ci: docker_tag=dev-test
All checks were successful
Build and Push to Registry / build-and-push (push) Successful in 49s
All checks were successful
Build and Push to Registry / build-and-push (push) Successful in 49s
chore(nginx): logs vhost + X-Request-Id; docs: logs & ops; idnot: headers Accept+Contexte; backups: snapshot, ports & http flows
This commit is contained in:
parent
dd45e99a80
commit
7c5c4ab334
Binary file not shown.
@ -1,44 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name localhost;
|
|
||||||
|
|
||||||
#access_log /var/log/nginx/host.access.log main;
|
|
||||||
|
|
||||||
location / {
|
|
||||||
root /usr/share/nginx/html;
|
|
||||||
index index.html index.htm;
|
|
||||||
}
|
|
||||||
|
|
||||||
#error_page 404 /404.html;
|
|
||||||
|
|
||||||
# redirect server error pages to the static page /50x.html
|
|
||||||
#
|
|
||||||
error_page 500 502 503 504 /50x.html;
|
|
||||||
location = /50x.html {
|
|
||||||
root /usr/share/nginx/html;
|
|
||||||
}
|
|
||||||
|
|
||||||
# proxy the PHP scripts to Apache listening on 127.0.0.1:80
|
|
||||||
#
|
|
||||||
#location ~ \.php$ {
|
|
||||||
# proxy_pass http://127.0.0.1;
|
|
||||||
#}
|
|
||||||
|
|
||||||
# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
|
|
||||||
#
|
|
||||||
#location ~ \.php$ {
|
|
||||||
# root html;
|
|
||||||
# fastcgi_pass 127.0.0.1:9000;
|
|
||||||
# fastcgi_index index.php;
|
|
||||||
# fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
|
|
||||||
# include fastcgi_params;
|
|
||||||
#}
|
|
||||||
|
|
||||||
# deny access to .htaccess files, if Apache's document root
|
|
||||||
# concurs with nginx's one
|
|
||||||
#
|
|
||||||
#location ~ /\.ht {
|
|
||||||
# deny all;
|
|
||||||
#}
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,27 +0,0 @@
|
|||||||
|
|
||||||
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
|
|
||||||
fastcgi_param QUERY_STRING $query_string;
|
|
||||||
fastcgi_param REQUEST_METHOD $request_method;
|
|
||||||
fastcgi_param CONTENT_TYPE $content_type;
|
|
||||||
fastcgi_param CONTENT_LENGTH $content_length;
|
|
||||||
|
|
||||||
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
|
|
||||||
fastcgi_param REQUEST_URI $request_uri;
|
|
||||||
fastcgi_param DOCUMENT_URI $document_uri;
|
|
||||||
fastcgi_param DOCUMENT_ROOT $document_root;
|
|
||||||
fastcgi_param SERVER_PROTOCOL $server_protocol;
|
|
||||||
fastcgi_param REQUEST_SCHEME $scheme;
|
|
||||||
fastcgi_param HTTPS $https if_not_empty;
|
|
||||||
|
|
||||||
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
|
|
||||||
fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;
|
|
||||||
|
|
||||||
fastcgi_param REMOTE_ADDR $remote_addr;
|
|
||||||
fastcgi_param REMOTE_PORT $remote_port;
|
|
||||||
fastcgi_param REMOTE_USER $remote_user;
|
|
||||||
fastcgi_param SERVER_ADDR $server_addr;
|
|
||||||
fastcgi_param SERVER_PORT $server_port;
|
|
||||||
fastcgi_param SERVER_NAME $server_name;
|
|
||||||
|
|
||||||
# PHP only, required if PHP was built with --enable-force-cgi-redirect
|
|
||||||
fastcgi_param REDIRECT_STATUS 200;
|
|
||||||
@ -1,25 +0,0 @@
|
|||||||
|
|
||||||
fastcgi_param QUERY_STRING $query_string;
|
|
||||||
fastcgi_param REQUEST_METHOD $request_method;
|
|
||||||
fastcgi_param CONTENT_TYPE $content_type;
|
|
||||||
fastcgi_param CONTENT_LENGTH $content_length;
|
|
||||||
|
|
||||||
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
|
|
||||||
fastcgi_param REQUEST_URI $request_uri;
|
|
||||||
fastcgi_param DOCUMENT_URI $document_uri;
|
|
||||||
fastcgi_param DOCUMENT_ROOT $document_root;
|
|
||||||
fastcgi_param SERVER_PROTOCOL $server_protocol;
|
|
||||||
fastcgi_param REQUEST_SCHEME $scheme;
|
|
||||||
fastcgi_param HTTPS $https if_not_empty;
|
|
||||||
|
|
||||||
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
|
|
||||||
fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;
|
|
||||||
|
|
||||||
fastcgi_param REMOTE_ADDR $remote_addr;
|
|
||||||
fastcgi_param REMOTE_PORT $remote_port;
|
|
||||||
fastcgi_param SERVER_ADDR $server_addr;
|
|
||||||
fastcgi_param SERVER_PORT $server_port;
|
|
||||||
fastcgi_param SERVER_NAME $server_name;
|
|
||||||
|
|
||||||
# PHP only, required if PHP was built with --enable-force-cgi-redirect
|
|
||||||
fastcgi_param REDIRECT_STATUS 200;
|
|
||||||
@ -1,109 +0,0 @@
|
|||||||
|
|
||||||
# This map is not a full koi8-r <> utf8 map: it does not contain
|
|
||||||
# box-drawing and some other characters. Besides this map contains
|
|
||||||
# several koi8-u and Byelorussian letters which are not in koi8-r.
|
|
||||||
# If you need a full and standard map, use contrib/unicode2nginx/koi-utf
|
|
||||||
# map instead.
|
|
||||||
|
|
||||||
charset_map koi8-r utf-8 {
|
|
||||||
|
|
||||||
80 E282AC ; # euro
|
|
||||||
|
|
||||||
95 E280A2 ; # bullet
|
|
||||||
|
|
||||||
9A C2A0 ; #
|
|
||||||
|
|
||||||
9E C2B7 ; # ·
|
|
||||||
|
|
||||||
A3 D191 ; # small yo
|
|
||||||
A4 D194 ; # small Ukrainian ye
|
|
||||||
|
|
||||||
A6 D196 ; # small Ukrainian i
|
|
||||||
A7 D197 ; # small Ukrainian yi
|
|
||||||
|
|
||||||
AD D291 ; # small Ukrainian soft g
|
|
||||||
AE D19E ; # small Byelorussian short u
|
|
||||||
|
|
||||||
B0 C2B0 ; # °
|
|
||||||
|
|
||||||
B3 D081 ; # capital YO
|
|
||||||
B4 D084 ; # capital Ukrainian YE
|
|
||||||
|
|
||||||
B6 D086 ; # capital Ukrainian I
|
|
||||||
B7 D087 ; # capital Ukrainian YI
|
|
||||||
|
|
||||||
B9 E28496 ; # numero sign
|
|
||||||
|
|
||||||
BD D290 ; # capital Ukrainian soft G
|
|
||||||
BE D18E ; # capital Byelorussian short U
|
|
||||||
|
|
||||||
BF C2A9 ; # (C)
|
|
||||||
|
|
||||||
C0 D18E ; # small yu
|
|
||||||
C1 D0B0 ; # small a
|
|
||||||
C2 D0B1 ; # small b
|
|
||||||
C3 D186 ; # small ts
|
|
||||||
C4 D0B4 ; # small d
|
|
||||||
C5 D0B5 ; # small ye
|
|
||||||
C6 D184 ; # small f
|
|
||||||
C7 D0B3 ; # small g
|
|
||||||
C8 D185 ; # small kh
|
|
||||||
C9 D0B8 ; # small i
|
|
||||||
CA D0B9 ; # small j
|
|
||||||
CB D0BA ; # small k
|
|
||||||
CC D0BB ; # small l
|
|
||||||
CD D0BC ; # small m
|
|
||||||
CE D0BD ; # small n
|
|
||||||
CF D0BE ; # small o
|
|
||||||
|
|
||||||
D0 D0BF ; # small p
|
|
||||||
D1 D18F ; # small ya
|
|
||||||
D2 D180 ; # small r
|
|
||||||
D3 D181 ; # small s
|
|
||||||
D4 D182 ; # small t
|
|
||||||
D5 D183 ; # small u
|
|
||||||
D6 D0B6 ; # small zh
|
|
||||||
D7 D0B2 ; # small v
|
|
||||||
D8 D18C ; # small soft sign
|
|
||||||
D9 D18B ; # small y
|
|
||||||
DA D0B7 ; # small z
|
|
||||||
DB D188 ; # small sh
|
|
||||||
DC D18D ; # small e
|
|
||||||
DD D189 ; # small shch
|
|
||||||
DE D187 ; # small ch
|
|
||||||
DF D18A ; # small hard sign
|
|
||||||
|
|
||||||
E0 D0AE ; # capital YU
|
|
||||||
E1 D090 ; # capital A
|
|
||||||
E2 D091 ; # capital B
|
|
||||||
E3 D0A6 ; # capital TS
|
|
||||||
E4 D094 ; # capital D
|
|
||||||
E5 D095 ; # capital YE
|
|
||||||
E6 D0A4 ; # capital F
|
|
||||||
E7 D093 ; # capital G
|
|
||||||
E8 D0A5 ; # capital KH
|
|
||||||
E9 D098 ; # capital I
|
|
||||||
EA D099 ; # capital J
|
|
||||||
EB D09A ; # capital K
|
|
||||||
EC D09B ; # capital L
|
|
||||||
ED D09C ; # capital M
|
|
||||||
EE D09D ; # capital N
|
|
||||||
EF D09E ; # capital O
|
|
||||||
|
|
||||||
F0 D09F ; # capital P
|
|
||||||
F1 D0AF ; # capital YA
|
|
||||||
F2 D0A0 ; # capital R
|
|
||||||
F3 D0A1 ; # capital S
|
|
||||||
F4 D0A2 ; # capital T
|
|
||||||
F5 D0A3 ; # capital U
|
|
||||||
F6 D096 ; # capital ZH
|
|
||||||
F7 D092 ; # capital V
|
|
||||||
F8 D0AC ; # capital soft sign
|
|
||||||
F9 D0AB ; # capital Y
|
|
||||||
FA D097 ; # capital Z
|
|
||||||
FB D0A8 ; # capital SH
|
|
||||||
FC D0AD ; # capital E
|
|
||||||
FD D0A9 ; # capital SHCH
|
|
||||||
FE D0A7 ; # capital CH
|
|
||||||
FF D0AA ; # capital hard sign
|
|
||||||
}
|
|
||||||
@ -1,103 +0,0 @@
|
|||||||
|
|
||||||
charset_map koi8-r windows-1251 {
|
|
||||||
|
|
||||||
80 88 ; # euro
|
|
||||||
|
|
||||||
95 95 ; # bullet
|
|
||||||
|
|
||||||
9A A0 ; #
|
|
||||||
|
|
||||||
9E B7 ; # ·
|
|
||||||
|
|
||||||
A3 B8 ; # small yo
|
|
||||||
A4 BA ; # small Ukrainian ye
|
|
||||||
|
|
||||||
A6 B3 ; # small Ukrainian i
|
|
||||||
A7 BF ; # small Ukrainian yi
|
|
||||||
|
|
||||||
AD B4 ; # small Ukrainian soft g
|
|
||||||
AE A2 ; # small Byelorussian short u
|
|
||||||
|
|
||||||
B0 B0 ; # °
|
|
||||||
|
|
||||||
B3 A8 ; # capital YO
|
|
||||||
B4 AA ; # capital Ukrainian YE
|
|
||||||
|
|
||||||
B6 B2 ; # capital Ukrainian I
|
|
||||||
B7 AF ; # capital Ukrainian YI
|
|
||||||
|
|
||||||
B9 B9 ; # numero sign
|
|
||||||
|
|
||||||
BD A5 ; # capital Ukrainian soft G
|
|
||||||
BE A1 ; # capital Byelorussian short U
|
|
||||||
|
|
||||||
BF A9 ; # (C)
|
|
||||||
|
|
||||||
C0 FE ; # small yu
|
|
||||||
C1 E0 ; # small a
|
|
||||||
C2 E1 ; # small b
|
|
||||||
C3 F6 ; # small ts
|
|
||||||
C4 E4 ; # small d
|
|
||||||
C5 E5 ; # small ye
|
|
||||||
C6 F4 ; # small f
|
|
||||||
C7 E3 ; # small g
|
|
||||||
C8 F5 ; # small kh
|
|
||||||
C9 E8 ; # small i
|
|
||||||
CA E9 ; # small j
|
|
||||||
CB EA ; # small k
|
|
||||||
CC EB ; # small l
|
|
||||||
CD EC ; # small m
|
|
||||||
CE ED ; # small n
|
|
||||||
CF EE ; # small o
|
|
||||||
|
|
||||||
D0 EF ; # small p
|
|
||||||
D1 FF ; # small ya
|
|
||||||
D2 F0 ; # small r
|
|
||||||
D3 F1 ; # small s
|
|
||||||
D4 F2 ; # small t
|
|
||||||
D5 F3 ; # small u
|
|
||||||
D6 E6 ; # small zh
|
|
||||||
D7 E2 ; # small v
|
|
||||||
D8 FC ; # small soft sign
|
|
||||||
D9 FB ; # small y
|
|
||||||
DA E7 ; # small z
|
|
||||||
DB F8 ; # small sh
|
|
||||||
DC FD ; # small e
|
|
||||||
DD F9 ; # small shch
|
|
||||||
DE F7 ; # small ch
|
|
||||||
DF FA ; # small hard sign
|
|
||||||
|
|
||||||
E0 DE ; # capital YU
|
|
||||||
E1 C0 ; # capital A
|
|
||||||
E2 C1 ; # capital B
|
|
||||||
E3 D6 ; # capital TS
|
|
||||||
E4 C4 ; # capital D
|
|
||||||
E5 C5 ; # capital YE
|
|
||||||
E6 D4 ; # capital F
|
|
||||||
E7 C3 ; # capital G
|
|
||||||
E8 D5 ; # capital KH
|
|
||||||
E9 C8 ; # capital I
|
|
||||||
EA C9 ; # capital J
|
|
||||||
EB CA ; # capital K
|
|
||||||
EC CB ; # capital L
|
|
||||||
ED CC ; # capital M
|
|
||||||
EE CD ; # capital N
|
|
||||||
EF CE ; # capital O
|
|
||||||
|
|
||||||
F0 CF ; # capital P
|
|
||||||
F1 DF ; # capital YA
|
|
||||||
F2 D0 ; # capital R
|
|
||||||
F3 D1 ; # capital S
|
|
||||||
F4 D2 ; # capital T
|
|
||||||
F5 D3 ; # capital U
|
|
||||||
F6 C6 ; # capital ZH
|
|
||||||
F7 C2 ; # capital V
|
|
||||||
F8 DC ; # capital soft sign
|
|
||||||
F9 DB ; # capital Y
|
|
||||||
FA C7 ; # capital Z
|
|
||||||
FB D8 ; # capital SH
|
|
||||||
FC DD ; # capital E
|
|
||||||
FD D9 ; # capital SHCH
|
|
||||||
FE D7 ; # capital CH
|
|
||||||
FF DA ; # capital hard sign
|
|
||||||
}
|
|
||||||
@ -1,99 +0,0 @@
|
|||||||
|
|
||||||
types {
|
|
||||||
text/html html htm shtml;
|
|
||||||
text/css css;
|
|
||||||
text/xml xml;
|
|
||||||
image/gif gif;
|
|
||||||
image/jpeg jpeg jpg;
|
|
||||||
application/javascript js;
|
|
||||||
application/atom+xml atom;
|
|
||||||
application/rss+xml rss;
|
|
||||||
|
|
||||||
text/mathml mml;
|
|
||||||
text/plain txt;
|
|
||||||
text/vnd.sun.j2me.app-descriptor jad;
|
|
||||||
text/vnd.wap.wml wml;
|
|
||||||
text/x-component htc;
|
|
||||||
|
|
||||||
image/avif avif;
|
|
||||||
image/png png;
|
|
||||||
image/svg+xml svg svgz;
|
|
||||||
image/tiff tif tiff;
|
|
||||||
image/vnd.wap.wbmp wbmp;
|
|
||||||
image/webp webp;
|
|
||||||
image/x-icon ico;
|
|
||||||
image/x-jng jng;
|
|
||||||
image/x-ms-bmp bmp;
|
|
||||||
|
|
||||||
font/woff woff;
|
|
||||||
font/woff2 woff2;
|
|
||||||
|
|
||||||
application/java-archive jar war ear;
|
|
||||||
application/json json;
|
|
||||||
application/mac-binhex40 hqx;
|
|
||||||
application/msword doc;
|
|
||||||
application/pdf pdf;
|
|
||||||
application/postscript ps eps ai;
|
|
||||||
application/rtf rtf;
|
|
||||||
application/vnd.apple.mpegurl m3u8;
|
|
||||||
application/vnd.google-earth.kml+xml kml;
|
|
||||||
application/vnd.google-earth.kmz kmz;
|
|
||||||
application/vnd.ms-excel xls;
|
|
||||||
application/vnd.ms-fontobject eot;
|
|
||||||
application/vnd.ms-powerpoint ppt;
|
|
||||||
application/vnd.oasis.opendocument.graphics odg;
|
|
||||||
application/vnd.oasis.opendocument.presentation odp;
|
|
||||||
application/vnd.oasis.opendocument.spreadsheet ods;
|
|
||||||
application/vnd.oasis.opendocument.text odt;
|
|
||||||
application/vnd.openxmlformats-officedocument.presentationml.presentation
|
|
||||||
pptx;
|
|
||||||
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
|
|
||||||
xlsx;
|
|
||||||
application/vnd.openxmlformats-officedocument.wordprocessingml.document
|
|
||||||
docx;
|
|
||||||
application/vnd.wap.wmlc wmlc;
|
|
||||||
application/wasm wasm;
|
|
||||||
application/x-7z-compressed 7z;
|
|
||||||
application/x-cocoa cco;
|
|
||||||
application/x-java-archive-diff jardiff;
|
|
||||||
application/x-java-jnlp-file jnlp;
|
|
||||||
application/x-makeself run;
|
|
||||||
application/x-perl pl pm;
|
|
||||||
application/x-pilot prc pdb;
|
|
||||||
application/x-rar-compressed rar;
|
|
||||||
application/x-redhat-package-manager rpm;
|
|
||||||
application/x-sea sea;
|
|
||||||
application/x-shockwave-flash swf;
|
|
||||||
application/x-stuffit sit;
|
|
||||||
application/x-tcl tcl tk;
|
|
||||||
application/x-x509-ca-cert der pem crt;
|
|
||||||
application/x-xpinstall xpi;
|
|
||||||
application/xhtml+xml xhtml;
|
|
||||||
application/xspf+xml xspf;
|
|
||||||
application/zip zip;
|
|
||||||
|
|
||||||
application/octet-stream bin exe dll;
|
|
||||||
application/octet-stream deb;
|
|
||||||
application/octet-stream dmg;
|
|
||||||
application/octet-stream iso img;
|
|
||||||
application/octet-stream msi msp msm;
|
|
||||||
|
|
||||||
audio/midi mid midi kar;
|
|
||||||
audio/mpeg mp3;
|
|
||||||
audio/ogg ogg;
|
|
||||||
audio/x-m4a m4a;
|
|
||||||
audio/x-realaudio ra;
|
|
||||||
|
|
||||||
video/3gpp 3gpp 3gp;
|
|
||||||
video/mp2t ts;
|
|
||||||
video/mp4 mp4;
|
|
||||||
video/mpeg mpeg mpg;
|
|
||||||
video/quicktime mov;
|
|
||||||
video/webm webm;
|
|
||||||
video/x-flv flv;
|
|
||||||
video/x-m4v m4v;
|
|
||||||
video/x-mng mng;
|
|
||||||
video/x-ms-asf asx asf;
|
|
||||||
video/x-ms-wmv wmv;
|
|
||||||
video/x-msvideo avi;
|
|
||||||
}
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/lib/nginx/modules
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-http-geoip.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-http-image-filter.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-http-xslt-filter.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-mail.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-stream.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-stream-geoip.conf
|
|
||||||
@ -1,34 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,33 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,34 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,35 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,4 +0,0 @@
|
|||||||
proxy_set_header Host $http_host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
@ -1,17 +0,0 @@
|
|||||||
|
|
||||||
scgi_param REQUEST_METHOD $request_method;
|
|
||||||
scgi_param REQUEST_URI $request_uri;
|
|
||||||
scgi_param QUERY_STRING $query_string;
|
|
||||||
scgi_param CONTENT_TYPE $content_type;
|
|
||||||
|
|
||||||
scgi_param DOCUMENT_URI $document_uri;
|
|
||||||
scgi_param DOCUMENT_ROOT $document_root;
|
|
||||||
scgi_param SCGI 1;
|
|
||||||
scgi_param SERVER_PROTOCOL $server_protocol;
|
|
||||||
scgi_param REQUEST_SCHEME $scheme;
|
|
||||||
scgi_param HTTPS $https if_not_empty;
|
|
||||||
|
|
||||||
scgi_param REMOTE_ADDR $remote_addr;
|
|
||||||
scgi_param REMOTE_PORT $remote_port;
|
|
||||||
scgi_param SERVER_PORT $server_port;
|
|
||||||
scgi_param SERVER_NAME $server_name;
|
|
||||||
@ -1,100 +0,0 @@
|
|||||||
|
|
||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name demo.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/demo.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/demo.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3003;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws {
|
|
||||||
proxy_pass http://127.0.0.1:8090/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
# proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_redirect off;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://127.0.0.1:8090/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
# proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_redirect off;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /signer/ {
|
|
||||||
proxy_pass http://localhost:9090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
|
|
||||||
proxy_pass http://localhost:8081/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /blindbit/ {
|
|
||||||
proxy_pass http://localhost:8000/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /back/ {
|
|
||||||
proxy_pass http://localhost:8081/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name demo.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,60 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev1.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev1.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev1.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3002;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev1.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev1.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev1.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev1.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,60 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev2.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/demo.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/demo.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3003;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev2.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev2.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev2.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev2.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,162 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
|
|
||||||
# Callback IdNot -> backend, avec CORS dynamique et masquage des en-têtes upstream
|
|
||||||
location = /idnot/callback {
|
|
||||||
# Masquer les en-têtes CORS envoyés par l'upstream (Express)
|
|
||||||
proxy_hide_header Access-Control-Allow-Origin;
|
|
||||||
proxy_hide_header Access-Control-Allow-Credentials;
|
|
||||||
proxy_hide_header Access-Control-Allow-Headers;
|
|
||||||
proxy_hide_header Access-Control-Allow-Methods;
|
|
||||||
|
|
||||||
# CORS dynamique: autorise dev4, local.4nkweb.com:3000, localhost:3000 et sous-domaines *.4nkweb.com
|
|
||||||
set $cors_origin "";
|
|
||||||
if ($http_origin ~* ^(https://dev4\.4nkweb\.com|http://local\.4nkweb\.com:3000|http://localhost:3000|https://.*\.4nkweb\.com)$) {
|
|
||||||
set $cors_origin $http_origin;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Préflight OPTIONS
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
# En-têtes CORS pour les autres méthodes
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
# Masquer les en-têtes CORS de l'upstream (Express)
|
|
||||||
proxy_hide_header Access-Control-Allow-Origin;
|
|
||||||
proxy_hide_header Access-Control-Allow-Credentials;
|
|
||||||
proxy_hide_header Access-Control-Allow-Headers;
|
|
||||||
proxy_hide_header Access-Control-Allow-Methods;
|
|
||||||
|
|
||||||
# CORS dynamique: autorise dev4, local.4nkweb.com:3000, localhost:3000 et sous-domaines *.4nkweb.com
|
|
||||||
set $cors_origin "";
|
|
||||||
if ($http_origin ~* ^(https://dev4\.4nkweb\.com|http://local\.4nkweb\.com:3000|http://localhost:3000|https://.*\.4nkweb\.com)$) {
|
|
||||||
set $cors_origin $http_origin;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Préflight OPTIONS
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
# En-têtes CORS pour les autres méthodes
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,105 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
location = /idnot/callback {\n proxy_pass http://127.0.0.1:8080;\n proxy_set_header Host $host;\n proxy_set_header X-Real-IP $remote_addr;\n proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n proxy_set_header X-Forwarded-Proto $scheme;\n }
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
@ -1,105 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
location = /idnot/callback {\n proxy_pass http://127.0.0.1:8080;\n proxy_set_header Host $host;\n proxy_set_header X-Real-IP $remote_addr;\n proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n proxy_set_header X-Forwarded-Proto $scheme;\n }
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
@ -1,105 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
location = /idnot/callback {\n proxy_pass http://127.0.0.1:8080;\n proxy_set_header Host $host;\n proxy_set_header X-Real-IP $remote_addr;\n proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n proxy_set_header X-Forwarded-Proto $scheme;\n }
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
@ -1,107 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization,Content-Type,Accept" always;
|
|
||||||
add_header Access-Control-Max-Age 600;
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
proxy_pass http://127.0.0.1:8091;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
|
|
||||||
add_header Access-Control-Allow-Origin "http://local.lecoffreio.4nkweb:3000" always ;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization,Content-Type,Accept,X-Requested-With" always;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
@ -1,37 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name lecoffreio-dev2.4nkweb.com;
|
|
||||||
|
|
||||||
# ssl_certificate /etc/letsencrypt/live/lecoffreio.4nkweb.com/fullchain.pem;
|
|
||||||
# ssl_certificate_key /etc/letsencrypt/live/lecoffreio.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3006;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
ssl_certificate /etc/letsencrypt/live/lecoffreio-dev2.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/lecoffreio-dev2.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = lecoffreio-dev2.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
}
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name lecoffreio-dev2.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,65 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
# ssl_certificate /etc/letsencrypt/live/lecoffreio.4nkweb.com/fullchain.pem;
|
|
||||||
# ssl_certificate_key /etc/letsencrypt/live/lecoffreio.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3000;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /api/ {
|
|
||||||
proxy_pass http://127.0.0.1:8081/api/;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/lecoffreio.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/lecoffreio.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = lecoffreio.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
}
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,8 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3001;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,11 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3443 ssl;
|
|
||||||
listen 3443;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/local.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/local.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
@ -1,11 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3443 ssl;
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/local.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/local.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
@ -1,11 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3443 ssl;
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/local.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/local.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
@ -1,20 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3000 ssl;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/local.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/local.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
listen 3000 ssl;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/local.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/local.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback;
|
|
||||||
}
|
|
||||||
@ -1,12 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3000 ssl;
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/local.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/local.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev4.4nkweb.com/lecoffre$request_uri;
|
|
||||||
}
|
|
||||||
@ -1,8 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3001;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,8 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3001;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,8 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3001;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,13 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback;
|
|
||||||
}
|
|
||||||
@ -1,8 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le callback en conservant intégralement la query (code + state)
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name local.lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name local.lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev4.4nkweb.com/lecoffre$request_uri;
|
|
||||||
}
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name local.lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev4.4nkweb.com/lecoffre$request_uri;
|
|
||||||
}
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name local.lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev4.4nkweb.com/lecoffre$request_uri;
|
|
||||||
}
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name local.lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev4.4nkweb.com/lecoffre$request_uri;
|
|
||||||
}
|
|
||||||
@ -1,28 +0,0 @@
|
|||||||
upstream backend {
|
|
||||||
server 127.0.0.1:3000;
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name relay235.4nkweb.com;
|
|
||||||
client_max_body_size 200M;
|
|
||||||
access_log /var/log/nginx/rocket.chat.access.log;
|
|
||||||
error_log /var/log/nginx/rocket.chat.error.log;
|
|
||||||
ssl_certificate /etc/letsencrypt/live/relay235.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/relay235.4nkweb.com/privkey.pem;
|
|
||||||
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
|
|
||||||
|
|
||||||
location / {
|
|
||||||
proxy_pass http://backend;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "upgrade";
|
|
||||||
proxy_set_header Host $http_host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto https;
|
|
||||||
proxy_set_header X-Nginx-Proxy true;
|
|
||||||
proxy_redirect off;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/etc/nginx/sites-available/demo.4nkweb.com
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/etc/nginx/sites-available/dev1.4nkweb.com
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/etc/nginx/sites-available/dev2.4nkweb.com
|
|
||||||
@ -1,162 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
|
|
||||||
# Callback IdNot -> backend, avec CORS dynamique et masquage des en-têtes upstream
|
|
||||||
location = /idnot/callback {
|
|
||||||
# Masquer les en-têtes CORS envoyés par l'upstream (Express)
|
|
||||||
proxy_hide_header Access-Control-Allow-Origin;
|
|
||||||
proxy_hide_header Access-Control-Allow-Credentials;
|
|
||||||
proxy_hide_header Access-Control-Allow-Headers;
|
|
||||||
proxy_hide_header Access-Control-Allow-Methods;
|
|
||||||
|
|
||||||
# CORS dynamique: autorise dev4, local.4nkweb.com:3000, localhost:3000 et sous-domaines *.4nkweb.com
|
|
||||||
set $cors_origin "";
|
|
||||||
if ($http_origin ~* ^(https://dev4\.4nkweb\.com|http://local\.4nkweb\.com:3000|http://localhost:3000|https://.*\.4nkweb\.com)$) {
|
|
||||||
set $cors_origin $http_origin;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Préflight OPTIONS
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
# En-têtes CORS pour les autres méthodes
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
# Masquer les en-têtes CORS de l'upstream (Express)
|
|
||||||
proxy_hide_header Access-Control-Allow-Origin;
|
|
||||||
proxy_hide_header Access-Control-Allow-Credentials;
|
|
||||||
proxy_hide_header Access-Control-Allow-Headers;
|
|
||||||
proxy_hide_header Access-Control-Allow-Methods;
|
|
||||||
|
|
||||||
# CORS dynamique: autorise dev4, local.4nkweb.com:3000, localhost:3000 et sous-domaines *.4nkweb.com
|
|
||||||
set $cors_origin "";
|
|
||||||
if ($http_origin ~* ^(https://dev4\.4nkweb\.com|http://local\.4nkweb\.com:3000|http://localhost:3000|https://.*\.4nkweb\.com)$) {
|
|
||||||
set $cors_origin $http_origin;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Préflight OPTIONS
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
# En-têtes CORS pour les autres méthodes
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/etc/nginx/sites-available/lecoffreio-dev2.4nkweb.com
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/etc/nginx/sites-available/lecoffreio.4nkweb.com
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/etc/nginx/sites-available/local.4nkweb.com-3000
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name local.lecoffreio.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/etc/nginx/sites-available/relay235.4nkweb.com
|
|
||||||
@ -1,13 +0,0 @@
|
|||||||
# regex to split $uri to $fastcgi_script_name and $fastcgi_path
|
|
||||||
fastcgi_split_path_info ^(.+?\.php)(/.*)$;
|
|
||||||
|
|
||||||
# Check that the PHP script exists before passing it
|
|
||||||
try_files $fastcgi_script_name =404;
|
|
||||||
|
|
||||||
# Bypass the fact that try_files resets $fastcgi_path_info
|
|
||||||
# see: http://trac.nginx.org/nginx/ticket/321
|
|
||||||
set $path_info $fastcgi_path_info;
|
|
||||||
fastcgi_param PATH_INFO $path_info;
|
|
||||||
|
|
||||||
fastcgi_index index.php;
|
|
||||||
include fastcgi.conf;
|
|
||||||
@ -1,5 +0,0 @@
|
|||||||
# Self signed certificates generated by the ssl-cert package
|
|
||||||
# Don't use them in a production server!
|
|
||||||
|
|
||||||
ssl_certificate /etc/ssl/certs/ssl-cert-snakeoil.pem;
|
|
||||||
ssl_certificate_key /etc/ssl/private/ssl-cert-snakeoil.key;
|
|
||||||
@ -1,11 +0,0 @@
|
|||||||
stream {
|
|
||||||
map $ssl_preread_protocol $upstream_3000 {
|
|
||||||
"" 127.0.0.1:3001; # HTTP clair
|
|
||||||
default 127.0.0.1:3443; # TLS -> HTTPS
|
|
||||||
}
|
|
||||||
server {
|
|
||||||
listen 3000;
|
|
||||||
proxy_pass $upstream_3000;
|
|
||||||
ssl_preread on;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
@ -1,17 +0,0 @@
|
|||||||
|
|
||||||
uwsgi_param QUERY_STRING $query_string;
|
|
||||||
uwsgi_param REQUEST_METHOD $request_method;
|
|
||||||
uwsgi_param CONTENT_TYPE $content_type;
|
|
||||||
uwsgi_param CONTENT_LENGTH $content_length;
|
|
||||||
|
|
||||||
uwsgi_param REQUEST_URI $request_uri;
|
|
||||||
uwsgi_param PATH_INFO $document_uri;
|
|
||||||
uwsgi_param DOCUMENT_ROOT $document_root;
|
|
||||||
uwsgi_param SERVER_PROTOCOL $server_protocol;
|
|
||||||
uwsgi_param REQUEST_SCHEME $scheme;
|
|
||||||
uwsgi_param HTTPS $https if_not_empty;
|
|
||||||
|
|
||||||
uwsgi_param REMOTE_ADDR $remote_addr;
|
|
||||||
uwsgi_param REMOTE_PORT $remote_port;
|
|
||||||
uwsgi_param SERVER_PORT $server_port;
|
|
||||||
uwsgi_param SERVER_NAME $server_name;
|
|
||||||
@ -1,125 +0,0 @@
|
|||||||
# This map is not a full windows-1251 <> utf8 map: it does not
|
|
||||||
# contain Serbian and Macedonian letters. If you need a full map,
|
|
||||||
# use contrib/unicode2nginx/win-utf map instead.
|
|
||||||
|
|
||||||
charset_map windows-1251 utf-8 {
|
|
||||||
|
|
||||||
82 E2809A; # single low-9 quotation mark
|
|
||||||
|
|
||||||
84 E2809E; # double low-9 quotation mark
|
|
||||||
85 E280A6; # ellipsis
|
|
||||||
86 E280A0; # dagger
|
|
||||||
87 E280A1; # double dagger
|
|
||||||
88 E282AC; # euro
|
|
||||||
89 E280B0; # per mille
|
|
||||||
|
|
||||||
91 E28098; # left single quotation mark
|
|
||||||
92 E28099; # right single quotation mark
|
|
||||||
93 E2809C; # left double quotation mark
|
|
||||||
94 E2809D; # right double quotation mark
|
|
||||||
95 E280A2; # bullet
|
|
||||||
96 E28093; # en dash
|
|
||||||
97 E28094; # em dash
|
|
||||||
|
|
||||||
99 E284A2; # trade mark sign
|
|
||||||
|
|
||||||
A0 C2A0; #
|
|
||||||
A1 D18E; # capital Byelorussian short U
|
|
||||||
A2 D19E; # small Byelorussian short u
|
|
||||||
|
|
||||||
A4 C2A4; # currency sign
|
|
||||||
A5 D290; # capital Ukrainian soft G
|
|
||||||
A6 C2A6; # borken bar
|
|
||||||
A7 C2A7; # section sign
|
|
||||||
A8 D081; # capital YO
|
|
||||||
A9 C2A9; # (C)
|
|
||||||
AA D084; # capital Ukrainian YE
|
|
||||||
AB C2AB; # left-pointing double angle quotation mark
|
|
||||||
AC C2AC; # not sign
|
|
||||||
AD C2AD; # soft hypen
|
|
||||||
AE C2AE; # (R)
|
|
||||||
AF D087; # capital Ukrainian YI
|
|
||||||
|
|
||||||
B0 C2B0; # °
|
|
||||||
B1 C2B1; # plus-minus sign
|
|
||||||
B2 D086; # capital Ukrainian I
|
|
||||||
B3 D196; # small Ukrainian i
|
|
||||||
B4 D291; # small Ukrainian soft g
|
|
||||||
B5 C2B5; # micro sign
|
|
||||||
B6 C2B6; # pilcrow sign
|
|
||||||
B7 C2B7; # ·
|
|
||||||
B8 D191; # small yo
|
|
||||||
B9 E28496; # numero sign
|
|
||||||
BA D194; # small Ukrainian ye
|
|
||||||
BB C2BB; # right-pointing double angle quotation mark
|
|
||||||
|
|
||||||
BF D197; # small Ukrainian yi
|
|
||||||
|
|
||||||
C0 D090; # capital A
|
|
||||||
C1 D091; # capital B
|
|
||||||
C2 D092; # capital V
|
|
||||||
C3 D093; # capital G
|
|
||||||
C4 D094; # capital D
|
|
||||||
C5 D095; # capital YE
|
|
||||||
C6 D096; # capital ZH
|
|
||||||
C7 D097; # capital Z
|
|
||||||
C8 D098; # capital I
|
|
||||||
C9 D099; # capital J
|
|
||||||
CA D09A; # capital K
|
|
||||||
CB D09B; # capital L
|
|
||||||
CC D09C; # capital M
|
|
||||||
CD D09D; # capital N
|
|
||||||
CE D09E; # capital O
|
|
||||||
CF D09F; # capital P
|
|
||||||
|
|
||||||
D0 D0A0; # capital R
|
|
||||||
D1 D0A1; # capital S
|
|
||||||
D2 D0A2; # capital T
|
|
||||||
D3 D0A3; # capital U
|
|
||||||
D4 D0A4; # capital F
|
|
||||||
D5 D0A5; # capital KH
|
|
||||||
D6 D0A6; # capital TS
|
|
||||||
D7 D0A7; # capital CH
|
|
||||||
D8 D0A8; # capital SH
|
|
||||||
D9 D0A9; # capital SHCH
|
|
||||||
DA D0AA; # capital hard sign
|
|
||||||
DB D0AB; # capital Y
|
|
||||||
DC D0AC; # capital soft sign
|
|
||||||
DD D0AD; # capital E
|
|
||||||
DE D0AE; # capital YU
|
|
||||||
DF D0AF; # capital YA
|
|
||||||
|
|
||||||
E0 D0B0; # small a
|
|
||||||
E1 D0B1; # small b
|
|
||||||
E2 D0B2; # small v
|
|
||||||
E3 D0B3; # small g
|
|
||||||
E4 D0B4; # small d
|
|
||||||
E5 D0B5; # small ye
|
|
||||||
E6 D0B6; # small zh
|
|
||||||
E7 D0B7; # small z
|
|
||||||
E8 D0B8; # small i
|
|
||||||
E9 D0B9; # small j
|
|
||||||
EA D0BA; # small k
|
|
||||||
EB D0BB; # small l
|
|
||||||
EC D0BC; # small m
|
|
||||||
ED D0BD; # small n
|
|
||||||
EE D0BE; # small o
|
|
||||||
EF D0BF; # small p
|
|
||||||
|
|
||||||
F0 D180; # small r
|
|
||||||
F1 D181; # small s
|
|
||||||
F2 D182; # small t
|
|
||||||
F3 D183; # small u
|
|
||||||
F4 D184; # small f
|
|
||||||
F5 D185; # small kh
|
|
||||||
F6 D186; # small ts
|
|
||||||
F7 D187; # small ch
|
|
||||||
F8 D188; # small sh
|
|
||||||
F9 D189; # small shch
|
|
||||||
FA D18A; # small hard sign
|
|
||||||
FB D18B; # small y
|
|
||||||
FC D18C; # small soft sign
|
|
||||||
FD D18D; # small e
|
|
||||||
FE D18E; # small yu
|
|
||||||
FF D18F; # small ya
|
|
||||||
}
|
|
||||||
@ -1,45 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin * always;
|
|
||||||
add_header Access-Control-Allow-Methods GET,
|
|
||||||
@ -1,7 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 3000;
|
|
||||||
server_name local.4nkweb.com;
|
|
||||||
|
|
||||||
# Redirige vers le front final en conservant chemin + query
|
|
||||||
return 301 https://dev3.4nkweb.com/idnot/callback$is_args$args;
|
|
||||||
}
|
|
||||||
Binary file not shown.
@ -1,44 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name localhost;
|
|
||||||
|
|
||||||
#access_log /var/log/nginx/host.access.log main;
|
|
||||||
|
|
||||||
location / {
|
|
||||||
root /usr/share/nginx/html;
|
|
||||||
index index.html index.htm;
|
|
||||||
}
|
|
||||||
|
|
||||||
#error_page 404 /404.html;
|
|
||||||
|
|
||||||
# redirect server error pages to the static page /50x.html
|
|
||||||
#
|
|
||||||
error_page 500 502 503 504 /50x.html;
|
|
||||||
location = /50x.html {
|
|
||||||
root /usr/share/nginx/html;
|
|
||||||
}
|
|
||||||
|
|
||||||
# proxy the PHP scripts to Apache listening on 127.0.0.1:80
|
|
||||||
#
|
|
||||||
#location ~ \.php$ {
|
|
||||||
# proxy_pass http://127.0.0.1;
|
|
||||||
#}
|
|
||||||
|
|
||||||
# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
|
|
||||||
#
|
|
||||||
#location ~ \.php$ {
|
|
||||||
# root html;
|
|
||||||
# fastcgi_pass 127.0.0.1:9000;
|
|
||||||
# fastcgi_index index.php;
|
|
||||||
# fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
|
|
||||||
# include fastcgi_params;
|
|
||||||
#}
|
|
||||||
|
|
||||||
# deny access to .htaccess files, if Apache's document root
|
|
||||||
# concurs with nginx's one
|
|
||||||
#
|
|
||||||
#location ~ /\.ht {
|
|
||||||
# deny all;
|
|
||||||
#}
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,27 +0,0 @@
|
|||||||
|
|
||||||
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
|
|
||||||
fastcgi_param QUERY_STRING $query_string;
|
|
||||||
fastcgi_param REQUEST_METHOD $request_method;
|
|
||||||
fastcgi_param CONTENT_TYPE $content_type;
|
|
||||||
fastcgi_param CONTENT_LENGTH $content_length;
|
|
||||||
|
|
||||||
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
|
|
||||||
fastcgi_param REQUEST_URI $request_uri;
|
|
||||||
fastcgi_param DOCUMENT_URI $document_uri;
|
|
||||||
fastcgi_param DOCUMENT_ROOT $document_root;
|
|
||||||
fastcgi_param SERVER_PROTOCOL $server_protocol;
|
|
||||||
fastcgi_param REQUEST_SCHEME $scheme;
|
|
||||||
fastcgi_param HTTPS $https if_not_empty;
|
|
||||||
|
|
||||||
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
|
|
||||||
fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;
|
|
||||||
|
|
||||||
fastcgi_param REMOTE_ADDR $remote_addr;
|
|
||||||
fastcgi_param REMOTE_PORT $remote_port;
|
|
||||||
fastcgi_param REMOTE_USER $remote_user;
|
|
||||||
fastcgi_param SERVER_ADDR $server_addr;
|
|
||||||
fastcgi_param SERVER_PORT $server_port;
|
|
||||||
fastcgi_param SERVER_NAME $server_name;
|
|
||||||
|
|
||||||
# PHP only, required if PHP was built with --enable-force-cgi-redirect
|
|
||||||
fastcgi_param REDIRECT_STATUS 200;
|
|
||||||
@ -1,25 +0,0 @@
|
|||||||
|
|
||||||
fastcgi_param QUERY_STRING $query_string;
|
|
||||||
fastcgi_param REQUEST_METHOD $request_method;
|
|
||||||
fastcgi_param CONTENT_TYPE $content_type;
|
|
||||||
fastcgi_param CONTENT_LENGTH $content_length;
|
|
||||||
|
|
||||||
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
|
|
||||||
fastcgi_param REQUEST_URI $request_uri;
|
|
||||||
fastcgi_param DOCUMENT_URI $document_uri;
|
|
||||||
fastcgi_param DOCUMENT_ROOT $document_root;
|
|
||||||
fastcgi_param SERVER_PROTOCOL $server_protocol;
|
|
||||||
fastcgi_param REQUEST_SCHEME $scheme;
|
|
||||||
fastcgi_param HTTPS $https if_not_empty;
|
|
||||||
|
|
||||||
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
|
|
||||||
fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;
|
|
||||||
|
|
||||||
fastcgi_param REMOTE_ADDR $remote_addr;
|
|
||||||
fastcgi_param REMOTE_PORT $remote_port;
|
|
||||||
fastcgi_param SERVER_ADDR $server_addr;
|
|
||||||
fastcgi_param SERVER_PORT $server_port;
|
|
||||||
fastcgi_param SERVER_NAME $server_name;
|
|
||||||
|
|
||||||
# PHP only, required if PHP was built with --enable-force-cgi-redirect
|
|
||||||
fastcgi_param REDIRECT_STATUS 200;
|
|
||||||
@ -1,109 +0,0 @@
|
|||||||
|
|
||||||
# This map is not a full koi8-r <> utf8 map: it does not contain
|
|
||||||
# box-drawing and some other characters. Besides this map contains
|
|
||||||
# several koi8-u and Byelorussian letters which are not in koi8-r.
|
|
||||||
# If you need a full and standard map, use contrib/unicode2nginx/koi-utf
|
|
||||||
# map instead.
|
|
||||||
|
|
||||||
charset_map koi8-r utf-8 {
|
|
||||||
|
|
||||||
80 E282AC ; # euro
|
|
||||||
|
|
||||||
95 E280A2 ; # bullet
|
|
||||||
|
|
||||||
9A C2A0 ; #
|
|
||||||
|
|
||||||
9E C2B7 ; # ·
|
|
||||||
|
|
||||||
A3 D191 ; # small yo
|
|
||||||
A4 D194 ; # small Ukrainian ye
|
|
||||||
|
|
||||||
A6 D196 ; # small Ukrainian i
|
|
||||||
A7 D197 ; # small Ukrainian yi
|
|
||||||
|
|
||||||
AD D291 ; # small Ukrainian soft g
|
|
||||||
AE D19E ; # small Byelorussian short u
|
|
||||||
|
|
||||||
B0 C2B0 ; # °
|
|
||||||
|
|
||||||
B3 D081 ; # capital YO
|
|
||||||
B4 D084 ; # capital Ukrainian YE
|
|
||||||
|
|
||||||
B6 D086 ; # capital Ukrainian I
|
|
||||||
B7 D087 ; # capital Ukrainian YI
|
|
||||||
|
|
||||||
B9 E28496 ; # numero sign
|
|
||||||
|
|
||||||
BD D290 ; # capital Ukrainian soft G
|
|
||||||
BE D18E ; # capital Byelorussian short U
|
|
||||||
|
|
||||||
BF C2A9 ; # (C)
|
|
||||||
|
|
||||||
C0 D18E ; # small yu
|
|
||||||
C1 D0B0 ; # small a
|
|
||||||
C2 D0B1 ; # small b
|
|
||||||
C3 D186 ; # small ts
|
|
||||||
C4 D0B4 ; # small d
|
|
||||||
C5 D0B5 ; # small ye
|
|
||||||
C6 D184 ; # small f
|
|
||||||
C7 D0B3 ; # small g
|
|
||||||
C8 D185 ; # small kh
|
|
||||||
C9 D0B8 ; # small i
|
|
||||||
CA D0B9 ; # small j
|
|
||||||
CB D0BA ; # small k
|
|
||||||
CC D0BB ; # small l
|
|
||||||
CD D0BC ; # small m
|
|
||||||
CE D0BD ; # small n
|
|
||||||
CF D0BE ; # small o
|
|
||||||
|
|
||||||
D0 D0BF ; # small p
|
|
||||||
D1 D18F ; # small ya
|
|
||||||
D2 D180 ; # small r
|
|
||||||
D3 D181 ; # small s
|
|
||||||
D4 D182 ; # small t
|
|
||||||
D5 D183 ; # small u
|
|
||||||
D6 D0B6 ; # small zh
|
|
||||||
D7 D0B2 ; # small v
|
|
||||||
D8 D18C ; # small soft sign
|
|
||||||
D9 D18B ; # small y
|
|
||||||
DA D0B7 ; # small z
|
|
||||||
DB D188 ; # small sh
|
|
||||||
DC D18D ; # small e
|
|
||||||
DD D189 ; # small shch
|
|
||||||
DE D187 ; # small ch
|
|
||||||
DF D18A ; # small hard sign
|
|
||||||
|
|
||||||
E0 D0AE ; # capital YU
|
|
||||||
E1 D090 ; # capital A
|
|
||||||
E2 D091 ; # capital B
|
|
||||||
E3 D0A6 ; # capital TS
|
|
||||||
E4 D094 ; # capital D
|
|
||||||
E5 D095 ; # capital YE
|
|
||||||
E6 D0A4 ; # capital F
|
|
||||||
E7 D093 ; # capital G
|
|
||||||
E8 D0A5 ; # capital KH
|
|
||||||
E9 D098 ; # capital I
|
|
||||||
EA D099 ; # capital J
|
|
||||||
EB D09A ; # capital K
|
|
||||||
EC D09B ; # capital L
|
|
||||||
ED D09C ; # capital M
|
|
||||||
EE D09D ; # capital N
|
|
||||||
EF D09E ; # capital O
|
|
||||||
|
|
||||||
F0 D09F ; # capital P
|
|
||||||
F1 D0AF ; # capital YA
|
|
||||||
F2 D0A0 ; # capital R
|
|
||||||
F3 D0A1 ; # capital S
|
|
||||||
F4 D0A2 ; # capital T
|
|
||||||
F5 D0A3 ; # capital U
|
|
||||||
F6 D096 ; # capital ZH
|
|
||||||
F7 D092 ; # capital V
|
|
||||||
F8 D0AC ; # capital soft sign
|
|
||||||
F9 D0AB ; # capital Y
|
|
||||||
FA D097 ; # capital Z
|
|
||||||
FB D0A8 ; # capital SH
|
|
||||||
FC D0AD ; # capital E
|
|
||||||
FD D0A9 ; # capital SHCH
|
|
||||||
FE D0A7 ; # capital CH
|
|
||||||
FF D0AA ; # capital hard sign
|
|
||||||
}
|
|
||||||
@ -1,103 +0,0 @@
|
|||||||
|
|
||||||
charset_map koi8-r windows-1251 {
|
|
||||||
|
|
||||||
80 88 ; # euro
|
|
||||||
|
|
||||||
95 95 ; # bullet
|
|
||||||
|
|
||||||
9A A0 ; #
|
|
||||||
|
|
||||||
9E B7 ; # ·
|
|
||||||
|
|
||||||
A3 B8 ; # small yo
|
|
||||||
A4 BA ; # small Ukrainian ye
|
|
||||||
|
|
||||||
A6 B3 ; # small Ukrainian i
|
|
||||||
A7 BF ; # small Ukrainian yi
|
|
||||||
|
|
||||||
AD B4 ; # small Ukrainian soft g
|
|
||||||
AE A2 ; # small Byelorussian short u
|
|
||||||
|
|
||||||
B0 B0 ; # °
|
|
||||||
|
|
||||||
B3 A8 ; # capital YO
|
|
||||||
B4 AA ; # capital Ukrainian YE
|
|
||||||
|
|
||||||
B6 B2 ; # capital Ukrainian I
|
|
||||||
B7 AF ; # capital Ukrainian YI
|
|
||||||
|
|
||||||
B9 B9 ; # numero sign
|
|
||||||
|
|
||||||
BD A5 ; # capital Ukrainian soft G
|
|
||||||
BE A1 ; # capital Byelorussian short U
|
|
||||||
|
|
||||||
BF A9 ; # (C)
|
|
||||||
|
|
||||||
C0 FE ; # small yu
|
|
||||||
C1 E0 ; # small a
|
|
||||||
C2 E1 ; # small b
|
|
||||||
C3 F6 ; # small ts
|
|
||||||
C4 E4 ; # small d
|
|
||||||
C5 E5 ; # small ye
|
|
||||||
C6 F4 ; # small f
|
|
||||||
C7 E3 ; # small g
|
|
||||||
C8 F5 ; # small kh
|
|
||||||
C9 E8 ; # small i
|
|
||||||
CA E9 ; # small j
|
|
||||||
CB EA ; # small k
|
|
||||||
CC EB ; # small l
|
|
||||||
CD EC ; # small m
|
|
||||||
CE ED ; # small n
|
|
||||||
CF EE ; # small o
|
|
||||||
|
|
||||||
D0 EF ; # small p
|
|
||||||
D1 FF ; # small ya
|
|
||||||
D2 F0 ; # small r
|
|
||||||
D3 F1 ; # small s
|
|
||||||
D4 F2 ; # small t
|
|
||||||
D5 F3 ; # small u
|
|
||||||
D6 E6 ; # small zh
|
|
||||||
D7 E2 ; # small v
|
|
||||||
D8 FC ; # small soft sign
|
|
||||||
D9 FB ; # small y
|
|
||||||
DA E7 ; # small z
|
|
||||||
DB F8 ; # small sh
|
|
||||||
DC FD ; # small e
|
|
||||||
DD F9 ; # small shch
|
|
||||||
DE F7 ; # small ch
|
|
||||||
DF FA ; # small hard sign
|
|
||||||
|
|
||||||
E0 DE ; # capital YU
|
|
||||||
E1 C0 ; # capital A
|
|
||||||
E2 C1 ; # capital B
|
|
||||||
E3 D6 ; # capital TS
|
|
||||||
E4 C4 ; # capital D
|
|
||||||
E5 C5 ; # capital YE
|
|
||||||
E6 D4 ; # capital F
|
|
||||||
E7 C3 ; # capital G
|
|
||||||
E8 D5 ; # capital KH
|
|
||||||
E9 C8 ; # capital I
|
|
||||||
EA C9 ; # capital J
|
|
||||||
EB CA ; # capital K
|
|
||||||
EC CB ; # capital L
|
|
||||||
ED CC ; # capital M
|
|
||||||
EE CD ; # capital N
|
|
||||||
EF CE ; # capital O
|
|
||||||
|
|
||||||
F0 CF ; # capital P
|
|
||||||
F1 DF ; # capital YA
|
|
||||||
F2 D0 ; # capital R
|
|
||||||
F3 D1 ; # capital S
|
|
||||||
F4 D2 ; # capital T
|
|
||||||
F5 D3 ; # capital U
|
|
||||||
F6 C6 ; # capital ZH
|
|
||||||
F7 C2 ; # capital V
|
|
||||||
F8 DC ; # capital soft sign
|
|
||||||
F9 DB ; # capital Y
|
|
||||||
FA C7 ; # capital Z
|
|
||||||
FB D8 ; # capital SH
|
|
||||||
FC DD ; # capital E
|
|
||||||
FD D9 ; # capital SHCH
|
|
||||||
FE D7 ; # capital CH
|
|
||||||
FF DA ; # capital hard sign
|
|
||||||
}
|
|
||||||
@ -1,99 +0,0 @@
|
|||||||
|
|
||||||
types {
|
|
||||||
text/html html htm shtml;
|
|
||||||
text/css css;
|
|
||||||
text/xml xml;
|
|
||||||
image/gif gif;
|
|
||||||
image/jpeg jpeg jpg;
|
|
||||||
application/javascript js;
|
|
||||||
application/atom+xml atom;
|
|
||||||
application/rss+xml rss;
|
|
||||||
|
|
||||||
text/mathml mml;
|
|
||||||
text/plain txt;
|
|
||||||
text/vnd.sun.j2me.app-descriptor jad;
|
|
||||||
text/vnd.wap.wml wml;
|
|
||||||
text/x-component htc;
|
|
||||||
|
|
||||||
image/avif avif;
|
|
||||||
image/png png;
|
|
||||||
image/svg+xml svg svgz;
|
|
||||||
image/tiff tif tiff;
|
|
||||||
image/vnd.wap.wbmp wbmp;
|
|
||||||
image/webp webp;
|
|
||||||
image/x-icon ico;
|
|
||||||
image/x-jng jng;
|
|
||||||
image/x-ms-bmp bmp;
|
|
||||||
|
|
||||||
font/woff woff;
|
|
||||||
font/woff2 woff2;
|
|
||||||
|
|
||||||
application/java-archive jar war ear;
|
|
||||||
application/json json;
|
|
||||||
application/mac-binhex40 hqx;
|
|
||||||
application/msword doc;
|
|
||||||
application/pdf pdf;
|
|
||||||
application/postscript ps eps ai;
|
|
||||||
application/rtf rtf;
|
|
||||||
application/vnd.apple.mpegurl m3u8;
|
|
||||||
application/vnd.google-earth.kml+xml kml;
|
|
||||||
application/vnd.google-earth.kmz kmz;
|
|
||||||
application/vnd.ms-excel xls;
|
|
||||||
application/vnd.ms-fontobject eot;
|
|
||||||
application/vnd.ms-powerpoint ppt;
|
|
||||||
application/vnd.oasis.opendocument.graphics odg;
|
|
||||||
application/vnd.oasis.opendocument.presentation odp;
|
|
||||||
application/vnd.oasis.opendocument.spreadsheet ods;
|
|
||||||
application/vnd.oasis.opendocument.text odt;
|
|
||||||
application/vnd.openxmlformats-officedocument.presentationml.presentation
|
|
||||||
pptx;
|
|
||||||
application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
|
|
||||||
xlsx;
|
|
||||||
application/vnd.openxmlformats-officedocument.wordprocessingml.document
|
|
||||||
docx;
|
|
||||||
application/vnd.wap.wmlc wmlc;
|
|
||||||
application/wasm wasm;
|
|
||||||
application/x-7z-compressed 7z;
|
|
||||||
application/x-cocoa cco;
|
|
||||||
application/x-java-archive-diff jardiff;
|
|
||||||
application/x-java-jnlp-file jnlp;
|
|
||||||
application/x-makeself run;
|
|
||||||
application/x-perl pl pm;
|
|
||||||
application/x-pilot prc pdb;
|
|
||||||
application/x-rar-compressed rar;
|
|
||||||
application/x-redhat-package-manager rpm;
|
|
||||||
application/x-sea sea;
|
|
||||||
application/x-shockwave-flash swf;
|
|
||||||
application/x-stuffit sit;
|
|
||||||
application/x-tcl tcl tk;
|
|
||||||
application/x-x509-ca-cert der pem crt;
|
|
||||||
application/x-xpinstall xpi;
|
|
||||||
application/xhtml+xml xhtml;
|
|
||||||
application/xspf+xml xspf;
|
|
||||||
application/zip zip;
|
|
||||||
|
|
||||||
application/octet-stream bin exe dll;
|
|
||||||
application/octet-stream deb;
|
|
||||||
application/octet-stream dmg;
|
|
||||||
application/octet-stream iso img;
|
|
||||||
application/octet-stream msi msp msm;
|
|
||||||
|
|
||||||
audio/midi mid midi kar;
|
|
||||||
audio/mpeg mp3;
|
|
||||||
audio/ogg ogg;
|
|
||||||
audio/x-m4a m4a;
|
|
||||||
audio/x-realaudio ra;
|
|
||||||
|
|
||||||
video/3gpp 3gpp 3gp;
|
|
||||||
video/mp2t ts;
|
|
||||||
video/mp4 mp4;
|
|
||||||
video/mpeg mpeg mpg;
|
|
||||||
video/quicktime mov;
|
|
||||||
video/webm webm;
|
|
||||||
video/x-flv flv;
|
|
||||||
video/x-m4v m4v;
|
|
||||||
video/x-mng mng;
|
|
||||||
video/x-ms-asf asx asf;
|
|
||||||
video/x-ms-wmv wmv;
|
|
||||||
video/x-msvideo avi;
|
|
||||||
}
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/lib/nginx/modules
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-http-geoip.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-http-image-filter.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-http-xslt-filter.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-mail.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-stream.conf
|
|
||||||
@ -1 +0,0 @@
|
|||||||
/usr/share/nginx/modules-available/mod-stream-geoip.conf
|
|
||||||
@ -1,34 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,33 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,34 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,35 +0,0 @@
|
|||||||
|
|
||||||
user nginx;
|
|
||||||
worker_processes auto;
|
|
||||||
|
|
||||||
error_log /var/log/nginx/error.log notice;
|
|
||||||
pid /var/run/nginx.pid;
|
|
||||||
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
include /etc/nginx/stream.d/*.conf;
|
|
||||||
|
|
||||||
events {
|
|
||||||
worker_connections 1024;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
http {
|
|
||||||
include /etc/nginx/mime.types;
|
|
||||||
default_type application/octet-stream;
|
|
||||||
|
|
||||||
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
|
|
||||||
'$status $body_bytes_sent "$http_referer" '
|
|
||||||
'"$http_user_agent" "$http_x_forwarded_for"';
|
|
||||||
|
|
||||||
access_log /var/log/nginx/access.log main;
|
|
||||||
|
|
||||||
sendfile on;
|
|
||||||
#tcp_nopush on;
|
|
||||||
|
|
||||||
keepalive_timeout 65;
|
|
||||||
|
|
||||||
#gzip on;
|
|
||||||
|
|
||||||
include /etc/nginx/conf.d/*.conf;
|
|
||||||
include /etc/nginx/sites-enabled/*;
|
|
||||||
}
|
|
||||||
@ -1,4 +0,0 @@
|
|||||||
proxy_set_header Host $http_host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
@ -1,17 +0,0 @@
|
|||||||
|
|
||||||
scgi_param REQUEST_METHOD $request_method;
|
|
||||||
scgi_param REQUEST_URI $request_uri;
|
|
||||||
scgi_param QUERY_STRING $query_string;
|
|
||||||
scgi_param CONTENT_TYPE $content_type;
|
|
||||||
|
|
||||||
scgi_param DOCUMENT_URI $document_uri;
|
|
||||||
scgi_param DOCUMENT_ROOT $document_root;
|
|
||||||
scgi_param SCGI 1;
|
|
||||||
scgi_param SERVER_PROTOCOL $server_protocol;
|
|
||||||
scgi_param REQUEST_SCHEME $scheme;
|
|
||||||
scgi_param HTTPS $https if_not_empty;
|
|
||||||
|
|
||||||
scgi_param REMOTE_ADDR $remote_addr;
|
|
||||||
scgi_param REMOTE_PORT $remote_port;
|
|
||||||
scgi_param SERVER_PORT $server_port;
|
|
||||||
scgi_param SERVER_NAME $server_name;
|
|
||||||
@ -1,100 +0,0 @@
|
|||||||
|
|
||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name demo.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/demo.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/demo.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3003;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws {
|
|
||||||
proxy_pass http://127.0.0.1:8090/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
# proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_redirect off;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://127.0.0.1:8090/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
# proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_redirect off;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /signer/ {
|
|
||||||
proxy_pass http://localhost:9090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
|
|
||||||
proxy_pass http://localhost:8081/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /blindbit/ {
|
|
||||||
proxy_pass http://localhost:8000/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /back/ {
|
|
||||||
proxy_pass http://localhost:8081/;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
listen 80;
|
|
||||||
server_name demo.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
}
|
|
||||||
|
|
||||||
@ -1,60 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev1.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev1.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev1.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3002;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev1.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev1.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev1.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev1.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,60 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev2.4nkweb.com;
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/demo.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/demo.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3003;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400; # Keep connection open for WebSocket
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev2.4nkweb.com/fullchain.pem; # managed by Certbot
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev2.4nkweb.com/privkey.pem; # managed by Certbot
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev2.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev2.4nkweb.com;
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,162 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
|
|
||||||
# Callback IdNot -> backend, avec CORS dynamique et masquage des en-têtes upstream
|
|
||||||
location = /idnot/callback {
|
|
||||||
# Masquer les en-têtes CORS envoyés par l'upstream (Express)
|
|
||||||
proxy_hide_header Access-Control-Allow-Origin;
|
|
||||||
proxy_hide_header Access-Control-Allow-Credentials;
|
|
||||||
proxy_hide_header Access-Control-Allow-Headers;
|
|
||||||
proxy_hide_header Access-Control-Allow-Methods;
|
|
||||||
|
|
||||||
# CORS dynamique: autorise dev4, local.4nkweb.com:3000, localhost:3000 et sous-domaines *.4nkweb.com
|
|
||||||
set $cors_origin "";
|
|
||||||
if ($http_origin ~* ^(https://dev4\.4nkweb\.com|http://local\.4nkweb\.com:3000|http://localhost:3000|https://.*\.4nkweb\.com)$) {
|
|
||||||
set $cors_origin $http_origin;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Préflight OPTIONS
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
# En-têtes CORS pour les autres méthodes
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
# Masquer les en-têtes CORS de l'upstream (Express)
|
|
||||||
proxy_hide_header Access-Control-Allow-Origin;
|
|
||||||
proxy_hide_header Access-Control-Allow-Credentials;
|
|
||||||
proxy_hide_header Access-Control-Allow-Headers;
|
|
||||||
proxy_hide_header Access-Control-Allow-Methods;
|
|
||||||
|
|
||||||
# CORS dynamique: autorise dev4, local.4nkweb.com:3000, localhost:3000 et sous-domaines *.4nkweb.com
|
|
||||||
set $cors_origin "";
|
|
||||||
if ($http_origin ~* ^(https://dev4\.4nkweb\.com|http://local\.4nkweb\.com:3000|http://localhost:3000|https://.*\.4nkweb\.com)$) {
|
|
||||||
set $cors_origin $http_origin;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Préflight OPTIONS
|
|
||||||
if ($request_method = OPTIONS) {
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
# En-têtes CORS pour les autres méthodes
|
|
||||||
add_header Access-Control-Allow-Origin $cors_origin always;
|
|
||||||
add_header Access-Control-Allow-Credentials "true" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Content-Type, Authorization, x-session-id" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, PUT, DELETE, OPTIONS" always;
|
|
||||||
add_header Vary "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" always;
|
|
||||||
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@ -1,105 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
location = /idnot/callback {\n proxy_pass http://127.0.0.1:8080;\n proxy_set_header Host $host;\n proxy_set_header X-Real-IP $remote_addr;\n proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n proxy_set_header X-Forwarded-Proto $scheme;\n }
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
@ -1,105 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
location = /idnot/callback {\n proxy_pass http://127.0.0.1:8080;\n proxy_set_header Host $host;\n proxy_set_header X-Real-IP $remote_addr;\n proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n proxy_set_header X-Forwarded-Proto $scheme;\n }
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
@ -1,105 +0,0 @@
|
|||||||
server {
|
|
||||||
listen 443 ssl;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
location = /idnot/callback {\n proxy_pass http://127.0.0.1:8080;\n proxy_set_header Host $host;\n proxy_set_header X-Real-IP $remote_addr;\n proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n proxy_set_header X-Forwarded-Proto $scheme;\n }
|
|
||||||
|
|
||||||
ssl_certificate /etc/letsencrypt/live/dev3.4nkweb.com/fullchain.pem;
|
|
||||||
ssl_certificate_key /etc/letsencrypt/live/dev3.4nkweb.com/privkey.pem;
|
|
||||||
|
|
||||||
ssl_protocols TLSv1.2 TLSv1.3;
|
|
||||||
ssl_prefer_server_ciphers on;
|
|
||||||
ssl_ciphers HIGH:!aNULL:!MD5;
|
|
||||||
# Redirection des requêtes HTTP normales vers Vite
|
|
||||||
location / {
|
|
||||||
proxy_pass http://localhost:3004;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location /ws/ {
|
|
||||||
proxy_pass http://localhost:8090;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
proxy_set_header X-NginX-Proxy true;
|
|
||||||
|
|
||||||
proxy_read_timeout 86400;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
}
|
|
||||||
|
|
||||||
location /storage/ {
|
|
||||||
if ($request_method = 'OPTIONS') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
add_header 'Access-Control-Max-Age' 86400;
|
|
||||||
add_header 'Content-Length' 0;
|
|
||||||
add_header 'Content-Type' 'text/plain';
|
|
||||||
return 204;
|
|
||||||
}
|
|
||||||
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*' always;
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, PUT, DELETE, OPTIONS' always;
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'Content-Type, Authorization, X-Requested-With' always;
|
|
||||||
|
|
||||||
rewrite ^/storage(/.*)$ $1 break;
|
|
||||||
proxy_pass http://localhost:8080;
|
|
||||||
proxy_http_version 1.1;
|
|
||||||
proxy_set_header Upgrade $http_upgrade;
|
|
||||||
proxy_set_header Connection "Upgrade";
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ^~ /api/ {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
location @handle_502 {
|
|
||||||
internal;
|
|
||||||
add_header Access-Control-Allow-Origin "*" always;
|
|
||||||
add_header Access-Control-Allow-Methods "GET, POST, OPTIONS, PUT, DELETE" always;
|
|
||||||
add_header Access-Control-Allow-Headers "Authorization, Content-Type, Accept, X-Requested-With" always;
|
|
||||||
return 502;
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
server {
|
|
||||||
if ($host = dev3.4nkweb.com) {
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
} # managed by Certbot
|
|
||||||
|
|
||||||
|
|
||||||
listen 80;
|
|
||||||
server_name dev3.4nkweb.com;
|
|
||||||
location = /idnot/callback {
|
|
||||||
proxy_pass http://127.0.0.1:8080;
|
|
||||||
proxy_set_header Host $host;
|
|
||||||
proxy_set_header X-Real-IP $remote_addr;
|
|
||||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
||||||
proxy_set_header X-Forwarded-Proto $scheme;
|
|
||||||
}
|
|
||||||
|
|
||||||
return 301 https://$host$request_uri;
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
Some files were not shown because too many files have changed in this diff Show More
Loading…
x
Reference in New Issue
Block a user