-
Notifications
You must be signed in to change notification settings - Fork 7
/
nginx-secure.conf
50 lines (41 loc) · 1.18 KB
/
nginx-secure.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
# Redirect FROM HTTP to HTTPS
server {
listen 80 default_server;
server_name _;
return 301 https://$host$request_uri;
}
# HTTPS Server
server {
listen 443 ssl default_server;
server_name _;
# Set a larger timeout
proxy_connect_timeout 6000;
proxy_send_timeout 6000;
proxy_read_timeout 6000;
send_timeout 6000;
# Configuration of the HTTPS-Certs
ssl_certificate /etc/ssl/dna/cert.crt;
ssl_certificate_key /etc/ssl/dna/cert.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
# Location for the Frontend
location / {
root /usr/share/nginx/html;
index index.html index.htm;
try_files $uri $uri/ /index.html;
}
# Proxy to the Backend
location /api/upload {
# Upload has a greater limit for upload-size
client_max_body_size 10M;
proxy_pass http://dnabackend:8080/api/upload;
}
# Proxy to the Backend
location /api/ {
proxy_pass http://dnabackend:8080/api/;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root /usr/share/nginx/html;
}
}