I'm trying to add SSL to the site, and running into the Mixed Content/Redirect issue - I was able to get a cert using Let's Encrypt:
If I do not turn on "SSL Enabled" for the store, I get a mixed content warning, but when I turn on "SSL Enabled", I end up with a redirect loop. I can't tell if it's how I have NGINX configured (configuration below) or
Site is available here: https://nopex.eastus.cloudapp.azure.com/
Checked "Force SSL for all site pages"
Changed appsettings.json to the following:
"Hosting": {
//Set to "true" the settings below if your hosting uses a load balancer$
"UseHttpClusterHttps": true,
"UseHttpXForwardedProto": true,
NGINX configuration:
server {
listen 80 default_server;
listen [::]:80 default_server;
server_name nopex.eastus.cloudapp.azure.com;
location / {
proxy_pass http://localhost:5000;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection keep-alive;
proxy_set_header Host $host;
proxy_cache_bypass $http_upgrade;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
listen [::]:443 ssl ipv6only=on; # managed by Certbot
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/nopex.eastus.cloudapp.azure.com/f$
ssl_certificate_key /etc/letsencrypt/live/nopex.eastus.cloudapp.azure.c$
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}