Home Explore Help
Sign In
demure
/
dotfiles
Watch 3
Star 3
Fork 3
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
dotfiles
/
system_wide
/
etc
/
nginx
/
sites-available
/
ttrss

ttrss 2.1 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. ## YOURLS site config
    2. 

  2. server {
    3. 

  3.     ## Redirect http to https
    4. 

  4.     listen 80;
    5. 

  5.     listen [::]:80;
    6. 

  6.     server_name tt.demu.red;
    7. 

  7.     return 301 https://$host$request_uri;
    8. 

  8. }
    9. 

  9. 

  10. server {
    11. 

  11.     listen 443 ssl;
    12. 

  12.     listen [::]:443 ssl;
    13. 

  13.     server_name tt.demu.red;
    14. 

  14.     root /var/www/tt-rss;
    15. 

  15. 

  16.     access_log /var/log/nginx/ttrss_access.log;
    17. 

  17.     error_log /var/log/nginx/ttrss_error.log;
    18. 

  18. 

  19.     ## Disable all methods besides HEAD, GET and POST.
    20. 

  20.     if ($request_method !~ ^(GET|HEAD|POST)$ ) {
    21. 

  21.         return 444;
    22. 

  22.     }
    23. 

  23. 

  24.     index index.php index.html;
    25. 

  25. 

  26.     ## Include certbot fix
    27. 

  27.     include /etc/nginx/snippets/nginx.well-known.conf;
    28. 

  28. 

  29.     ## Include ssl
    30. 

  30.     include /etc/nginx/snippets/nginx.ssl.conf;
    31. 

  31. 

  32.     ### Deny Stuffs ### {{{
    33. 

  33.         ## Protect specific TXT and config files
    34. 

  34.         location ~ /(\.|readme.html|readme.md|changelog.txt|changelog.md|contributing.txt|contributing.md|license.txt|license.md|legalnotice|privacy.txt|privacy.md|security.txt|security.md|sample-.*txt)
    35. 

  35.         {
    36. 

  36.             deny all;
    37. 

  37.         }
    38. 

  38. 

  39.         ## Protect .git files
    40. 

  40.         location ~ /\.git/ {
    41. 

  41.             access_log off;
    42. 

  42.             log_not_found off;
    43. 

  43.             deny all;
    44. 

  44.         }
    45. 

  45.     ### End Deny Stuffs ### }}}
    46. 

  46. 

  47.     location / {
    48. 

  48.         access_log /var/log/nginx/ttrss_access.log;
    49. 

  49.         error_log /var/log/nginx/ttrss_error.log info;
    50. 

  50. 

  51.         #location ~ /(js|css|images|lib|themes) {
    52. 

  52.             #access_log off;
    53. 

  53.         #}
    54. 

  54. 

  55.         location ~ ^(.+\.php)(.*)$ {
    56. 

  56.             fastcgi_split_path_info ^(.+\.php)(.*)$;
    57. 

  57.             try_files $uri =404;
    58. 

  58.             fastcgi_pass unix:/var/run/php/php7.4-fpm.sock;
    59. 

  59.             fastcgi_index index.php;
    60. 

  60.             ## https://stackoverflow.com/questions/28490391/how-to-properly-configure-alias-directive-in-nginx
    61. 

  61.             fastcgi_param SCRIPT_FILENAME $request_filename;
    62. 

  62.             include fastcgi_params;
    63. 

  63.         }
    64. 

  64.     }
    65. 

  65. 

  66.     ## Error Redirects
    67. 

  67.     error_page 403 /error.html;
    68. 

  68.     error_page 404 /error.html;
    69. 

  69.     error_page 405 /error.html;
    70. 

  70.     error_page 500 501 502 503 504 /error.html;
    71. 

  71. 

  72.     location = /error.html {
    73. 

  73.         root /var/www/error;
    74. 

  74.         internal;
    75. 

  75.     }
    76. 

  76. }
    77. 

  77.