arti24
/
proxy-nginx
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
proxy-nginx/nginx-config/https/https-bodypainter-eu.conf

60 lines
2.5 KiB
Plaintext
Executable File
Raw Blame History

# Limitowanie requestów (pozostawiamy bez zmian)
limit_req_zone $binary_remote_addr zone=ip_limit:10m rate=2r/s;
# Konfiguracja cache (nowa część)
proxy_cache_path /var/cache/nginx05GB levels=1:2 keys_zone=STATIC:50m inactive=24h max_size=500m use_temp_path=off;
proxy_cache_path /var/cache/nginx2GB levels=1:2 keys_zone=MEDIA:100m inactive=7d max_size=2g use_temp_path=off;\
error_log /var/log/nginx/error.log notice;
server {
listen 443 ssl;
server_name www.bodypainter.eu;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_certificate /letsencrypt/live/bodypainter.eu/fullchain.pem;
ssl_certificate_key /letsencrypt/live/bodypainter.eu/privkey.pem;
return 301 https://bodypainter.eu$request_uri;
}
server {
listen 443 ssl;
server_name bodypainter.eu;
server_tokens off;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_certificate /letsencrypt/live/bodypainter.eu/fullchain.pem;
ssl_certificate_key /letsencrypt/live/bodypainter.eu/privkey.pem;
location / {
limit_req zone=ip_limit burst=20 nodelay;
proxy_pass http://arti24-container:3000;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Port $server_port;
}
# Nowe lokacje dla cache'owania
location ~* \.(jpg|jpeg|png|gif|ico|webp)$ {
proxy_pass http://arti24-container:3000;
proxy_cache MEDIA;
proxy_cache_valid 200 30d;
proxy_cache_use_stale error timeout updating;
proxy_cache_lock on;
proxy_cache_key "$scheme$host$request_uri";
add_header X-Cache-Status $upstream_cache_status always;
expires 1y;
access_log off;
proxy_ignore_headers Cache-Control Set-Cookie;
proxy_hide_header Set-Cookie;
}
}
Reference in New Issue View Git Blame Copy Permalink