Why would Strapi admin fail to login when site domain go through CloudFront CDN?
When we point our domain to CloudFront that proxies requests to our server, we cannot log in to admin anymore, when we type email and password, then click the submit button, it first seems like log-in was successful, then it redirects back to the login page. The only error shown in the console is 401 for the following pages:
/information
/permissions
/me
When we make the domain point directly to our server, we then can log in with no issues.
In all cases, we use Nginx which passes requests to the actual Strapi server through proxy_pass.
Are there any settings we need to tweak on Strapi? Or are there any headers/settings that need to be added to the CDN service?
Strapi is almost vanilla, other than the URL, models, and db settings, there aren't any actual customizations.
Any suggestions?
I had the same issue and I solved it by modifying the headers forwarding policy in Cloud Front:
- Go to your distribution
- Go to
Behaviorsand click edit - Scroll down to
Cache key and origin requestssection - Choose
Cache policy and origin request policy (recommended) - For
Cache policychooseCachingDIsabled(it is managed one) - For
Origin request policy - optionalclick onCreate origin request policyto create a custom one - Create the following policy:
- Refresh the options for
Origin request policy - optionaland choose the newly created policy - Save the changes
- Wait for CloudFront to be deployed
Obviously, Cloud Front is not including all headers from the origin request which is causing the issue. I hope this solves your problem also.
- How to set up HTTPS for Rasa chatbot?
- how to setup nginx ingress with http proxy
- How do I configure Nginx Proxy Manager to proxy an OnlyOffice Document Server Docker container?
- nginx 500 Internal Server Error
- NGINX load_module error - How to load modules from an include file?
- why my nginx service can not be stopped on my mac?
- Firebase not working on my website when opening from mobile devices
- How to modify the nginx.conf file during AWS Elastic Beanstalk deployment
- Can nginx passthrough multiple locations for the same request?
- how to avoid force refresh browser when I release my web static files
- How many nginx buffers is too many?
- After migrating the Docker container to Linux, images are not loading
- Browser does not store Http Cookie from ASP.NET Web API Docker
- Nginx - Serving different favicons for each subdomain sharing the same declaration
- nginx sub_filter not working on some uncompressed json (wordpress, elementor)
- Is it bad to always run nginx-debug?
- Conflicting Basic & Bearer Authorization between nginx and my webapp
- Catch-all nginx server blocks for invalid subdomains
- Nginx add_header and cache control
- Socket.io error with NGINX when deploying a MERN app with Docker
- Deploy Backend and Frontend projects with NGINX
- React Vite web app will not apply css after build
- Wagtail(django) and Nginx Static files not being served
- Express app inside docker. Restricting access to host localhost only
- Trying to set Http to Https Redirect on Nginx
- Forward TCP connection to HTTP on Nginx
- Nginx http to https redirection on localhost giving page redirection error
- advanced nginx http to https redirect on custom and different ports
- Disable caching of a single file with try_files directive
- How to output the port after the IP address in a resource URL in Django?