101 lines
2 KiB
Plaintext
101 lines
2 KiB
Plaintext
## Version 2020/03/05 - Changelog: https://github.com/linuxserver/docker-letsencrypt/commits/master/root/defaults/default
|
|
|
|
# redirect all traffic to https
|
|
server {
|
|
listen 80 default_server;
|
|
listen [::]:80 default_server;
|
|
server_name _;
|
|
return 301 https://$host$request_uri;
|
|
}
|
|
|
|
# Default to showing 404 on unknown subdomain or missing host header
|
|
server {
|
|
listen 443 ssl http2 default_server;
|
|
listen [::]:443 ssl http2 default_server;
|
|
|
|
server_name _;
|
|
|
|
# all ssl related config moved to ssl.conf
|
|
include /config/nginx/ssl.conf;
|
|
|
|
return 404;
|
|
}
|
|
|
|
# main server block
|
|
server {
|
|
listen 443 ssl http2;
|
|
listen [::]:443 ssl http2;
|
|
|
|
root /config/www/hugo;
|
|
index index.html;
|
|
|
|
server_name belanyi.fr;
|
|
|
|
# all ssl related config moved to ssl.conf
|
|
include /config/nginx/ssl.conf;
|
|
|
|
client_max_body_size 0;
|
|
|
|
# Matrix configuration
|
|
location /.well-known/matrix/server {
|
|
default_type application/json;
|
|
return 200 '{"m.server": "matrix.belanyi.fr:443"}';
|
|
}
|
|
|
|
}
|
|
|
|
# Debug version
|
|
server {
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
|
|
root /config/www/hugo-dev;
|
|
index index.html;
|
|
|
|
server_name dev.belanyi.fr;
|
|
|
|
# all ssl related config moved to ssl.conf
|
|
include /config/nginx/ssl.conf;
|
|
|
|
client_max_body_size 0;
|
|
|
|
location / {
|
|
try_files $uri $uri/ =404;
|
|
}
|
|
}
|
|
|
|
# CV block
|
|
server {
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
|
|
root /config/www/cv;
|
|
|
|
server_name cv.*;
|
|
|
|
# all ssl related config moved to ssl.conf
|
|
include /config/nginx/ssl.conf;
|
|
|
|
client_max_body_size 0;
|
|
}
|
|
|
|
# Keys
|
|
server {
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
|
|
root /config/www/key;
|
|
|
|
server_name key.*;
|
|
|
|
# all ssl related config moved to ssl.conf
|
|
include /config/nginx/ssl.conf;
|
|
|
|
client_max_body_size 0;
|
|
}
|
|
|
|
# enable subdomain method reverse proxy confs
|
|
include /config/nginx/proxy-confs/*.subdomain.conf;
|
|
# enable proxy cache for auth
|
|
proxy_cache_path cache/ keys_zone=auth_cache:10m;
|