diff options
Diffstat (limited to 'gerboweb/deploy/nginx.conf')
-rw-r--r-- | gerboweb/deploy/nginx.conf | 128 |
1 files changed, 118 insertions, 10 deletions
diff --git a/gerboweb/deploy/nginx.conf b/gerboweb/deploy/nginx.conf index b6f13c0..6cf28cf 100644 --- a/gerboweb/deploy/nginx.conf +++ b/gerboweb/deploy/nginx.conf @@ -36,9 +36,9 @@ http { include /etc/nginx/conf.d/*.conf; server { - listen 80 default_server; - listen [::]:80 default_server; - server_name gerbolyze.jaseg.net; + listen 80; + listen [::]:80; + server_name .jaseg.net; return 301 https://$host$request_uri; } @@ -85,13 +85,6 @@ http { } server { - listen 80; - listen [::]:80; - server_name blog.jaseg.net blog.jaseg.net; - return 301 https://$host$request_uri; - } - - server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name blog.jaseg.net blog.jaseg.net; @@ -136,5 +129,120 @@ http { } } + server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + server_name pogojig.jaseg.net; + root /usr/share/nginx/html; + + ssl_certificate "/etc/letsencrypt/live/pogojig.jaseg.net/fullchain.pem"; + ssl_certificate_key "/etc/letsencrypt/live/pogojig.jaseg.net/privkey.pem"; + ssl_dhparam "/etc/letsencrypt/ssl-dhparams.pem"; + include /etc/letsencrypt/options-ssl-nginx.conf; + + ssl_stapling on; + ssl_stapling_verify on; + + resolver 67.207.67.2 67.207.67.3 valid=300s; + resolver_timeout 10s; + + add_header Strict-Transport-Security "max-age=86400"; + + # Load configuration files for the default server block. + include /etc/nginx/default.d/*.conf; + + location ^~ /pogospace/ { + root /var/lib/pogojig/pogospace; + } + + location / { + include uwsgi_params; + uwsgi_pass unix:/run/uwsgi/pogojig.socket; + } + + error_page 404 /404.html; + location = /40x.html { + root /usr/share/nginx/html; + } + + error_page 500 502 503 504 /50x.html; + location = /50x.html { + root /usr/share/nginx/html; + } + } + + server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + server_name tracespace.jaseg.net; + root /usr/share/nginx/html; + + ssl_certificate "/etc/letsencrypt/live/tracespace.jaseg.net/fullchain.pem"; + ssl_certificate_key "/etc/letsencrypt/live/tracespace.jaseg.net/privkey.pem"; + ssl_dhparam "/etc/letsencrypt/ssl-dhparams.pem"; + include /etc/letsencrypt/options-ssl-nginx.conf; + + ssl_stapling on; + ssl_stapling_verify on; + + resolver 67.207.67.2 67.207.67.3 valid=300s; + resolver_timeout 10s; + + add_header Strict-Transport-Security "max-age=86400"; + + # Load configuration files for the default server block. + include /etc/nginx/default.d/*.conf; + + location / { + root /var/www/tracespace.jaseg.net; + } + + error_page 404 /404.html; + location = /40x.html { + root /usr/share/nginx/html; + } + + error_page 500 502 503 504 /50x.html; + location = /50x.html { + root /usr/share/nginx/html; + } + } + + server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + server_name openjscad.jaseg.net; + root /usr/share/nginx/html; + + ssl_certificate "/etc/letsencrypt/live/openjscad.jaseg.net/fullchain.pem"; + ssl_certificate_key "/etc/letsencrypt/live/openjscad.jaseg.net/privkey.pem"; + ssl_dhparam "/etc/letsencrypt/ssl-dhparams.pem"; + include /etc/letsencrypt/options-ssl-nginx.conf; + + ssl_stapling on; + ssl_stapling_verify on; + + resolver 67.207.67.2 67.207.67.3 valid=300s; + resolver_timeout 10s; + + add_header Strict-Transport-Security "max-age=86400"; + + # Load configuration files for the default server block. + include /etc/nginx/default.d/*.conf; + + location / { + root /var/www/openjscad.jaseg.net; + } + + error_page 404 /404.html; + location = /40x.html { + root /usr/share/nginx/html; + } + + error_page 500 502 503 504 /50x.html; + location = /50x.html { + root /usr/share/nginx/html; + } + } } |