bofh/nginx_sites
9
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Unify configs, enhance SSL security

Browse Source
This commit is contained in:
root
2018-03-25 20:23:08 +02:00
parent 83354160ea
commit 69047a611c
18 changed files with 446 additions and 373 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
triton.fet.at/sql.triton.fet.at.conf
View File

@@ -5,32 +5,28 @@ upstream triampsql {
server {
listen 80;
server_name sql.triton.fet.at www.sql.triton.fet.at;
root /srv/pxy/wptriton;
server_name sql.triton.fet.at www.sql.triton.fet.at;
location /.well-known {
allow all;
root /srv/pxy/wptriton;
allow all;
}
location / {
return 301 https://$host$request_uri;
}
}
server {
listen 443 ssl;
server_name sql.triton.fet.at www.sql.triton.fet.at;
#ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
#ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/triton.fet.at/chain.pem;
auth_ldap "FET Login";
auth_ldap_servers fet;
include snippets/ssl.conf;
include snippets/ldap.conf;
location /.well-known {
allow all;
}
location / {
proxy_pass http://triampsql;
proxy_set_header Accept-Encoding "";
@@ -43,7 +39,5 @@ server {
# sub_filter http://wp.triton.fet.at https://wp.triton.fet.at;
# sub_filter http: https:;
# sub_filter_once off;
}
}