summaryrefslogtreecommitdiffstats
path: root/server/beziapp.conf
diff options
context:
space:
mode:
Diffstat (limited to 'server/beziapp.conf')
-rw-r--r--server/beziapp.conf62
1 files changed, 62 insertions, 0 deletions
diff --git a/server/beziapp.conf b/server/beziapp.conf
new file mode 100644
index 0000000..1aaa138
--- /dev/null
+++ b/server/beziapp.conf
@@ -0,0 +1,62 @@
+server {
+ listen 0.0.0.0:80;
+ listen [::]:80;
+ server_name .app.gimb.tk;
+ return 301 https://app.gimb.tk$request_uri;
+ port_in_redirect off;
+ server_name_in_redirect off;
+}
+server {
+ listen 0.0.0.0:443 http2 ssl;
+ listen [::]:443 http2 ssl;
+ server_name .app.gimb.tk;
+ ssl_certificate /etc/ssl/sslforfree/gimb.tk.crtca;
+ ssl_certificate_key /etc/ssl/sslforfree/gimb.tk.key;
+ root /home/gimb/beziapp.github.io;
+ location / {
+ if ($http_origin ~ \.?gimb\.tk$) {
+ set $cors 'true';
+ set $both_conditions "P";
+ add_header "x-debug-http-origin-check" "passed";
+ }
+ if ($cors = 'true') {
+ add_header "Access-Control-Allow-Origin" $http_origin always;
+ add_header "Access-Control-Allow-Credentials" "true" always;
+ add_header "Access-Control-Allow-Methods" "GET, POST, PATCH, PUT, DELETE, OPTIONS" always;
+ add_header 'Access-Control-Allow-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always;
+ add_header 'Access-Control-Expose-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always;
+ }
+ if ($request_method = 'OPTIONS') {
+ set $both_conditions "${both_conditions}D";
+ }
+ if ($both_conditions = PD) {
+ add_header "Access-Control-Allow-Origin" $http_origin always;
+ add_header "Access-Control-Allow-Credentials" "true" always;
+ add_header "Access-Control-Allow-Methods" "GET, POST, PATCH, PUT, DELETE, OPTIONS" always;
+ add_header 'Access-Control-Allow-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always;
+ add_header 'Access-Control-Expose-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always;
+ add_header 'Access-Control-Max-Age' -1;
+ add_header 'Content-Type' 'text/plain charset=UTF-8';
+ add_header 'Content-Length' 0;
+ return 204;
+ }
+ try_files $uri $uri/ =404;
+ }
+
+# pass PHP scripts to FastCGI server
+#
+ location ~ \.php$ {
+ include snippets/fastcgi-php.conf;
+#
+# # With php-fpm (or other unix sockets):
+ fastcgi_pass unix:/run/php/php7.3-fpm.sock;
+# # With php-cgi (or other tcp sockets):
+# fastcgi_pass 127.0.0.1:9000;
+ }
+ location /clear-site-data {
+ add_header 'clear-site-data' '"*"';
+ add_header 'content-type' 'text/plain';
+ return 200 "data clear requested, you can go back now.";
+ }
+}
+