解决Nginx+Tomcat中https转http请求问题

今天遇到一个问题，在配置Nginx的https请求，tomcat使用http时，请求静态资源会报

Mixed Content: The page at 'https://a.b.com/detail?id=5' was loaded over HTTPS, but requested an insecure script 'http://a.b.com/xxxxxxx'. This request has been blocked; the content must be served over HTTPS.的问题。

解决方案：

1 Nginx对应server的location添加配置

proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header   X-Forwarded-Proto $scheme;

注意：如果nginx里配置的upstream是非具体IP的，不要写localhost，应该写127.0.0.1，类似如下：

upstream xxx{
server 127.0.0.1:8080 weight=1;
}

2 Tomcat的配置srever.xml

2.1 connector里添加

redirectPort="443" proxyPrort="443"

2.2 Host里添加

<Valve className="org.apache.catalina.valves.RemoteIpValve" protocolHeaderHttpsValue="https" remoteIpHeader="X-Forwarded-For" protocolHeader="X-Forwarded-Proto" />

3 在防火墙里添加443端口的入站规则