I
Immich4w ago
funnything1

Cloudflare + nginx proxy manager session timeout when deleting anything

I use immich through a cloudflair domain name and nginx proxy manager and have a strange issue that whenever i do any action that involves deleting something (photo, api key, device) 9/10 times everything stops working and the webpage wont come back until i clear cookies and cache or relaunch the app. This happens on the web and iOS app. I am assuming it's something with my proxy setup or nginx config that I am missing. I have tried several different combinations of configs for nginx proxy manager but so far nothing has fixed it. I have attached photos from nginx proxy manager and immich logs This does not happen locally only through the proxy Here is my current nginx config: 
    # SSL Optimization
    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_prefer_server_ciphers on;
    ssl_ciphers "<TLS Cypher>";
    ssl_session_cache shared:SSL:10m;
    ssl_session_timeout 10m;
    
    # HSTS (HTTP Strict Transport Security)
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;


    # General Headers for Proxying
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header X-Forwarded-Host $http_host;
    proxy_pass_request_headers on;


    # Performance Optimization
    proxy_read_timeout 600s;
    proxy_send_timeout 600s;
    send_timeout 600s;
    client_max_body_size 50000M;
    proxy_cache off;          # Disable proxy cache for dynamic content
    proxy_buffering off;      # Disable buffering for WebSockets and real-time apps  # Use HTTP/1.1 for WebSocket compatibility
    proxy_redirect off;       # Prevent NGINX from altering redirects


    # WebSocket Specific Headers
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
proxy_set_header Transfer-Encoding "";
add_header Transfer-Encoding chunked;
    # SSL Optimization
    ssl_protocols TLSv1.2 TLSv1.3;
    ssl_prefer_server_ciphers on;
    ssl_ciphers "<TLS Cypher>";
    ssl_session_cache shared:SSL:10m;
    ssl_session_timeout 10m;
    
    # HSTS (HTTP Strict Transport Security)
    add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;


    # General Headers for Proxying
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header X-Forwarded-Host $http_host;
    proxy_pass_request_headers on;


    # Performance Optimization
    proxy_read_timeout 600s;
    proxy_send_timeout 600s;
    send_timeout 600s;
    client_max_body_size 50000M;
    proxy_cache off;          # Disable proxy cache for dynamic content
    proxy_buffering off;      # Disable buffering for WebSockets and real-time apps  # Use HTTP/1.1 for WebSocket compatibility
    proxy_redirect off;       # Prevent NGINX from altering redirects


    # WebSocket Specific Headers
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
proxy_set_header Transfer-Encoding "";
add_header Transfer-Encoding chunked;
No description
No description
No description

error_proxy_manager_...

6 Replies
Immich
Immich4w ago
:wave: Hey @funnything1, Thanks for reaching out to us. Please carefully read this message and follow the recommended actions. This will help us be more effective in our support effort and leave more time for building Immich :immich:. References - Container Logs: docker compose logs docs - Container Status: docker ps -a docs - Reverse Proxy: https://immich.app/docs/administration/reverse-proxy - Code Formatting https://support.discord.com/hc/en-us/articles/210298617-Markdown-Text-101-Chat-Formatting-Bold-Italic-Underline#h_01GY0DAKGXDEHE263BCAYEGFJA Checklist I have... 1. :ballot_box_with_check: verified I'm on the latest release(note that mobile app releases may take some time). 2. :ballot_box_with_check: read applicable release notes. 3. :ballot_box_with_check: reviewed the FAQs for known issues. 4. :ballot_box_with_check: reviewed Github for known issues. 5. :ballot_box_with_check: tried accessing Immich via local ip (without a custom reverse proxy). 6. :ballot_box_with_check: uploaded the relevant information (see below). 7. :ballot_box_with_check: tried an incognito window, disabled extensions, cleared mobile app cache, logged out and back in, different browsers, etc. as applicable (an item can be marked as "complete" by reacting with the appropriate number) Information In order to be able to effectively help you, we need you to provide clear information to show what the problem is. The exact details needed vary per case, but here is a list of things to consider: - Your docker-compose.yml and .env files. - Logs from all the containers and their status (see above). - All the troubleshooting steps you've tried so far. - Any recent changes you've made to Immich or your system. - Details about your system (both software/OS and hardware). - Details about your storage (filesystems, type of disks, output of commands like fdisk -l and df -h). - The version of the Immich server, mobile app, and other relevant pieces. - Any other information that you think might be relevant. Please paste files and logs with proper code formatting, and especially avoid blurry screenshots. Without the right information we can't work out what the problem is. Help us help you ;) If this ticket can be closed you can use the /close command, and re-open it later if needed. Successfully submitted, a tag has been added to inform contributors. :white_check_mark:
Alterus
Alterus4w ago
Hi there. I have the same setupbut mine is like this
Alterus
Alterus4w ago
No description
No description
Alterus
Alterus4w ago
And it allways works. Sometimes you i can't open the webpage but a quick refresh does the job
funnything1
funnything1OP4w ago
thank you for that info i have always been using cloudflair automatic ssl so i never did true ssl on my end. Once i figured out how to create the cert and tested it the issue went away so i guess if anyone has a similar issue stop using Automatic SSL/TLS in cloudflair.
No description
Immich
Immich4w ago
This thread has been closed. To re-open, use the button below.

Did you find this page helpful?