Pawlik
/
friendica-nginx
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Peticiones pull 0 Lanzamientos 0 Wiki Actividad
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Rama
Árbol: 8471d81a99
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '8471d81a99'
${ noResults }
friendica-nginx/friendica-nginx.conf

friendica-nginx.conf 3.6KB
Normal View Histórico Original

Dodanie pierwszej wersji pliku
hace 4 años
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128 
  1. ##

  2. # Friendica Nginx configuration

  3. # by Pawlik

  4. #

  5. # On Debian based distributions you can add this file to

  6. # /etc/nginx/sites-available

  7. #

  8. # Then customize to your needs. To enable the configuration

  9. # symlink it to /etc/nginx/sites-enabled and reload Nginx

  10. # using /etc/init.d/nginx reload

  11. ##

  12. 

  13. ##

  14. # You should look at the following URL's in order to grasp a solid understanding

  15. # of Nginx configuration files in order to fully unleash the power of Nginx.

  16. #

  17. # http://wiki.nginx.org/Pitfalls

  18. # http://wiki.nginx.org/QuickStart

  19. # http://wiki.nginx.org/Configuration

  20. ##

  21. 

  22. ##

  23. # This configuration assumes your domain is example.net

  24. # You have a separate subdomain friendica.example.net

  25. # You want all friendica traffic to be https

  26. # You have an SSL certificate and key for your subdomain

  27. # You have PHP FastCGI Process Manager (php7-fpm) running on localhost

  28. # You have Friendica installed in /mnt/friendica/www

  29. ##

  30. 

  31. server {

  32.   server_name ixyz.com;

  33.   index index.php;

  34.   root /home/root/friendica;

  35.   rewrite ^ https://xyz.com$request_uri? permanent;

  36. 

  37. }

  38. 

  39. ##

  40. # Configure Friendica with SSL

  41. #

  42. # All requests are routed to the front controller

  43. # except for certain known file types like images, css, etc.

  44. # Those are served statically whenever possible with a

  45. # fall back to the front controller (needed for avatars, for example)

  46. ##

  47. 

  48. server {

  49.   listen 443 ssl;

  50.   listen [::]:443 ssl;

  51.   server_name xyz.com

  52. 

  53.   index index.php;

  54.   root /home/root/friendica;

  55. 

  56.   ssl on;

  57.   ssl_certificate /etc/nginx/ssl/friendica.example.net.chain.pem;

  58.   ssl_certificate_key /etc/nginx/ssl/example.net.key;

  59.   ssl_session_timeout 5m;

  60.   ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;

  61.   ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv3:+EXP;

  62.   ssl_prefer_server_ciphers on;

  63.   fastcgi_param HTTPS on;

  64.   # allow uploads up to 20MB in size

  65.   client_max_body_size 20m;

  66.   client_body_buffer_size 128k;

  67. 

  68.   # rewrite to front controller as default rule

  69.   location / {

  70.     rewrite ^/(.*) /index.php?q=$uri&$args last;

  71.   }

  72. 

  73.   # make sure webfinger and other well known services aren't blocked

  74.   # by denying dot files and rewrite request to the front controller

  75.   location ^~ /.well-known/ {

  76.     allow all;

  77.     rewrite ^/(.*) /index.php?q=$uri&$args last;

  78.   }

  79.   include mime.types;

  80.   # statically serve these file types when possible

  81.   # otherwise fall back to front controller

  82.   # allow browser to cache them

  83.   # added .htm for advanced source code editor library

  84.   location ~* \.(jpg|jpeg|gif|png|ico|css|js|htm|html|ttf|svg)$ {

  85.     expires 30d;

  86.     try_files $uri /index.php?q=$uri&$args;

  87.   }

  88.   # block these file types

  89.   location ~* \.(tpl|md|tgz|log|out)$ {

  90.     deny all;

  91.   }

  92. 

  93.      location ~ [^/]\.php(/|$) {

  94. 

  95.      try_files $uri =404;

  96.     

  97.      fastcgi_split_path_info  ^(.+\.php)(/.+)$;

  98.   #  fastcgi_pass             unix:/var/run/php/php7.0-fpm.sock; 

  99.      fastcgi_pass             unix:/var/run/php/php7.3-fpm.sock; 

  100.      include fastcgi_params;

  101.      fastcgi_index index.php;     

  102.   #  fastcgi_param   PATH_INFO       $fastcgi_path_info;

  103.      fastcgi_param   SCRIPT_FILENAME $document_root$fastcgi_script_name;

  104.      

  105.      fastcgi_buffers 16 16k; 

  106.      fastcgi_buffer_size 32k;

  107.   }

  108. 

  109.   #  pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000

  110. #    location ~* \.php$ {

  111. #    fastcgi_split_path_info ^(.+\.php)(/.+)$;

  112.     # NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini

  113. 

  114.     # With php5-cgi alone:

  115.     # fastcgi_pass 127.0.0.1:9000;

  116. 

  117.     # With php5-fpm:

  118.   #  fastcgi_pass unix:/var/run/php5-fpm.sock;

  119.   #  fastcgi_index index.php;

  120.   #  include fastcgi_params;

  121.   # }

  122. 

  123.   # deny access to all dot files

  124.   location ~ /\. {

  125.     deny all;

  126.   }

  127. }

  128.