zino/docker-nginx
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

m

Browse Source
This commit is contained in:
zino
2023-12-09 13:50:37 +01:00
parent 42295b30df
commit 07a3d78137
3 changed files with 63 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docker-compose.yml
View File

@@ -18,7 +18,8 @@ services:
- ./volumes/nginx.conf:/etc/nginx/nginx.conf - ./volumes/nginx.conf:/etc/nginx/nginx.conf
- ./volumes/logs:/var/log/nginx - ./volumes/logs:/var/log/nginx
- /etc/letsencrypt:/etc/letsencrypt - /etc/letsencrypt:/etc/letsencrypt
- /opt/docker/docker-wordpress-4netplayers/volumes/wordpress:/usr/share/nginx/html/4netplayers.zinomedia.de - ../docker-wordpress-4netplayers/volumes/wordpress:/usr/share/nginx/html/4netplayers.zinomedia.de
- ../docker-wordpress-zinomedia/volumes/wordpress:/usr/share/nginx/html/zinomedia.de
networks: networks:
web: web:

42
volumes/conf.d/zinomedia.de.conf Normal file
View File

@@ -0,0 +1,42 @@
server {
listen 443 ssl;
listen [::]:443 ssl;
server_name zinomedia.de;
access_log off;
error_log /var/log/nginx/error.log error;
root /usr/share/nginx/html/zinomedia.de;
index index.php;
client_max_body_size 128m;
ssl_certificate /etc/letsencrypt/live/zinomedia.de/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/zinomedia.de/privkey.pem;
include "snippets/ssl-optimizations.conf";
include "snippets/wordpress-optimizations.conf";
add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:;" always;
location / {
resolver 127.0.0.11;
set $upstream "zinomedia-wordpress:80";
try_files $uri $uri/ /index.php?$args;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-Host $host:$server_port;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_pass http://$upstream;
}
}
server {
listen 80;
listen [::]:80;
server_name zinomedia.de;
return 301 https://$host$request_uri;
}

19
volumes/snippets/wordpress-optimizations.conf Normal file
View File

@@ -0,0 +1,19 @@
location ~ /(\.user\.ini|debug\.log) {
deny all;
}
location = /favicon.ico {
log_not_found off;
access_log off;
}
location = /robots.txt {
allow all;
log_not_found off;
access_log off;
}
location ~* \.(js|css|png|jpg|jpeg|gif|ico)$ {
expires max;
log_not_found off;
}