Acasă Explorează Ajutor
Înregistrare Autentificare
oleg
/
pixelfed
oglindă de https://github.com/pixelfed/pixelfed.git
1
0
Bifurcare 0
Fisiere Probleme 0 Wiki
Ramură: vue3
Ramuri Etichete
pixelfed
/
contrib
/
nginx.conf

nginx.conf 2.5 KB
Permalink Istoric Crud

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. server {
    2. 

  2.     listen 443 ssl http2;
    3. 

  3.     listen [::]:443 ssl http2;
    4. 

  4.     server_name pixelfed.example;                    # change this to your fqdn
    5. 

  5.     root /home/pixelfed/public;                      # path to repo/public
    6. 

  6. 

  7.     ssl_certificate /etc/nginx/ssl/server.crt;       # generate your own
    8. 

  8.     ssl_certificate_key /etc/nginx/ssl/server.key;   # or use letsencrypt
    9. 

  9. 

  10.     ssl_protocols TLSv1.2;
    11. 

  11.     ssl_ciphers EECDH+AESGCM:EECDH+CHACHA20:EECDH+AES;
    12. 

  12.     ssl_prefer_server_ciphers on;
    13. 

  13. 

  14.     #add_header X-Frame-Options "SAMEORIGIN";
    15. 

  15.     add_header X-XSS-Protection "1; mode=block";
    16. 

  16.     add_header X-Content-Type-Options "nosniff";
    17. 

  17. 

  18.     index index.php;
    19. 

  19. 

  20.     charset utf-8;
    21. 

  21.     client_max_body_size 15M;
    22. 

  22. 

  23.     location / {
    24. 

  24.         try_files $uri $uri/ /index.php?$query_string;
    25. 

  25.     }
    26. 

  26. 

  27.     location = /favicon.ico { access_log off; log_not_found off; }
    28. 

  28.     location = /robots.txt  { access_log off; log_not_found off; }
    29. 

  29. 

  30.     error_page 404 /index.php;
    31. 

  31. 

  32.     location ~ \.php$ {
    33. 

  33.         fastcgi_split_path_info ^(.+\.php)(/.+)$;
    34. 

  34.         fastcgi_pass unix:/var/run/php/php8.1-fpm.sock;
    35. 

  35.         fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
    36. 

  36.         fastcgi_param   QUERY_STRING        $query_string;
    37. 

  37.         fastcgi_param   REQUEST_METHOD      $request_method;
    38. 

  38.         fastcgi_param   CONTENT_TYPE        $content_type;
    39. 

  39.         fastcgi_param   CONTENT_LENGTH      $content_length;
    40. 

  40.         fastcgi_param   SCRIPT_NAME     $fastcgi_script_name;
    41. 

  41.         fastcgi_param   REQUEST_URI     $request_uri;
    42. 

  42.         fastcgi_param   DOCUMENT_URI        $document_uri;
    43. 

  43.         fastcgi_param   DOCUMENT_ROOT       $document_root;
    44. 

  44.         fastcgi_param   SERVER_PROTOCOL     $server_protocol;
    45. 

  45.         fastcgi_param   GATEWAY_INTERFACE   CGI/1.1;
    46. 

  46.         fastcgi_param   SERVER_SOFTWARE     nginx/$nginx_version;
    47. 

  47.         fastcgi_param   REMOTE_ADDR     $remote_addr;
    48. 

  48.         fastcgi_param   REMOTE_PORT     $remote_port;
    49. 

  49.         fastcgi_param   SERVER_ADDR     $server_addr;
    50. 

  50.         fastcgi_param   SERVER_PORT     $server_port;
    51. 

  51.         fastcgi_param   SERVER_NAME     $server_name;
    52. 

  52.         fastcgi_param   HTTPS           $https if_not_empty;
    53. 

  53.         fastcgi_param   REDIRECT_STATUS     200;
    54. 

  54.         fastcgi_param   HTTP_PROXY  "";
    55. 

  55.     }
    56. 

  56. 

  57.     location ~ /\.(?!well-known).* {
    58. 

  58.         deny all;
    59. 

  59.     }
    60. 

  60. }
    61. 

  61. 

  62. server {                                             # Redirect http to https
    63. 

  63.     server_name pixelfed.example;                    # change this to your fqdn
    64. 

  64.     listen 80;
    65. 

  65.     listen [::]:80;
    66. 

  66.     return 301 https://$host$request_uri;
    67. 

  67. }
    68.