diff options
Diffstat (limited to 'server/beziapp.conf')
-rw-r--r-- | server/beziapp.conf | 62 |
1 files changed, 62 insertions, 0 deletions
diff --git a/server/beziapp.conf b/server/beziapp.conf new file mode 100644 index 0000000..1aaa138 --- /dev/null +++ b/server/beziapp.conf @@ -0,0 +1,62 @@ +server { + listen 0.0.0.0:80; + listen [::]:80; + server_name .app.gimb.tk; + return 301 https://app.gimb.tk$request_uri; + port_in_redirect off; + server_name_in_redirect off; +} +server { + listen 0.0.0.0:443 http2 ssl; + listen [::]:443 http2 ssl; + server_name .app.gimb.tk; + ssl_certificate /etc/ssl/sslforfree/gimb.tk.crtca; + ssl_certificate_key /etc/ssl/sslforfree/gimb.tk.key; + root /home/gimb/beziapp.github.io; + location / { + if ($http_origin ~ \.?gimb\.tk$) { + set $cors 'true'; + set $both_conditions "P"; + add_header "x-debug-http-origin-check" "passed"; + } + if ($cors = 'true') { + add_header "Access-Control-Allow-Origin" $http_origin always; + add_header "Access-Control-Allow-Credentials" "true" always; + add_header "Access-Control-Allow-Methods" "GET, POST, PATCH, PUT, DELETE, OPTIONS" always; + add_header 'Access-Control-Allow-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always; + add_header 'Access-Control-Expose-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always; + } + if ($request_method = 'OPTIONS') { + set $both_conditions "${both_conditions}D"; + } + if ($both_conditions = PD) { + add_header "Access-Control-Allow-Origin" $http_origin always; + add_header "Access-Control-Allow-Credentials" "true" always; + add_header "Access-Control-Allow-Methods" "GET, POST, PATCH, PUT, DELETE, OPTIONS" always; + add_header 'Access-Control-Allow-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always; + add_header 'Access-Control-Expose-Headers' 'Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,Authorization' always; + add_header 'Access-Control-Max-Age' -1; + add_header 'Content-Type' 'text/plain charset=UTF-8'; + add_header 'Content-Length' 0; + return 204; + } + try_files $uri $uri/ =404; + } + +# pass PHP scripts to FastCGI server +# + location ~ \.php$ { + include snippets/fastcgi-php.conf; +# +# # With php-fpm (or other unix sockets): + fastcgi_pass unix:/run/php/php7.3-fpm.sock; +# # With php-cgi (or other tcp sockets): +# fastcgi_pass 127.0.0.1:9000; + } + location /clear-site-data { + add_header 'clear-site-data' '"*"'; + add_header 'content-type' 'text/plain'; + return 200 "data clear requested, you can go back now."; + } +} + |