[GH-ISSUE #294] Web app: Display error messages for failing connections #226

New issue

Open

opened 2026-05-07 00:21:49 +02:00 by BreizhHardware · 2 comments

BreizhHardware commented 2026-05-07 00:21:49 +02:00

Owner

Copy link

Originally created by @prabirshrestha on GitHub (Jun 1, 2022).
Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/294

If ntfy is hosted behind a proxy server that doesn't have websocket enabled by default, the topic subscribed keeps spinning and there is no visual indication of what is potentially wrong. I was able to notice that it was failing to connect to websocket.

Synology NAS uses nginx for its configuration and is internal implementation details. They provide an UI to enable it. https://kb.synology.com/en-us/Surveillance/tutorial/WebSocket_connection_fail_streaming_issue

You can try to reproduce it by adding it behind nginx with websockets disabled.

Originally created by @prabirshrestha on GitHub (Jun 1, 2022). Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/294 If ntfy is hosted behind a proxy server that doesn't have websocket enabled by default, the topic subscribed keeps spinning and there is no visual indication of what is potentially wrong. I was able to notice that it was failing to connect to websocket. Synology NAS uses nginx for its configuration and is internal implementation details. They provide an UI to enable it. https://kb.synology.com/en-us/Surveillance/tutorial/WebSocket_connection_fail_streaming_issue You can try to reproduce it by adding it behind nginx with websockets disabled.

BreizhHardware added the

web-app

enhancement

labels 2026-05-07 00:21:49 +02:00

BreizhHardware commented 2026-05-07 00:21:49 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Jun 1, 2022):

Makes sense. Thanks for reporting.

<!-- gh-comment-id:1143603641 --> @binwiederhier commented on GitHub (Jun 1, 2022): Makes sense. Thanks for reporting.

BreizhHardware commented 2026-05-07 00:21:50 +02:00

Author

Owner

Copy link

@c33s commented on GitHub (Aug 7, 2022):

i had the same problem. fixed it by changing the nginx config.

relevant settings:

    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "Upgrade";
    proxy_set_header Host $host;

full nginx config example:

map $http_upgrade $connection_upgrade {
    default upgrade;
    ''      close;
}

server {
	listen       *:443 ssl;
	server_name ntfy.example.com;

	ssl on;
	ssl_certificate           /etc/letsencrypt/live/ntfy.example.com/fullchain.pem;
	ssl_certificate_key       /etc/letsencrypt/live/ntfy.example.com/privkey.pem;
	ssl_dhparam               /etc/ssl/dhparam.pem;
	ssl_session_cache         shared:SSL:10m;
	ssl_session_timeout       5m;
	ssl_protocols             TLSv1 TLSv1.1 TLSv1.2;
	ssl_ciphers               ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS;
	ssl_prefer_server_ciphers on;

	root /var/www/html;
	client_max_body_size 50m;
	proxy_buffering off;

	access_log            /var/log/nginx/ntfy.example.com.access.log combined;
	error_log             /var/log/nginx/ntfy.example.com.error.log;

	location ^~ /.well-known {
		index     index.html index.htm index.php;
		allow all;
	}

	location / {
		proxy_set_header X-Real-IP $remote_addr;
		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
		proxy_set_header X-Forwarded-Proto $scheme;
		proxy_set_header host $host;
		proxy_connect_timeout 300;
		proxy_http_version 1.1;
		proxy_set_header Upgrade $http_upgrade;
		proxy_set_header Connection $connection_upgrade;
		proxy_pass http://unix:/var/run/ntfy/ntfy.sock:/;
	}
}

further reading:

• https://www.nginx.com/blog/websocket-nginx/
• https://www.tutorialspoint.com/how-to-configure-nginx-as-reverse-proxy-for-websocket
• https://futurestud.io/tutorials/nginx-how-to-fix-unknown-connection_upgrade-variable

<!-- gh-comment-id:1207501886 --> @c33s commented on GitHub (Aug 7, 2022): i had the same problem. fixed it by changing the nginx config. relevant settings: ``` proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "Upgrade"; proxy_set_header Host $host; ``` `full nginx config example`: ``` map $http_upgrade $connection_upgrade { default upgrade; '' close; } server { listen *:443 ssl; server_name ntfy.example.com; ssl on; ssl_certificate /etc/letsencrypt/live/ntfy.example.com/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/ntfy.example.com/privkey.pem; ssl_dhparam /etc/ssl/dhparam.pem; ssl_session_cache shared:SSL:10m; ssl_session_timeout 5m; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS; ssl_prefer_server_ciphers on; root /var/www/html; client_max_body_size 50m; proxy_buffering off; access_log /var/log/nginx/ntfy.example.com.access.log combined; error_log /var/log/nginx/ntfy.example.com.error.log; location ^~ /.well-known { index index.html index.htm index.php; allow all; } location / { proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header host $host; proxy_connect_timeout 300; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection $connection_upgrade; proxy_pass http://unix:/var/run/ntfy/ntfy.sock:/; } } ``` further reading: - https://www.nginx.com/blog/websocket-nginx/ - https://www.tutorialspoint.com/how-to-configure-nginx-as-reverse-proxy-for-websocket - https://futurestud.io/tutorials/nginx-how-to-fix-unknown-connection_upgrade-variable

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dependabot/npm_and_yarn/web/fast-uri-3.1.2

email-verification

attachment-no-http2

attachment-fixes

attachment-s3

config-generator

postgres-replica

dockers-v2

postgres-support

postgres-webpush+user+message

postgres-webpush+user

postgres-webpush

1364-copy-action

crashfix

user-header

scalar-api-docs

cancel-scheduled

update-available

windows-server

303-update-notifications

postgres

admin-ui

require-login

http-clipboard

message-cache-lock

debian-stripe

predefined-users

busy-timeout

template-dir

ipv6

client-ip-header

apns-fix

feat_optional_require_login

security-updates

pg-message-cache

templating-disallow

templating-3

templating-2

message-size-limit+delay-limit

remove-rate-topics

html-emails

cf-priority

acl-underscores

auth-user-header

markdown

img-attach

web-improvements

utf8-headers

matrix-507-reject

http-response-writer

new-homepage-design

e2e

canary

windows

electron

update-messages

webhook-templating

v2.22.0

v2.21.0

v2.20.1

v2.20.0

v2.19.2

v2.19.1

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.14.0

v2.13.0

v2.12.0

v2.11.0

v2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.2

v2.6.1

v2.6.0

v2.5.0

v2.4.0

v2.3.1

v2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

v2.0.0

v1.31.0

v1.30.1

v1.29.1

v1.29.0

v1.28.0

v1.27.2

v1.27.1

v1.26.0

v1.25.2

v1.25.1

v1.25.0

v1.24.0

v1.23.0

v1.22.0

v1.21.2

v1.21.1

v1.21.0

v1.20.0

v1.19.0

v1.18.1

v1.18.0

v1.17.1

v1.17.0

v1.16.0

v1.15.0

v1.14.1

v1.14.0

v1.13.0

v1.12.1

v1.12.0

v1.11.1

v1.11.2

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.0

v1.6.1

v1.6.0

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.8

v1.4.7

v1.4.6

v1.4.5

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.3

v1.3.1

v1.3.0

v1.2.5

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.0

v0.0.5

v0.0.4

v0.0.3

v0.0.2

v0.0.1

Labels

Clear labels   

ai-generated

  

android-app

  

android-app

  

android-app

  

🪲 bug

  

build

  

build

  

dependencies

  

docs

  

enhancement

  

enhancement

  

🔥 HOT

  

in-progress 🏃

  

ios

  

prio:low

  

prio:low

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

🔒 security

  

server

  

server

  

unified-push

  

web-app

  

website

No labels

ai-generated

android-app

android-app

android-app

🪲 bug

build

build

dependencies

docs

enhancement

enhancement

🔥 HOT

in-progress 🏃

ios

prio:low

prio:low

pull-request

question

🔒 security

server

server

unified-push

web-app

website

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ntfy#226

No description provided.