fix(ops/www): increase buffer memory size for auth.tvl.fyi

Keycloak seems to have decided today that it will now send headers
that are larger than what the nginx default configuration can handle.

The numbers are a mix of made up and taken from random nginx voodoo
posts on the internet, so they're as good a guess as anyone's.

Change-Id: If037bcba48eee371cc96304b150276c669930c75
Reviewed-on: https://cl.tvl.fyi/c/depot/+/7992
Tested-by: BuildkiteCI
Reviewed-by: flokli <flokli@flokli.de>
Autosubmit: tazjin <tazjin@tvl.su>
This commit is contained in:
Vincent Ambo 2023-02-01 12:25:57 +03:00 committed by tazjin
parent 5f62cd1ad5
commit 3caa4c4aa4

View file

@ -12,6 +12,10 @@
forceSSL = true; forceSSL = true;
extraConfig = '' extraConfig = ''
# increase buffer size for large headers
proxy_buffers 8 16k;
proxy_buffer_size 16k;
location / { location / {
proxy_pass http://localhost:${toString config.services.keycloak.settings.http-port}; proxy_pass http://localhost:${toString config.services.keycloak.settings.http-port};
proxy_set_header X-Forwarded-For $remote_addr; proxy_set_header X-Forwarded-For $remote_addr;