PhuongDM/TTMT.ManageWebGUI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix meshcentral proxy to using private address #7

Merged
bachdam merged 2 commits from fix/meshRedirect into main 2026-04-10 18:56:21 +07:00
Conversation 0 Commits 2 Files Changed 4 +56 -16
4 changed files with 56 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 9e8e027137 - Show all commits

39
nginx/nginx.conf
View File

@ -28,6 +28,8 @@ server{
ssl_ciphers HIGH:!aNULL:!MD5; ssl_ciphers HIGH:!aNULL:!MD5;
set $backend_server 172.18.10.8:8080; set $backend_server 172.18.10.8:8080;
# 2-container model: FE nginx proxies to MeshCentral container by Docker service name
set $mesh_server meshcentral:8082;
root /usr/share/nginx/html; root /usr/share/nginx/html;
# Default file to serve for directory requests # Default file to serve for directory requests
@ -81,13 +83,42 @@ server{
proxy_read_timeout 1h; proxy_read_timeout 1h;
} }
location /mesh-proxy/ { location /api/meshcentral/proxy/ {
proxy_pass https://202.191.59.59/; proxy_pass https://$mesh_server;
proxy_ssl_verify off;
proxy_cookie_path / "/; HTTPOnly; Secure; SameSite=None"; proxy_cookie_path / "/; HTTPOnly; Secure; SameSite=None";
# Cấu hình WebSocket cho commander.ashx proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
# Cấu hình WebSocket/SSE cho MeshCentral
proxy_http_version 1.1; proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade; proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade"; proxy_set_header Connection "upgrade";
proxy_buffering off;
proxy_read_timeout 3600s;
proxy_send_timeout 3600s;
}
# FE production currently builds mesh proxy path as /meshapi/api/meshcentral/proxy/...
location /meshapi/api/meshcentral/proxy/ {
rewrite ^/meshapi/(.*)$ /$1 break;
proxy_pass https://$mesh_server;
proxy_ssl_verify off;
proxy_cookie_path / "/; HTTPOnly; Secure; SameSite=None";
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_buffering off;
proxy_read_timeout 3600s;
proxy_send_timeout 3600s;
} }
} }

8
src/components/cards/computer-card.tsx
View File

@ -8,7 +8,7 @@ import { useGetClientFolderStatusForDevice } from "@/hooks/queries";
import type { ClientFolderStatus } from "@/types/folder"; import type { ClientFolderStatus } from "@/types/folder";
import { Button } from "@/components/ui/button"; import { Button } from "@/components/ui/button";
import { getRemoteDesktopUrl } from "@/services/remote-control.service"; import { getRemoteDesktopUrl } from "@/services/remote-control.service";
import { BASE_URL } from "@/config/api"; import { buildMeshProxyUrl } from "@/config/api";
import { toast } from "sonner"; import { toast } from "sonner";
export function ComputerCard({ export function ComputerCard({
device, device,
@ -52,11 +52,7 @@ export function ComputerCard({
const response = await getRemoteDesktopUrl(device.id); const response = await getRemoteDesktopUrl(device.id);
const originalUrl = new URL(response.url); const originalUrl = new URL(response.url);
const pathAndQuery = originalUrl.pathname + originalUrl.search; const pathAndQuery = originalUrl.pathname + originalUrl.search;
const cleanPath = pathAndQuery.startsWith("/") const proxyUrlFull = buildMeshProxyUrl(pathAndQuery);
? pathAndQuery.substring(1)
: pathAndQuery;
const baseWithoutApi = BASE_URL.replace("/api", "");
const proxyUrlFull = `${baseWithoutApi}/api/meshcentral/proxy/${cleanPath}`;
setProxyUrl(proxyUrlFull); setProxyUrl(proxyUrlFull);
setShowRemote(true); setShowRemote(true);

19
src/config/api.ts
View File

@ -1,12 +1,27 @@
const isDev = import.meta.env.MODE === "development"; const isDev = import.meta.env.MODE === "development";
const trimTrailingSlash = (value: string) => value.replace(/\/+$/, "");
export const BASE_URL = isDev export const BASE_URL = isDev
? import.meta.env.VITE_API_URL_DEV ? import.meta.env.VITE_API_URL_DEV
: "/api"; : "/api";
export const BASE_MESH_URL = isDev export const BASE_MESH_URL = isDev
? import.meta.env.VITE_API_MESH_DEV ? (import.meta.env.VITE_API_MESH || import.meta.env.VITE_API_MESH_DEV || "")
: "/meshapi"; : (import.meta.env.VITE_API_MESH || "");
export const buildMeshProxyUrl = (meshPathAndQuery: string) => {
const cleanPath = meshPathAndQuery.startsWith("/")
? meshPathAndQuery.substring(1)
: meshPathAndQuery;
const proxyPath = `/api/meshcentral/proxy/${cleanPath}`;
if (BASE_MESH_URL && BASE_MESH_URL.startsWith("http")) {
return `${trimTrailingSlash(BASE_MESH_URL)}${proxyPath}`;
}
return proxyPath;
};
export const API_ENDPOINTS = { export const API_ENDPOINTS = {
AUTH: { AUTH: {

6
src/routes/_auth/remote-control/index.tsx
View File

@ -6,7 +6,7 @@ import { Card, CardContent, CardDescription, CardHeader, CardTitle } from "@/com
import { Input } from "@/components/ui/input"; import { Input } from "@/components/ui/input";
import { Button } from "@/components/ui/button"; import { Button } from "@/components/ui/button";
import { getRemoteDesktopUrl } from "@/services/remote-control.service"; import { getRemoteDesktopUrl } from "@/services/remote-control.service";
import { BASE_URL } from "@/config/api"; import { buildMeshProxyUrl } from "@/config/api";
export const Route = createFileRoute("/_auth/remote-control/")({ export const Route = createFileRoute("/_auth/remote-control/")({
@ -38,9 +38,7 @@ function RemoteControlPage() {
// Chuyển URL MeshCentral thành proxy URL // Chuyển URL MeshCentral thành proxy URL
const originalUrl = new URL(data.url); const originalUrl = new URL(data.url);
const pathAndQuery = originalUrl.pathname + originalUrl.search; const pathAndQuery = originalUrl.pathname + originalUrl.search;
const cleanPath = pathAndQuery.startsWith('/') ? pathAndQuery.substring(1) : pathAndQuery; const proxyUrlFull = buildMeshProxyUrl(pathAndQuery);
const baseWithoutApi = BASE_URL.replace('/api', '');
const proxyUrlFull = `${baseWithoutApi}/api/meshcentral/proxy/${cleanPath}`;
console.log("[RemoteControl] Proxy URL:", proxyUrlFull); console.log("[RemoteControl] Proxy URL:", proxyUrlFull);
setProxyUrl(proxyUrlFull); setProxyUrl(proxyUrlFull);