Von Lars, 6 Monate vorher, geschrieben in Plain Text.
Einbetten
  1. server {
  2.   listen 443 ssl http2;
  3.   server_name pwm.domain.tld;
  4.  
  5.   # Specify SSL config if using a shared one.
  6.   #include conf.d/ssl/ssl.conf;
  7.  
  8.   # SSL
  9.   ssl_certificate /etc/letsencrypt/live/pwm.domain.tld/fullchain.pem; # managed by Certbot
  10.   ssl_certificate_key /etc/letsencrypt/live/pwm.domain.tld/privkey.pem; # managed by Certbot
  11.   ssl_trusted_certificate /etc/letsencrypt/live/pwm.domain.tld/chain.pem;
  12.   # Allow large attachments
  13.   client_max_body_size 128M;
  14.   # security
  15.   #include nginxconfig.io/security.conf;
  16.  
  17.   location / {
  18.     proxy_pass http://172.24.0.1:4444;
  19.     proxy_set_header Host $host;
  20.     proxy_set_header X-Real-IP $remote_addr;
  21.     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  22.     proxy_set_header X-Forwarded-Proto $scheme;
  23.   }
  24.  
  25.   location /notifications/hub {
  26.     proxy_pass http://172.24.0.1:3012;
  27.     proxy_set_header Upgrade $http_upgrade;
  28.     proxy_set_header Connection "upgrade";
  29.   }
  30.  
  31.   location /notifications/hub/negotiate {
  32.     proxy_pass http://172.24.0.1:4444;
  33.   }
  34.  
  35.   # Optionally add extra authentication besides the AUTH_TOKEN
  36.   # If you don't want this, leave this part out
  37.   location /admin {
  38.     # See: https://docs.nginx.com/nginx/admin-guide/security-controls/configuring-http-basic-authentication/
  39.     auth_basic "Admin Bereich Bitward";
  40.     auth_basic_user_file /etc/apache2/.htpasswd;
  41.  
  42.     proxy_set_header Host $host;
  43.     proxy_set_header X-Real-IP $remote_addr;
  44.     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  45.     proxy_set_header X-Forwarded-Proto $scheme;
  46.  
  47.     proxy_pass http://172.24.0.1:4444;
  48.   }
  49.  
  50.  
  51. }
captcha