server {
server_name dev.nutra.tk;
- # listen 80 default_server;
- # listen [::]:80 ipv6only=on;
+ #listen 80 default_server;
+ #listen [::]:80 ipv6only=on;
listen 443 ssl http2 default_server;
listen [::]:443 ssl ipv6only=on; # managed by Certbot
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
ssl_stapling on;
ssl_stapling_verify on;
ssl_trusted_certificate /etc/ssl/private/ca-certs.pem;
- # ssl_protocols TLSv1 TLSv1.1; # support legacy browsers
- # ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
client_max_body_size 50m;
}
-# # New chat (matrix / element)
-# location ~ /v2/chat/ {
-# proxy_pass http://127.0.0.1:8008;
-# proxy_set_header X-Forwarded-For $remote_addr;
-# }
-
# default favicon
location = /favicon.ico {
alias /var/www/favicon.gif;
}
-
# Other
location ~ /.well-known {
allow all;
return 301 https://dev.nutra.tk$request_uri;
}
}
-
-
-# Open matrix chat on 8448
-#server {
-# listen 8448 ssl default_server;
-# listen [::]:8448 ssl default_server;
-# server_name dev.nutra.tk;
-#
-# location / {
-# proxy_pass http://127.0.0.1:8008;
-# proxy_set_header X-Forwarded-For $remote_addr;
-# }
-#
-# # HTTPS / SSL
-# ssl_certificate /etc/letsencrypt/live/dev.nutra.tk/fullchain.pem; # managed by Certbot
-# ssl_certificate_key /etc/letsencrypt/live/dev.nutra.tk/privkey.pem; # managed by Certbot
-# include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
-# ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
-#}
-
-
-# Redirect WWW to no-WWW
-#server {
-# listen 443 ssl http2;
-# listen [::]:443 ssl http2;
-# server_name ~^www\.(.*)$;
-# return 301 $scheme://$1$request_uri;
-#}
-
-
-# TODO: if is evil
-# https://wordpress.org/support/article/nginx/
-# http://wiki.nginx.org/IfIsEvil
-#server {
-# if ($host = dev.nutra.tk) {
-# return 301 $scheme://$host$request_uri;
-# } # managed by Certbot
-#}
-
projects / nutratech / vps-root.git / commitdiff