# -*-nginx-*-
server {
    listen 80;
    server_name intern.triton.fet.at www.intern.triton.fet.at;

    include snippets/letsencrypt.conf;
}

server {
    listen 443 ssl http2;
    server_name intern.triton.fet.at www.intern.triton.fet.at;

    ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
    ssl_trusted_certificate /etc/letsencrypt/live/triton.fet.at/chain.pem;
    include snippets/ssl.conf;

    include snippets/ldap.conf;
    auth_basic "Alternative Login";
    auth_basic_user_file /srv/auth/.basic_user;
    satisfy any;

    location / {
        include uwsgi_params;
        uwsgi_pass unix:/srv/run/intern.sock;
    }
    location = /intern/ {
        return 301 https://$host/intern/inde1x.html;
    }
    location /intern {
        rewrite ^/intern(.*)$ $1 break;
        include uwsgi_params;
        uwsgi_pass unix:/srv/run/intern.sock;
    }
    location = / {
        return 301 https://$host/index;
    }
}