API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 18th, 2024
89
0
263 days
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
JSON 2.68 KB | None | 0 0
raw download clone embed print report
  1. map $http_upgrade $connection_upgrade {
  2.     default upgrade;
  3.     '' close;
  4. }
  5.     server {
  6.  
  7.     server_name nextcloud.domain.com;
  8.     add_header Strict-Transport-Security "max-age=15768000; includeSubdomains; preload;";
  9.  
  10.     set $upstream 192.168.1.14:80;
  11.  
  12.     location / {
  13.  
  14.     proxy_pass_header Authorization;
  15.     proxy_pass http://$upstream;
  16.     proxy_set_header Host $host;
  17.     proxy_set_header X-Real-IP $remote_addr;
  18.     proxy_set_header Accept-Encoding "";
  19.     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  20.     proxy_set_header X-Forwarded-Port $server_port;    
  21.     proxy_set_header X-Forwarded-Host $server_name;
  22.     proxy_set_header X-Nginx-Proxy true;
  23.  
  24.     client_body_buffer_size 512k;
  25.     proxy_read_timeout 86400s;
  26.     client_max_body_size 0;
  27.  
  28. # Safari IOS fix
  29.     proxy_cookie_path / /;
  30.     proxy_set_header Cookie $http_cookie;
  31.  
  32.     # Websocket
  33.     proxy_http_version 1.1;
  34.     proxy_set_header Upgrade $http_upgrade;
  35.     proxy_set_header Connection "upgrade";
  36.     proxy_set_header Connection "Keep-Alive";
  37.     proxy_set_header Proxy-Connection "Keep-Alive";
  38.  
  39. # Remove X-Powered-By, which is an information leak
  40.     fastcgi_hide_header X-Powered-By;
  41. }
  42.     location ^~ /.well-known {
  43.         # The rules in this block are an adaptation of the rules
  44.         # in the Nextcloud `.htaccess` that concern `/.well-known`.
  45.  
  46.         location = /.well-known/carddav { return 301 $scheme://$http_host/remote.php/dav/; }
  47.         location = /.well-known/caldav  { return 301 $scheme://$http_host/remote.php/dav/; }
  48.         location = /.well-known/nodeinfo { return 301 $scheme://$http_host/index.php/.well-known/nodeinfo; }
  49.         location = /.well-known/webfinger { return 301 $scheme://$http_host/index.php/.well-known/webfinger; }
  50.  
  51.         # Let Nextcloud's API for `/.well-known` URIs handle all other
  52.        # requests by passing them to the front-end controller.
  53.        return 301 $scheme://$http_host/index.php$request_uri;
  54.    }
  55.  
  56.    location /ocm-provider {
  57.         return 301 $scheme://$host/index.php/ocm-provider;
  58. }
  59.  
  60.    listen 443 ssl http2; # managed by Certbot
  61.    ssl_certificate /etc/letsencrypt/live/nextcloud.domain.com/fullchain.pem; # managed by Certbot
  62.    ssl_certificate_key /etc/letsencrypt/live/nextcloud.domain.com/privkey.pem; # managed by Certbot
  63.    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  64.    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
  65.  
  66. }    server {
  67.    if ($host = nextcloud.domain.com) {
  68.        return 301 https://$host$request_uri;
  69.    } # managed by Certbot
  70.  
  71.  
  72.    server_name nextcloud.domain.com;
  73.    listen 80;
  74.    return 404; # managed by Certbot
  75.  
  76.  
  77. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!