Nginx Laravel template causes 404 on images

elmo · December 27, 2023, 8:40am

I am running invoice ninja with the default laravel template and nginx. I found that everything works except when uploading images. Images upload but on preview it is 404 in error console.

If i edit the nginx conf and remove this png/jpg/jpeg it loads fine.

location / {
try_files $uri $uri/ /index.php?$args;

	location ~* ^.+\.(ogg|ogv|svg|svgz|swf|eot|otf|woff|woff2|mov|mp3|mp4|webm|flv|ttf|rss|atom|jpg|jpeg|gif|png|webp|ico|bmp|mid|midi|wav|rtf|css|js|jar)$ {
		expires 30d;
		fastcgi_hide_header "Set-Cookie";
	}

Is this intentional from hestia side?

Aartsie · December 30, 2023, 12:12pm

Hi Elmo,

Do you already fixed the issue?

Normally Laravel will handle this when you put the images in the public folder.
But i don’t know about invoice ninja.

elmo · January 3, 2024, 3:08pm

Yes i fixed it by editing out jpg/jpeg/png from the above code. I had to create a custom template. I do not know the purpose for that code block hopefully its not a security problem

Aartsie · January 3, 2024, 3:30pm

that code block is for caching so it is no security issue but it can slow down the page speed and increases your data traffic.

elmo · January 3, 2024, 3:35pm

hmm but why would it cause pictures not to work. It becomes http 404 error with that block.

Aartsie · January 3, 2024, 3:45pm

Can you show more of the nginx config?

eris · January 3, 2024, 3:46pm

elmo · January 3, 2024, 3:49pm

#=========================================================================#

Default Web Domain Template

DO NOT MODIFY THIS FILE! CHANGES WILL BE LOST WHEN REBUILDING DOMAINS

Web Templates and FastCGI/Proxy Cache | Hestia Control Panel

#=========================================================================#

server {
listen %ip%:%web_ssl_port% ssl;
server_name %domain_idn% %alias_idn%;
root %sdocroot%/public;
index index.php index.html index.htm;
access_log /var/log/nginx/domains/%domain%.log combined;
access_log /var/log/nginx/domains/%domain%.bytes bytes;
error_log /var/log/nginx/domains/%domain%.error.log error;

gzip on;
gzip_types application/javascript application/x-javascript text/javascript text/plain application/xml application/json;
gzip_proxied    no-cache no-store private expired auth;
gzip_min_length 1000;

ssl_certificate     %ssl_pem%;
ssl_certificate_key %ssl_key%;
ssl_stapling        on;
ssl_stapling_verify on;

# TLS 1.3 0-RTT anti-replay
if ($anti_replay = 307) { return 307 https://$host$request_uri; }
if ($anti_replay = 425) { return 425; }

include %home%/%user%/conf/web/%domain%/nginx.hsts.conf*;

location = /favicon.ico {
	log_not_found off;
	access_log off;
}

location = /robots.txt {
	allow all;
	log_not_found off;
	access_log off;
}

location ~ /\.(?!well-known\/) {
	deny all;
	return 404;
}

location / {
	try_files $uri $uri/ /index.php?$args;

	location ~* ^.+\.(ogg|ogv|svg|svgz|swf|eot|otf|woff|woff2|mov|mp3|mp4|webm|flv|ttf|rss|atom|gif|webp|ico|bmp|mid|midi|wav|rtf|css|js|jar)$ {
		expires 30d;
		fastcgi_hide_header "Set-Cookie";
	}

	location ~ [^/]\.php(/|$) {
		try_files $uri =404;

		include /etc/nginx/fastcgi_params;

		fastcgi_index index.php;
		fastcgi_param HTTP_EARLY_DATA $rfc_early_data if_not_empty;
		fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;

		fastcgi_pass %backend_lsnr%;

		include %home%/%user%/conf/web/%domain%/nginx.fastcgi_cache.conf*;
	}
}

location /error/ {
	alias %home%/%user%/web/%domain%/document_errors/;
}

location /vstats/ {
	alias   %home%/%user%/web/%domain%/stats/;
	include %home%/%user%/web/%domain%/stats/auth.conf*;
}

proxy_hide_header Upgrade;

include /etc/nginx/conf.d/phpmyadmin.inc*;
include /etc/nginx/conf.d/phppgadmin.inc*;
include %home%/%user%/conf/web/%domain%/nginx.ssl.conf_*;

}

Only thing i did was remove jpg/jpeg/png and the pictures worked right after that

Aartsie · January 3, 2024, 3:50pm

Thank you @eris and @elmo !

Can you change:

location / {
		try_files $uri $uri/ /index.php?$args;

		location ~* ^.+\.(ogg|ogv|svg|svgz|swf|eot|otf|woff|woff2|mov|mp3|mp4|webm|flv|ttf|rss|atom|jpg|jpeg|gif|png|webp|ico|bmp|mid|midi|wav|rtf|css|js|jar)$ {
			expires 30d;
			fastcgi_hide_header "Set-Cookie";
		}

		location ~ [^/]\.php(/|$) {
			try_files $uri =404;

			include /etc/nginx/fastcgi_params;

			fastcgi_index index.php;
			fastcgi_param HTTP_EARLY_DATA $rfc_early_data if_not_empty;
			fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;

			fastcgi_pass %backend_lsnr%;

			include %home%/%user%/conf/web/%domain%/nginx.fastcgi_cache.conf*;
		}
	}

To this:

location ~* ^.+\.(ogg|ogv|svg|svgz|swf|eot|otf|woff|woff2|mov|mp3|mp4|webm|flv|ttf|rss|atom|jpg|jpeg|gif|png|webp|ico|bmp|mid|midi|wav|rtf|css|js|jar)$ {
			expires 30d;
			fastcgi_hide_header "Set-Cookie";
}

location / {
		try_files $uri $uri/ /index.php?$args;

		location ~ [^/]\.php(/|$) {
			try_files $uri =404;

			include /etc/nginx/fastcgi_params;

			fastcgi_index index.php;
			fastcgi_param HTTP_EARLY_DATA $rfc_early_data if_not_empty;
			fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;

			fastcgi_pass %backend_lsnr%;

			include %home%/%user%/conf/web/%domain%/nginx.fastcgi_cache.conf*;
		}
	}

And test it?