Hi there, follow the command curl -v.
####################################################### curl -v https://x.x.x.x.com/app * Trying x.x.x.x:443... * Connected to x.x.x.x (x.x.x.x) port 443 (#0) * ALPN, offering h2 * ALPN, offering http/1.1 * successfully set certificate verify locations: * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs * TLSv1.3 (OUT), TLS handshake, Client hello (1): * TLSv1.3 (IN), TLS handshake, Server hello (2): * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8): * TLSv1.3 (IN), TLS handshake, Certificate (11): * TLSv1.3 (IN), TLS handshake, CERT verify (15): * TLSv1.3 (IN), TLS handshake, Finished (20): * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1): * TLSv1.3 (OUT), TLS handshake, Finished (20): * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384 * ALPN, server accepted to use http/1.1 * Server certificate: * subject: CN=*.x.x.x.x * start date: Mar 31 00:00:00 2021 GMT * expire date: Mar 31 23:59:59 2022 GMT * subjectAltName: host "x.x.x.x" matched cert's "*.x.x.x.x" * issuer: x.x.x.x * SSL certificate verify ok. > GET /app HTTP/1.1 > Host: x.x.x.x > User-Agent: curl/7.74.0 > Accept: */* > * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4): * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4): * old SSL session ID is stale, removing * Mark bundle as not supporting multiuse < HTTP/1.1 302 < Server: nginx < Date: Fri, 03 Dec 2021 13:58:45 GMT < Content-Length: 0 < Connection: keep-alive < Vary: Accept-Encoding < Set-Cookie: JSESSIONID=40D508FAD9443C32B4BB3AE5C6AA9E36; Path=/pwm; Secure; HttpOnly; SameSite=Strict < X-PWM-SessionID: x9aPS < Content-Language: en < X-PWM-Noise: 9CCa2PcrE3K2iIpfivfwJuAauf0E81BtclX2NuODNc6hJ3UvdgjJ9PyH6xrV < X-Content-Type-Options: nosniff < X-XSS-Protection: 1 < X-PWM-Instance: 7D0720A46A762638 < X-Frame-Options: DENY < X-PWM-Amb: Bite my shiny metal password! < Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate < Content-Security-Policy: default-src 'self'; object-src 'none'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; script-src https://www.recaptcha.net/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ 'self' 'unsafe-eval' 'nonce-QXHDJS9TCiIEqqEULQJOsSfFYsEGwoXs'; frame-src https://www.recaptcha.net/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ ; report-uri /pwm/public/api?processAction=cspReport < Location: /pwm/public/forgottenpasswordapp?stickyRedirectTest=key < Set-Cookie: ID=3fajhL8QWt9TNKBTc8BQVdvqVxf7IZXOkwqt8unh; Path=/pwm/; Secure; HttpOnly; SameSite=Strict < Set-Cookie: SESSION=H4sIAAAAAAAAAAHLADT_UFdNLkdDTTEQoiWD0ScsDFgNWID788sIL4HXjWo_YbPGxoz_YStjhza8y-hWdTZA5I_UIGSjh54nEgqZmD_JeAiCikLARxHsW1PHRfIp9TfZF05dFqS0WgexsO0TfddkcqT0etZ0_GTmv4xPLCvlRZGwAho9FxYhdIbTeKTUXubNuR0rbluWtWpHwdPHzz5G8u3i_AlRD6vwOZsldN3TVrTCaKgA-uKwykb1BVTdAu5zOg2Yg-LT2oFKupk2TWvoLwV6AG-cetJeZkA1kK_oywAAAA%3D%3D; Path=/pwm/; Secure; HttpOnly; SameSite=Strict < X-Frame-Options: SAMEORIGIN < X-XSS-Protection: 1; mode=block < X-Content-Type-Options: nosniff < Referrer-Policy: no-referrer-when-downgrade < Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline' < Strict-Transport-Security: max-age=31536000; includeSubDomains; preload < * Connection #0 to x.x.x.x left intact root@ubuntu-server:/home/agomes# Posted at Nginx Forum: https://forum.nginx.org/read.php?2,292998,293003#msg-293003 _______________________________________________ nginx mailing list nginx@nginx.org http://mailman.nginx.org/mailman/listinfo/nginx
