2019-03-04 09:34:47 +01:00
|
|
|
# {{ ansible_managed }}
|
|
|
|
|
|
|
|
server {
|
2019-03-14 10:53:44 +01:00
|
|
|
# Common proxy snippet
|
2019-03-04 09:34:47 +01:00
|
|
|
include "snippets/proxy-common.conf";
|
|
|
|
|
2019-03-14 10:53:44 +01:00
|
|
|
# Set witch server name we define
|
|
|
|
server_name auro.re;
|
|
|
|
|
|
|
|
# Permanentely moved to HTTPS
|
|
|
|
return 301 https://$host$request_uri;
|
2019-03-04 09:34:47 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
server {
|
2019-03-14 10:53:44 +01:00
|
|
|
# Common proxy snippet
|
2019-03-04 09:34:47 +01:00
|
|
|
include "snippets/proxy-common-ssl.conf";
|
2019-03-14 10:53:44 +01:00
|
|
|
|
|
|
|
# Set witch server name we define
|
2019-03-04 09:34:47 +01:00
|
|
|
server_name auro.re;
|
|
|
|
|
|
|
|
# Separate log files
|
|
|
|
access_log /var/log/nginx/main.access.log;
|
|
|
|
error_log /var/log/nginx/main.error.log;
|
|
|
|
|
|
|
|
# Use LetsEncrypt SSL
|
|
|
|
ssl_certificate /etc/letsencrypt/live/auro.re/fullchain.pem;
|
|
|
|
ssl_certificate_key /etc/letsencrypt/live/auro.re/privkey.pem;
|
|
|
|
ssl_trusted_certificate /etc/letsencrypt/live/auro.re/chain.pem;
|
|
|
|
|
|
|
|
location / {
|
|
|
|
proxy_redirect off;
|
|
|
|
proxy_pass http://www.adm.auro.re;
|
|
|
|
proxy_set_header Host auro.re;
|
|
|
|
proxy_set_header P-Real-IP $remote_addr;
|
|
|
|
proxy_set_header X-Forwarded-For $remote_addr;
|
|
|
|
|
|
|
|
# "A man is not dead while his name is still spoken." -- Going Postal
|
|
|
|
add_header X-Clacks-Overhead "GNU Terry Pratchett";
|
|
|
|
}
|
|
|
|
|
|
|
|
# For Matrix identity server
|
|
|
|
location /_matrix/identity {
|
|
|
|
proxy_pass http://synapse.adm.auro.re:8090/_matrix/identity;
|
|
|
|
proxy_set_header Host $host;
|
|
|
|
proxy_set_header X-Forwarded-For $remote_addr;
|
|
|
|
}
|
|
|
|
|
|
|
|
# For Matrix Synapse
|
|
|
|
location /_matrix {
|
|
|
|
proxy_pass http://synapse.adm.auro.re:8008;
|
|
|
|
proxy_set_header X-Forwarded-For $remote_addr;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
server {
|
2019-03-14 10:53:44 +01:00
|
|
|
listen 8448 ssl;
|
|
|
|
listen [::]:8448 ssl;
|
|
|
|
|
|
|
|
# Set witch server name we define
|
2019-03-04 09:34:47 +01:00
|
|
|
server_name auro.re;
|
|
|
|
|
|
|
|
# Separate log files
|
|
|
|
access_log /var/log/nginx/main.access.log;
|
|
|
|
error_log /var/log/nginx/main.error.log;
|
|
|
|
|
|
|
|
# Use LetsEncrypt SSL
|
|
|
|
ssl_certificate /etc/letsencrypt/live/auro.re/fullchain.pem;
|
|
|
|
ssl_certificate_key /etc/letsencrypt/live/auro.re/privkey.pem;
|
|
|
|
ssl_trusted_certificate /etc/letsencrypt/live/auro.re/chain.pem;
|
|
|
|
|
|
|
|
# For Matrix Synapse federation
|
|
|
|
location / {
|
|
|
|
proxy_pass http://synapse.adm.auro.re:8008;
|
|
|
|
proxy_set_header X-Forwarded-For $remote_addr;
|
|
|
|
}
|
|
|
|
}
|