location /signalr-hubs/ {
         proxy_pass http://your_backend_server;
         proxy_http_version 1.1;
         proxy_set_header Upgrade $http_upgrade;
         proxy_set_header Connection "Upgrade";
         proxy_set_header Host $host;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
         proxy_set_header X-Forwarded-Proto $scheme;
     }
  

  Replace your_backend_server with the internal address of your SignalR service.

  2. Content Security Policy (CSP) Update

     The error message indicates your CSP is blocking wss:// connections. Update your CSP header to explicitly allow WebSocket connections from your SignalR domain. For example:

  Content-Security-Policy: default-src 'self' http: https: data: blob: 'unsafe-inline'; connect-src 'self' wss://signalr.mydomain.com https://signalr.mydomain.com;
  

  Add or update the connect-src directive to include your SignalR domain with both wss:// and https://.

  3. ABP SignalR Integration

     Ensure your SignalR hub is correctly configured in your ABP application and that the endpoint is mapped as shown in the official ABP documentation.

  app.UseEndpoints(endpoints =>
     {
         endpoints.MapHub<YourHub>("/signalr-hubs/instant-message");
     });
  

  And make sure your frontend connects to the correct URL.

  References:

  • ABP SignalR Integration Documentation
  • Community Article: Real-time Notifications via SignalR
  • Community Article: SignalR Client Results in ABP

  These steps will allow your SignalR service to work correctly behind Nginx with proper WebSocket and CSP configuration.

  ---

  This response was generated by AI. If it didn’t solve your problem, feel free to post a new answer — our support team will jump in to help you soon.

  Save Cancel
• 

  0

  maliming created 20 days ago

  Support Team Fullstack Developer

  hi

  Can you try to remove the UseAbpSecurityHeaders from your project?

  Thanks.

  Save Cancel
• 

  0

  andmattia created 20 days ago

  Ok I try

  So when I've this error from angualr app console is referd to ngix api config or nginx signalr config? The same project works fine in IIS

  Save Cancel
• 

  0

  andmattia created 20 days ago

  I see that in response header I've a lot of duplicated tag example

  content-security-policy
  default-src 'self' http: https: data: blob: 'unsafe-inline'
  content-security-policy
  default-src 'self'; connect-src 'self' wss://signalr.***.com https://signalr.**.com ws://signalr.***.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; font-src 'self' data:; img-src 'self' data: https:;
  
  content-type
  

  This issue happen also in 9.x on nginx but not in IIS

  Save Cancel
• 

  0

  maliming created 20 days ago

  Support Team Fullstack Developer

  hi

  Can you share a website?

  I will check it.

  liming.ma@volosoft.com

  Thanks.

  Save Cancel
• 

  0

  andmattia created 20 days ago

  I send data via email I also add this to NGINX

  proxy_hide_header X-Content-Type-Options;
          proxy_hide_header X-XSS-Protection;
          proxy_hide_header X-Frame-Options;
          proxy_hide_header Referrer-Policy;
          proxy_hide_header Content-Security-Policy;
  

  With this I'm able to remove duplicated header

  Save Cancel
• 

  0

  andmattia created 20 days ago

  I try to remove UseAbpSecurityHeaders but it still not working

  Save Cancel
• 

  0

  maliming created 20 days ago

  Support Team Fullstack Developer

  hi

  Could you please share all your Nginx configurations?

  Can you try to remove all proxy_hide_header?

  Thanks.

  Save Cancel
• 

  0

  andmattia created 20 days ago

  Ok

  Save Cancel
• 

  0

  andmattia created 20 days ago

  I send by email because when I try to send data on this module I get en error

  Save Cancel
• 

  0

  maliming created 20 days ago

  Support Team Fullstack Developer

  hi

  Your main website returns the wrong headers If you have removed the UseAbpSecurityHeaders, Please check your nginx settings.

  

  Thanks.

  Save Cancel
• 

  0

  andmattia created 19 days ago

  I've removed only from SignalR service UseAbpSecurityHeaders I need to remove from all microservices? alse gw and auth?

  Save Cancel
• 

  0

  maliming created 19 days ago

  Support Team Fullstack Developer

  hi

  You can try to remove it from all of your projects.

  Thanks.

  Save Cancel
• 

  0

  andmattia created 16 days ago

  Ok, now it works as expected.

  1. I remove UseAbpSecurityHeaders from all projects
  2. In SignalR, I check the scope and headers
  3. In Nginx,x ,where host the Angular app on an internal machine, I remove all headers for normal connections
  4. In Nginx, I removed CSP
  5. I leave the header only for getEnv for JSON

  Save Cancel
• 

  0

  maliming created 16 days ago

  Support Team Fullstack Developer

  Thanks andmattia 👍

  Save Cancel