How to deploy a flask-restplus app with nginx + uw

2019-07-28 06:54发布

I'm having a hard time deploying a Flask app with Flask-Restplus.

Everything works great when working locally (wezkrug) in http://localhost:5000/api

But when I deploy in a machine my app using nginx + uwgsi, I keep on getting 404 responses from server when accesing http://example.com/api...

Looks like Flask-Restplus is using swaggerui for Swagger...do I have to add something in nginx.conf to serve this? Forgive my ignorance but I have no previous experience with nginx

This is how I declared the Blueprint that contains the API

# Configure the Blueprint for API
blueprint = Blueprint('api', __name__, url_prefix='/api')
api.init_app(blueprint)
api.add_namespace(programs_namespace)
api.add_namespace(students_namespace)
app.register_blueprint(blueprint)

This is my nginx configuration at /etc/ngingx/conf.d/mysite.conf

server {
    listen       80;
    server_name  _;
    client_max_body_size 400M;

    location / {
        auth_basic "Restricted";
        auth_basic_user_file htpasswd;
        try_files $uri @app;
    }

    location /static/ {
        root /home/mysite/mysite/portal/src/portal; 
        access_log off;
        error_page 404 = @app;
        expires 7d;
    }

    location @app {
        include     uwsgi_params;
        uwsgi_pass  127.0.0.1:5000;
        access_log  /var/log/nginx/mysite_access.log main;
        error_log   /var/log/nginx/mysite_error.log warn;
    }
}

# SSL Server
server {
   listen               443 default_server ssl;
   client_max_body_size 400M;
   ssl_certificate      /etc/nginx/conf.d/mysite.crt;
   ssl_certificate_key  /etc/nginx/conf.d/mysite.key;    
   ssl_protocols  SSLv2 SSLv3 TLSv1;
   ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
   ssl_prefer_server_ciphers   on;
   keepalive_timeout    70;

   location / {
       auth_basic "Restricted";
       auth_basic_user_file htpasswd;
       try_files $uri @app;
   }

   location /static/ {
       root /home/mysite/mysite/portal/src/portal;
       access_log off;
       error_page 404 = @app;
       expires 7d;
   }
   location @app {
        include     uwsgi_params;
        uwsgi_pass  127.0.0.1:5000;
        access_log  /var/log/nginx/mysite_access.log main;
        error_log   /var/log/nginx/mysite_error.log warn;
    }
}

I must say that when I try to access http://example.com/api I get no output at log files at all.

The app is run via a init script using uwgsi, you can see the contents here:

mysite_dir=${mysite_DIR-/home/mysite/mysite/portal/src/portal}
pidfile=${PIDFILE-/var/run/mysite/mysite.pid}
uwsgi_bin=/usr/local/bin/uwsgi
uwsgi_url=127.0.0.1:5000
uwsgi_app=uwsgiapp
uwsgi_parameters="-p 4 -M -t 300"
logfile=${LOGFILE-/var/log/mysite.log}
user=mysite

chk_pidfolder() {
    [ -d "${pidfile%/*}" ] || install -o $user -g $user -d "${pidfile%/*}"
}

start() {
    log_daemon_msg "Starting mysite"
    start-stop-daemon --start -c $user -g $user --pidfile $pidfile --exec $uwsgi_bin -- --chdir $mysite_dir --pidfile $pidfile -s $uwsgi_url -w $uwsgi_app $uwsgi_parameters -d $logfile --callable app --enable-threads --post-buffering 4096
    log_end_msg $?
}   

stop () {
    log_daemon_msg "Stopping mysite"
    if [ -e "$pidfile" ]; then
        pid=`cat "$pidfile"`
    else
        pid=`pidofproc $uwsgi_bin`
    fi
    kill $pid
    stopped=false
    for ((i=0; i<10; i++)); do
        if [ -d /proc/$pid ]; then
            printf "."
            sleep 2
        else
            stopped=true
            break
        fi
    done
    if $stopped ; then
        rm -f $pidfile
        log_end_msg 0
    else
        kill -6 $pid
        log_warning_msg "no success, attempted to kill the process with -6, manual check recommended"
    fi
}

case "$1" in
    start)
        chk_pidfolder
        start
        ;;
    stop)
        stop
        ;;
    status)
        log_daemon_msg "Status of mysite"
        status_of_proc -p $pidfile $uwsgi_bin mysite
  #      if [ $? -eq 0 ]; then
  #        log_end_msg 0
  #        exit 0
  #      else
  #        log_end_msg 1
  #        exit 1
  #      fi
        ;;
    restart)
        log_daemon_msg "Restarting mysite"
        stop
        sleep 4
        start
        ;;
    *)
        echo $"Usage: $prog {start|stop|restart}"
        exit 2
        ;;
esac
exit 0

Thanks!

1条回答
我想做一个坏孩纸
2楼-- · 2019-07-28 07:18

As stated in the Flask's documentation, you probably want to use ProxyFix + a few modifications to your nginx configuration.

In your application code, you may want to do something like:

# Configure the Blueprint for API
blueprint = Blueprint('api', __name__, url_prefix='/api')
api.init_app(blueprint)
api.add_namespace(programs_namespace)
api.add_namespace(students_namespace)
app.register_blueprint(blueprint)

# Here we patch the application
from werkzeug.contrib.fixers import ProxyFix
app.wsgi_app = ProxyFix(app.wsgi_app)

Then your nginx configuration will have to look:

server {
    listen       80;
    server_name  _;
    client_max_body_size 400M;

    location / {
        auth_basic "Restricted";
        auth_basic_user_file htpasswd;
        try_files $uri @app;
    }

    location /static/ {
        root /home/mysite/mysite/portal/src/portal; 
        access_log off;
        error_page 404 = @app;
        expires 7d;
    }

    location @app {
        include     uwsgi_params;
        proxy_set_header   Host                 $host;
        proxy_set_header   X-Real-IP            $remote_addr;
        proxy_set_header   X-Forwarded-For      $proxy_add_x_forwarded_for;
        proxy_set_header   X-Forwarded-Proto    $scheme;
        uwsgi_pass  127.0.0.1:5000;
        access_log  /var/log/nginx/mysite_access.log main;
        error_log   /var/log/nginx/mysite_error.log warn;
    }
}

# SSL Server
server {
   listen               443 default_server ssl;
   client_max_body_size 400M;
   ssl_certificate      /etc/nginx/conf.d/mysite.crt;
   ssl_certificate_key  /etc/nginx/conf.d/mysite.key;    
   ssl_protocols  SSLv2 SSLv3 TLSv1;
   ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
   ssl_prefer_server_ciphers   on;
   keepalive_timeout    70;

   location / {
       auth_basic "Restricted";
       auth_basic_user_file htpasswd;
       try_files $uri @app;
   }

   location /static/ {
       root /home/mysite/mysite/portal/src/portal;
       access_log off;
       error_page 404 = @app;
       expires 7d;
   }
   location @app {
        include     uwsgi_params;
        proxy_set_header   Host                 $host;
        proxy_set_header   X-Real-IP            $remote_addr;
        proxy_set_header   X-Forwarded-For      $proxy_add_x_forwarded_for;
        proxy_set_header   X-Forwarded-Proto    $scheme;
        uwsgi_pass  127.0.0.1:5000;
        access_log  /var/log/nginx/mysite_access.log main;
        error_log   /var/log/nginx/mysite_error.log warn;
    }
}
查看更多
登录 后发表回答