fro/srv-pub
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0c061876c51191267796e47db6c052adad637a18
srv-pub/cfg/ngx/fw.op.fo.conf
fro 0c061876c5 / wip
2025-10-29 05:04:29 -05:00

84 lines
2.2 KiB
Plaintext
Raw Blame History

# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# configuration of fw.op.fo / frode klevstul / oct 2025
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# sc.op.fo ➔ fw.op.fo
server {
listen 80;
server_name sc.op.fo;
return 301 https://fw.op.fo$request_uri;
}
server {
listen 443 ssl;
listen [::]:443 ssl;
http2 on;
ssl_certificate /etc/nginx/acme.sh/op.fo/fullchain.pem;
ssl_certificate_key /etc/nginx/acme.sh/op.fo/key.pem;
ssl_trusted_certificate /etc/nginx/acme.sh/op.fo/cert.pem;
server_name sc.op.fo;
return 301 https://fw.op.fo$request_uri;
}
# http to https
server {
listen 80;
server_name fw.op.fo;
return 301 https://$host$request_uri;
}
# upstream configuration for postgrest (used as reversed proxy)
upstream postgrest {
server localhost:3000;
}
# https
server {
listen 443 ssl;
listen [::]:443 ssl;
http2 on;
ssl_certificate /etc/nginx/acme.sh/op.fo/fullchain.pem;
ssl_certificate_key /etc/nginx/acme.sh/op.fo/key.pem;
ssl_trusted_certificate /etc/nginx/acme.sh/op.fo/cert.pem;
add_header Strict-Transport-Security "max-age=63072000" always;
root /var/www/fw.op.fo;
index index.html;
server_name fw.op.fo;
location @myownredirect {
return 302 /;
}
# postgrest reverse proxy
location / {
error_page 404 = @myownredirect;
}
# debug url: /dbg/string
location ~ ^/dbg/(\w+) {
default_type application/json;
proxy_hide_header Content-Location;
add_header Content-Location /rpc/$upstream_http_content_location;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_http_version 1.1;
proxy_pass http://postgrest/rpc/fwd?p_shortcode=$1&p_dbg=true;
}
# normal mode: /shortcode
location ~ ^/(\w+) {
default_type application/json;
proxy_hide_header Content-Location;
add_header Content-Location /rpc/$upstream_http_content_location;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_http_version 1.1;
proxy_method post;
proxy_pass http://postgrest/rpc/fwd/$1;
}
}
Reference in New Issue View Git Blame Copy Permalink