ash
/
nginx-configs
Beobachten 1
Favorisieren 0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 0 Wiki Aktivität
The collection of configuration files which run ataber.pw. Published here because people asked for them.
3 Commits
1 Branch
Struktur: f3d03d656d
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „f3d03d656d“
${ noResults }
nginx-configs/sites-available/gitea

gitea 2.3KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384 
  1. ##

  2. # You should look at the following URL's in order to grasp a solid understanding

  3. # of Nginx configuration files in order to fully unleash the power of Nginx.

  4. # http://wiki.nginx.org/Pitfalls

  5. # http://wiki.nginx.org/QuickStart

  6. # http://wiki.nginx.org/Configuration

  7. #

  8. # Generally, you will want to move this file somewhere, and start with a clean

  9. # file but keep this around for reference. Or just disable in sites-enabled.

  10. #

  11. # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples.

  12. ##

  13. 

  14. # Default server configuration

  15. #

  16. server {

  17.         listen 80;

  18.         listen [::]:80;

  19. 

  20.         server_name git.ataber.pw;

  21.         return 301 https://$host$request_uri;                                   

  22. }

  23. 

  24. server {

  25.         listen 443 ssl http2;

  26.         listen [::]:443 ssl http2;

  27. 

  28.         ssl_certificate /etc/letsencrypt/live/ataber.pw/fullchain.pem;                                

  29.         ssl_certificate_key /etc/letsencrypt/live/ataber.pw/privkey.pem;                              

  30.         ssl_trusted_certificate /etc/letsencrypt/live/ataber.pw/chain.pem;                            

  31.         ssl_dhparam /etc/ssl/private/dhparam.pem;

  32. 

  33. 	add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;

  34. 	add_header X-Xss-Protection "1; mode=block" always;

  35. 	add_header X-Content-Type-Options "nosniff" always;

  36. 	add_header X-Frame-Options "SAMEORIGIN" always;

  37. 	proxy_hide_header X-Powered-By;

  38. 	add_header 'Referrer-Policy' 'no-referrer';

  39. 	add_header Content-Security-Policy "frame-ancestors ataber.pw git.ataber.pw;";

  40. 

  41. 	server_name git.ataber.pw;

  42. 

  43. 	location / {

  44. 		proxy_pass http://unix:/home/alex/gitea.sock;

  45. 	}

  46. 

  47. 	# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000

  48. 	#

  49. 	#location ~ \.php$ {

  50. 	#	include snippets/fastcgi-php.conf;

  51. 	#

  52. 	#	# With php7.0-cgi alone:

  53. 	#	fastcgi_pass 127.0.0.1:9000;

  54. 	#	# With php7.0-fpm:

  55. 	#	fastcgi_pass unix:/run/php/php7.0-fpm.sock;

  56. 	#}

  57. 

  58. 	# deny access to .htaccess files, if Apache's document root

  59. 	# concurs with nginx's one

  60. 	#

  61. 	#location ~ /\.ht {

  62. 	#	deny all;

  63. 	#}

  64. }

  65. 

  66. 

  67. # Virtual Host configuration for example.com

  68. #

  69. # You can move that to a different file under sites-available/ and symlink that

  70. # to sites-enabled/ to enable it.

  71. #

  72. #server {

  73. #	listen 80;

  74. #	listen [::]:80;

  75. #

  76. #	server_name example.com;

  77. #

  78. #	root /var/www/example.com;

  79. #	index index.html;

  80. #

  81. #	location / {

  82. #		try_files $uri $uri/ =404;

  83. #	}

  84. #}