ansible/roles/reverse_proxy_http/templates/nginx/sites-available/reverse_proxy

{{ ansible_managed | comment }}

include "/etc/nginx/snippets/connection_upgrade.conf";

server {
	listen 80;
	listen [::]:80;

	server_name {{ item.from }};
	# Redirect to https
	location / {
		return 302 https://$host$request_uri;
	}

	include /etc/nginx/mime.types;
	default_type application/octet-stream;

	# FLoC you google
	add_header Permissions-Policy interest-cohort=();

	# "A man is not dead while his name is still spoken." -- Going Postal
	add_header X-Clacks-Overhead "GNU {{ ', '.join(in_memoriam) }}";
}

server {
	listen 443 ssl http2;
	listen [::]:443 ssl http2;
	ssl_certificate /etc/nginx/certs/{{ item.from }}.crt;
	ssl_certificate_key /etc/nginx/certs/{{ item.from }}.key;


	server_name {{ item.from }};

	# Logs
	access_log /var/log/nginx/{{ item.from }}.log;
	error_log /var/log/nginx/{{ item.from }}_error.log;

	location / {
		proxy_pass {{ item.to }};
		include "/etc/nginx/snippets/options-proxypass.conf";
	}

	include /etc/nginx/mime.types;
	default_type application/octet-stream;

	# FLoC you google
	add_header Permissions-Policy interest-cohort=();

	# "A man is not dead while his name is still spoken." -- Going Postal
	add_header X-Clacks-Overhead "GNU {{ ', '.join(in_memoriam) }}";
}
add site-available template 2020-10-12 23:02:15 +02:00			`{{ ansible_managed \| comment }}`

fix an nginx bug and finish the config for certbot 2020-10-13 09:39:01 +02:00			`include "/etc/nginx/snippets/connection_upgrade.conf";`

add site-available template 2020-10-12 23:02:15 +02:00			`server {`
			`listen 80;`
			`listen [::]:80;`

			`server_name {{ item.from }};`
			`# Redirect to https`
			`location / {`
			`return 302 https://$host$request_uri;`
			`}`
stuffs 2021-04-05 19:02:21 +02:00
add webassembly to mime type 2021-05-11 22:34:24 +02:00			`include /etc/nginx/mime.types;`
			`default_type application/octet-stream;`

FLoC google 2021-05-12 10:39:18 +02:00			`# FLoC you google`
			`add_header Permissions-Policy interest-cohort=();`

add webassembly to mime type 2021-05-11 22:34:24 +02:00			`# "A man is not dead while his name is still spoken." -- Going Postal`
			`add_header X-Clacks-Overhead "GNU {{ ', '.join(in_memoriam) }}";`
add site-available template 2020-10-12 23:02:15 +02:00			`}`

			`server {`
			`listen 443 ssl http2;`
			`listen [::]:443 ssl http2;`
add certbot, wip 2020-10-13 01:25:02 +02:00			`ssl_certificate /etc/nginx/certs/{{ item.from }}.crt;`
			`ssl_certificate_key /etc/nginx/certs/{{ item.from }}.key;`
add site-available template 2020-10-12 23:02:15 +02:00

add certbot, wip 2020-10-13 01:25:02 +02:00			`server_name {{ item.from }};`
add site-available template 2020-10-12 23:02:15 +02:00
			`# Logs`
			`access_log /var/log/nginx/{{ item.from }}.log;`
			`error_log /var/log/nginx/{{ item.from }}_error.log;`

			`location / {`
			`proxy_pass {{ item.to }};`
			`include "/etc/nginx/snippets/options-proxypass.conf";`
			`}`
stuffs 2021-04-05 19:02:21 +02:00
add webassembly to mime type 2021-05-11 22:34:24 +02:00			`include /etc/nginx/mime.types;`
			`default_type application/octet-stream;`

FLoC google 2021-05-12 10:39:18 +02:00			`# FLoC you google`
			`add_header Permissions-Policy interest-cohort=();`

add webassembly to mime type 2021-05-11 22:34:24 +02:00			`# "A man is not dead while his name is still spoken." -- Going Postal`
			`add_header X-Clacks-Overhead "GNU {{ ', '.join(in_memoriam) }}";`
add site-available template 2020-10-12 23:02:15 +02:00			`}`