diegor2
/
nginx.d
ter-fork dari piratas/nginx.d


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174
							## Configuração para gti.partidopirata.org
server {
  listen 80;
  listen [::]:80;
  server_name gti.partidopirata.org;
  return 301 https://gti.partidopirata.org$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name *.gti.partidopirata.org;
  return 301 http://gti.partidopirata.org$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name github.partidopirata.org;
  return 301 https://github.partidopirata.org$request_uri;
}
server {
  listen 80;
  listen [::]:80;
  server_name *.github.partidopirata.org;
  return 301 http://github.partidopirata.org$request_uri;
}

## SSL
server {
  listen 443 ssl;
  listen [::]:443 ssl;
  ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  ssl_prefer_server_ciphers on;
  ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
  ssl_ecdh_curve secp384r1;
  ssl_session_cache shared:SSL:10m;
  ssl_session_tickets off;
  ssl_stapling on;
  ssl_stapling_verify on;
  resolver 208.67.220.220 208.67.222.222 valid=300s;
  resolver_timeout 5s;
  add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
  add_header X-Frame-Options SAMEORIGIN;
  add_header X-Content-Type-Options nosniff;
  ssl_certificate /etc/letsencrypt/live/partidopirata.org-0001/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/partidopirata.org-0001/privkey.pem;
  ssl_trusted_certificate /etc/letsencrypt/live/partidopirata.org-0001/chain.pem;

  server_name gti.partidopirata.org;
  root /var/www/git/gti-site;

  location / {
    proxy_pass https://piratas.github.io/;
  }
  location /entre-no-gti {
    return 307 /;
  }
  location /formulario {
    return 307 /;
  }
  location /github {
    return 307 https://github.com/piratas/gti/issues;
  }
  location /loomio {
    return 307 https://www.loomio.org/g/JDmI4ZKv/;
  }
  location /notabug {
    return 307 https://notabug.org/piratas/organizacao/issues;
  }
  location /taiga {
    return 307 https://tree.taiga.io/project/tipirata;
  }
  location /wiki {
    return 307 https://wiki.partidopirata.org/wiki/gti;
  }
}
server {
  listen 443 ssl;
  listen [::]:443 ssl;
  ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  ssl_prefer_server_ciphers on;
  ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH";
  ssl_ecdh_curve secp384r1;
  ssl_session_cache shared:SSL:10m;
  ssl_session_tickets off;
  ssl_stapling on;
  ssl_stapling_verify on;
  resolver 208.67.220.220 208.67.222.222 valid=300s;
  resolver_timeout 5s;
  add_header Strict-Transport-Security "max-age=63072000; includeSubdomains; preload";
  add_header X-Frame-Options SAMEORIGIN;
  add_header X-Content-Type-Options nosniff;
  ssl_certificate /etc/letsencrypt/live/partidopirata.org-0001/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/partidopirata.org-0001/privkey.pem;
  ssl_trusted_certificate /etc/letsencrypt/live/partidopirata.org-0001/chain.pem;

  server_name github.partidopirata.org;
  root /var/www/git/gti-site;

  location / {
    proxy_pass https://piratas.github.io/;
  }
  location /entre-no-gti {
    return 307 /;
  }
  location /formulario {
    return 307 /;
  }
  location /github {
    return 307 https://github.com/piratas/gti/issues;
  }
  location /loomio {
    return 307 https://www.loomio.org/g/JDmI4ZKv/;
  }
  location /notabug {
    return 307 https://notabug.org/piratas/organizacao/issues;
  }
  location /taiga {
    return 307 https://tree.taiga.io/project/tipirata;
  }
  location /wiki {
    return 307 https://wiki.partidopirata.org/wiki/gti;
  }
}

## Tor
server {
  listen 127.0.0.1:42915;
  allow 127.0.0.1;
  deny all;

  add_header X-Frame-Options SAMEORIGIN;
  add_header X-Content-Type-Options nosniff;

  server_name gticmrgitxepelle.onion;
  root /var/www/git/gti-site;

  location / {
    proxy_pass https://piratas.github.io/;
  }
  location /entre-no-gti {
    return 307 /;
  }
  location /formulario {
    return 307 /;
  }
  location /github {
    return 307 https://github.com/piratas/gti/issues;
  }
  location /loomio {
    return 307 https://www.loomio.org/g/JDmI4ZKv/;
  }
  location /notabug {
    return 307 https://notabug.org/piratas/organizacao/issues;
  }
  location /taiga {
    return 307 https://tree.taiga.io/project/tipirata;
  }
  location /wiki {
    return 307 https://wiki.partidopirata.org/wiki/gti;
  }
}
server {
  listen 127.0.0.1:42903;
  allow 127.0.0.1;
  deny all;

  add_header X-Frame-Options SAMEORIGIN;
  add_header X-Content-Type-Options nosniff;

  server_name joxeelupougy3vqq.onion;
  return 301 http://gticmrgitxepelle.onion$request_uri;
}