google_ssl_off
The `google_ssl_off` directive disables SSL for specified Google requests in NGINX.
Description
The google_ssl_off directive is part of the NGINX module for creating Google mirrors, which allows users to create a functional copy of Google services. This directive is specified in the location context and can accept one or more arguments that represent specific Google service endpoints that should not utilize SSL. When enabled, this directive modifies the way HTTPS requests are handled, allowing HTTP connections instead, which can be useful for troubleshooting or specific use cases where SSL might introduce issues.
When processing requests, NGINX evaluates the google_ssl_off directive and, if a match is found with the specified endpoints, it utilizes HTTP instead of HTTPS for those requests. By doing so, it helps reduce potential SSL overhead, simplifies debugging, and allows users to serve mirrored content over plain HTTP for specified services. This can also improve caching and reduce the load on upstream servers where SSL termination is not configured.
To configure the directive, you simply need to specify it within a location block and provide the service endpoints without quotes. The directive will then apply to the requests matching those endpoints, ensuring they bypass SSL requirements and can connect using HTTP instead.
Config Example
location / {
google on;
google_ssl_off google.com;
google_ssl_off scholar.google.com google.co.uk;
}Ensure that you understand the security implications of disabling SSL, as this can expose sensitive data over unencrypted connections.
Carefully specify the correct service endpoints; using a broad match may inadvertently disable SSL for unintended requests.
Mixing HTTP and HTTPS configurations without clear intent can lead to inconsistent behavior and potential issues with cookies and sessions.