diff options
author | jaseg <code@jaseg.net> | 2020-03-30 00:55:33 +0200 |
---|---|---|
committer | jaseg <code@jaseg.net> | 2020-03-30 00:55:33 +0200 |
commit | 10b4f62b6aad0f5f460925a40d6ab7e4920a8b05 (patch) | |
tree | db8dfd093d16a1dc86b8047b993b80ff661b3cdf /nginx.conf | |
parent | b595518607d567b9d0de010d2ff40985c8076cba (diff) | |
download | infra-10b4f62b6aad0f5f460925a40d6ab7e4920a8b05.tar.gz infra-10b4f62b6aad0f5f460925a40d6ab7e4920a8b05.tar.bz2 infra-10b4f62b6aad0f5f460925a40d6ab7e4920a8b05.zip |
Add gitolite/cgit git hosting
Diffstat (limited to 'nginx.conf')
-rw-r--r-- | nginx.conf | 48 |
1 files changed, 48 insertions, 0 deletions
@@ -322,5 +322,53 @@ http { root /usr/share/nginx/html; } } + + server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + server_name git.jaseg.net; + root /usr/share/nginx/html; + + ssl_certificate "/etc/letsencrypt/live/git.jaseg.net/fullchain.pem"; + ssl_certificate_key "/etc/letsencrypt/live/git.jaseg.net/privkey.pem"; + ssl_dhparam "/etc/letsencrypt/ssl-dhparams.pem"; + include /etc/letsencrypt/options-ssl-nginx.conf; + + ssl_stapling on; + ssl_stapling_verify on; + + resolver 67.207.67.2 67.207.67.3 valid=300s; + resolver_timeout 10s; + + add_header Strict-Transport-Security "max-age=86400"; + + # Load configuration files for the default server block. + include /etc/nginx/default.d/*.conf; + + location ~ ^/(cgit.css|robots.txt) { + root /usr/share/cgit; + expires 30d; + } + + location ~ ^/(cgit.png|favicon.png) { + alias /var/www/git.jaseg.net/cgit.png; + } + + location / { + include uwsgi_params; + uwsgi_modifier1 9; + uwsgi_pass unix:/run/uwsgi/cgit.socket; + } + + error_page 404 /404.html; + location = /40x.html { + root /usr/share/nginx/html; + } + + error_page 500 502 503 504 /50x.html; + location = /50x.html { + root /usr/share/nginx/html; + } + } } |