Chewing_Bever/self-hosting
Archived
1
0
Fork 0
Code Issues 10 Pull requests 13 Projects Releases Wiki Activity

Completely revamped nginx config

Browse source
This commit is contained in:
Jef Roosens 2021-04-23 16:26:32 +02:00
parent 3411f3d0a9
commit d13573f87d
Signed by: Jef Roosens
GPG key ID: B580B976584B5F30
19 changed files with 152 additions and 83 deletions
Download patch file Download diff file Expand all files Collapse all files

11
nginx/sites-available/firefly-iii.conf → nginx/sites-available/firefly-iii.conf.template
View file

@ -1,6 +1,11 @@
server {
listen 443 ssl;
server_name DOMAIN;
# SSL Key locations
ssl_certificate /etc/letsencrypt/live/${FIREFLY_DOMAIN}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${FIREFLY_DOMAIN}/privkey.pem;
listen ${HTTPS_PORT} ssl;
listen [::]:${HTTPS_PORT} ssl;
server_name ${FIREFLY_DOMAIN};
location / {
proxy_set_header Host $host;
@ -13,7 +18,7 @@ server {
proxy_set_header Connection "upgrade";
resolver 127.0.0.11;
proxy_pass http://firefly_app_1:8080;
proxy_pass http://${FIREFLY_HOST}:8080;
}
}

9
nginx/sites-available/koel.conf
View file

@ -1,9 +0,0 @@
server {
listen 443 ssl;
server_name DOMAIN;
location / {
resolver 127.0.0.11;
proxy_pass http://koel_app_1:80;
}
}

14
nginx/sites-available/koel.conf.template Normal file
View file

@ -0,0 +1,14 @@
server {
# SSL Key locations
ssl_certificate /etc/letsencrypt/live/${KOEL_DOMAIN}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${KOEL_DOMAIN}/privkey.pem;
listen ${HTTPS_PORT} ssl;
listen [::]:${HTTPS_PORT} ssl;
server_name ${KOEL_DOMAIN};
location / {
resolver 127.0.0.11;
proxy_pass http://${KOEL_HOST}:80;
}
}

10
nginx/sites-available/miniflux.conf
View file

@ -1,10 +0,0 @@
server {
listen 443 ssl;
server_name DOMAIN;
location / {
resolver 127.0.0.11;
proxy_pass http://miniflux_app_1:8080;
}
}

15
nginx/sites-available/miniflux.conf.template Normal file
View file

@ -0,0 +1,15 @@
server {
# SSL Key locations
ssl_certificate /etc/letsencrypt/live/${MINIFLUX_DOMAIN}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${MINIFLUX_DOMAIN}/privkey.pem;
listen ${HTTPS_PORT} ssl;
listen [::]:${HTTPS_PORT} ssl;
server_name ${MINIFLUX_DOMAIN};
location / {
resolver 127.0.0.11;
proxy_pass http://${MINIFLUX_HOST}:8080;
}
}

0
nginx/sites-available/nefarious.conf → nginx/sites-available/nefarious.conf.template
View file

13
nginx/sites-available/nextcloud.conf → nginx/sites-available/nextcloud.conf.template
View file

@ -1,7 +1,12 @@
server {
listen 443 ssl;
listen [::]:443 ssl http2;
server_name DOMAIN;
# SSL Key locations
ssl_certificate /etc/letsencrypt/live/${NEXTCLOUD_DOMAIN}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${NEXTCLOUD_DOMAIN}/privkey.pem;
listen ${HTTPS_PORT} ssl;
# Not sure why http2 is here, but let's keep it just in case
listen [::]:${HTTPS_PORT} ssl http2;
server_name ${NEXTCLOUD_DOMAIN};
# Enable gzip but do not remove ETag headers
gzip on;
@ -23,7 +28,7 @@ server {
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
location / {
proxy_pass http://nextcloud_app_1:80/;
proxy_pass http://${NEXTCLOUD_HOST}:80/;
proxy_pass_request_headers on;

11
nginx/sites-available/portainer.conf
View file

@ -1,11 +0,0 @@
server {
listen 443 ssl;
server_name DOMAIN;
location / {
proxy_set_header Connection "upgrade";
resolver 127.0.0.11;
proxy_pass http://portainer_app_1:9000;
}
}

16
nginx/sites-available/portainer.conf.template Normal file
View file

@ -0,0 +1,16 @@
server {
# SSL Key locations
ssl_certificate /etc/letsencrypt/live/${PORTAINER_DOMAIN}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${PORTAINER_DOMAIN}/privkey.pem;
listen ${HTTPS_PORT} ssl;
listen [::]:${HTTPS_PORT} ssl;
server_name ${PORTAINER_DOMAIN};
location / {
proxy_set_header Connection "upgrade";
resolver 127.0.0.11;
proxy_pass http://${PORTAINER_HOST}:9000;
}
}