nginx 失败 (13: Permission denied) uwsgi (502 bad gateway)

Question

我在新的 DigitalOcean Droplet 上运行我的应用程序时遇到问题。本机运行 CentOS 6.5

我的 /etc/nginx/nginx.conf

user  nginx www-data;
worker_processes  1;

error_log  /var/log/nginx/error.log;
#error_log  /var/log/nginx/error.log  notice;
#error_log  /var/log/nginx/error.log  info;

pid        /var/run/nginx.pid;
(continues)

我的 myapp_nginx.conf

server {

   server_name 104.xxx.x.xxx;
    listen      8080;
    charset     utf-8;
    client_max_body_size 30M;

    location / {
        index index.html index.htm;
        root /home/webdev/mydevelopment/git/ers_portal;
        try_files $uri @app;
    }

    location /static {
    alias /home/webdev/mydevelopment/git/ers_portal/app/static;
    }

    location @app {
        include uwsgi_params;
        uwsgi_pass unix:/home/webdev/mydevelopment/git/ers_portal_uwsgi.sock;
    }
}

我的 myapp_uwsgi.ini

[uwsgi]
master = true
#user info
uid = webdev
gid = www-data

#application's base folder
base = /home/webdev/mydevelopment/git/ers_portal

#chdir to this folder when starting
#chdir = /home/webdev/mydevelopment/git/ers_portal

#python module to import
app = run_web
module = %(app)

home = /home/webdev/mydevelopment/venvs/ecodev_do
pythonpath = %(base)

#socket file's location
socket = /home/webdev/mydevelopment/git/ers_portal/%n.sock

#permissions for the socket file
chmod-socket    = 666

#the variable that holds a flask application inside the module imported at line #6
#uwsgi varible only, does not relate to your flask application
callable = app

#location of log files
logto = /home/webdev/mydevelopment/git/ers_portal/logs/%n.log

error.log每当我向 nginx发出 Web 请求时打印的错误消息104.xxx.x.xxx:8080

2014/11/19 23:14:47 [crit] 28090#0: *1 stat() "/home/webdev/mydevelopment/git/ers_portal/favicon.ico" failed (13: Permission denied), client: 71.211.xxx.xxx, server: 104.xxx.x.xxx, request: "GET /favicon.ico HTTP/1.1", host: "104.xxx.x.xxx:8080"
2014/11/19 23:14:47 [crit] 28090#0: *1 connect() to unix:/home/webdev/mydevelopment/git/ers_portal_uwsgi.sock failed (13: Permission denied) while connecting to upstream, client: 71.211.xxx.xxx, server: 104.xxx.x.xxx, request: "GET /favicon.ico HTTP/1.1", upstream: "uwsgi://unix:/home/webdev/mydevelopment/git/ers_portal_uwsgi.sock:", host: "104.xxx.x.xxx:8080"

项目文件夹： drwxr-xr-x 6 webdev www-data 4.0K Nov 19 23:40 ers_portal

该文件夹内的套接字： srw-rw-rw- 1 webdev www-data 0 Nov 19 23:45 ers_portal_uwsgi.sock

如果您需要任何其他信息，请告诉我。谢谢！！

编辑

我按照@Eugene 的建议更改了权限。现在在我的/var/log/nginx/access.log我看到

[20/Nov/2014:01:37:58 -0500] "GET / HTTP/1.1" 502 574 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.153 Safari/537.36" "-"

在/var/log/nginx/error.log我看到

2014/11/20 01:38:27 [crit] 28639#0: *1 connect() to unix:/home/webdev/mydevelopment/git/ers_portal_uwsgi.sock failed (2: No such file or directory) while connecting to upstream, client: 71.21.my.local.ip, server: , request: "GET / HTTP/1.1", upstream: "uwsgi://unix:/home/webdev/mydevelopment/git/ers_portal_uwsgi.sock:", host: "104.ser.ver.ip"

之前的 favicon.ico 拒绝（下方）var/log/nginx/access.log不再出现

"GET /favicon.ico HTTP/1.1" 502 574 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.153 Safari/537.36" "-"

Answer 1

解决了

经过数小时的搜索，我发现了我的错字。在/path/to/my/webapp/my_app_nginx.conf读取的行中

location @app {
        include uwsgi_params;
        uwsgi_pass unix:/home/webdev/mydevelopment/git/ers_portal_uwsgi.sock;
    }

应该读

location @app {
        include uwsgi_params;
        uwsgi_pass unix:/home/webdev/mydevelopment/git/ers_portal/ers_portal_uwsgi.sock;
    }

此外，在/etc/nginx/nginx.conf更改user nginx www-data;回user nginx;

还要确保“顶级”中/etc/nginx/nginx.conf没有与您的应用程序配置冲突的默认服务器块（在我的情况下/path/to/my/webapp/my_app_nginx.conf，它是符号链接到/etc/nginx/conf.d/文件夹）。

得到教训...

1. 不要气馁。世界上最糟糕（可能是第二糟糕）的感觉是无法在很长一段时间内弄清楚某些事情。尤其是如果这是你的爱好，很容易会觉得你无能，这东西太难了，你还不够好。坚持下去。
2. 要有条不紊。我变得疯狂，尤其是在那里的最后。这导致上床睡觉并没有真正的进步，醒来时还是在原地。写下所有内容，记录您尝试过的内容并跟踪以前的更改。如果ABABA是工作配置，并且---B-是您正在寻找的更改，但您忘记更改--B--回--A--，您将重复并重复并重复自己。见#1
3. 请记住，有时达成解决方案最重要的事情是起身走开。
4. 不要低估同行（这个社区）的知识。虽然他们可能无法立即回答您的特定问题，但请记住，我们所有人都不像我们中的任何一个人那样愚蠢（或类似的愚蠢说法）。我们都对从地球上解决问题有着根深蒂固的热爱，一次一个。