mirror of
https://github.com/BobbyWibowo/lolisafe.git
synced 2025-01-19 01:31:34 +00:00
6b0bb0a01f
use debian bullseye image instead of alpine linux uWS.js does not work on alpine linux, unfortunately
60 lines
2.1 KiB
Nginx Configuration File
60 lines
2.1 KiB
Nginx Configuration File
# Generated by nginxconfig.io
|
|
# https://www.digitalocean.com/community/tools/nginx?domains.0.server.domain=tourneys.naval-base.com&domains.0.server.documentRoot=&domains.0.https.certType=custom&domains.0.php.php=false&domains.0.reverseProxy.reverseProxy=true&domains.0.reverseProxy.proxyPass=http%3A%2F%2F127.0.0.1%3A3001&domains.0.routing.root=false&domains.0.logging.accessLog=true&domains.0.logging.errorLog=true
|
|
|
|
user www-data;
|
|
pid /run/nginx.pid;
|
|
worker_processes auto;
|
|
worker_rlimit_nofile 65535;
|
|
|
|
events {
|
|
multi_accept on;
|
|
worker_connections 65535;
|
|
}
|
|
|
|
http {
|
|
charset utf-8;
|
|
sendfile on;
|
|
tcp_nopush on;
|
|
tcp_nodelay on;
|
|
server_tokens off;
|
|
log_not_found off;
|
|
types_hash_max_size 2048;
|
|
|
|
# MIME
|
|
include mime.types;
|
|
default_type application/octet-stream;
|
|
|
|
# Logging
|
|
access_log /var/log/nginx/access.log;
|
|
error_log /var/log/nginx/error.log warn;
|
|
|
|
# SSL
|
|
ssl_session_timeout 1d;
|
|
ssl_session_cache shared:SSL:10m;
|
|
ssl_session_tickets off;
|
|
|
|
# Diffie-Hellman parameter for DHE ciphersuites
|
|
# ssl_dhparam /etc/nginx/dhparam.pem;
|
|
|
|
# Mozilla Intermediate configuration
|
|
ssl_protocols TLSv1.2 TLSv1.3;
|
|
ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
|
|
|
|
# OCSP Stapling
|
|
ssl_stapling off;
|
|
ssl_stapling_verify off;
|
|
resolver 1.1.1.1 1.0.0.1 8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220 valid=60s;
|
|
resolver_timeout 2s;
|
|
|
|
# Upload size limit
|
|
client_max_body_size 100M;
|
|
client_body_timeout 600s;
|
|
|
|
# Load site configs
|
|
include /etc/nginx/conf.d/*.conf;
|
|
# include /etc/nginx/sites-enabled/*;
|
|
|
|
# Use this instead of "*.conf" to disable "default.conf" that comes shipped with Nginx
|
|
# include /etc/nginx/conf.d/lolisafe.tld.conf;
|
|
}
|