zino/docker-nginx
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

modified

Browse Source
This commit is contained in:
zino
2023-11-27 13:21:37 +01:00
parent 1f98082812
commit 8c136cb32b
1 changed files with 10 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
volumes/conf.d/portainer.armos.zinomedia.de.conf
View File

@@ -2,12 +2,19 @@ server {
listen *:443 ssl;
listen [::]:443 ssl;
server_name portainer.armos.zinomedia.de www.portainer.armos.zinomedia.de;
server_name portainer.armos.zinomedia.de;
error_log /var/log/nginx/error.log error;
ssl_certificate /etc/letsencrypt/live/portainer.armos.zinomedia.de/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/portainer.armos.zinomedia.de/privkey.pem;
# SSL optimizations
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers 'ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384';
ssl_prefer_server_ciphers on;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 10m;
location / {
add_header Content-Security-Policy "font-src * data: blob: 'unsafe-inline'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';" always;
proxy_set_header X-Forwarded-Host $host:$server_port;
@@ -19,12 +26,8 @@ server {
}
server {
if ($host = portainer.armos.zinomedia.de) {
return 301 https://$host$request_uri;
}
server_name server_name portainer.armos.zinomedia.de www.portainer.armos.zinomedia.de;
server_name portainer.armos.zinomedia.de;
listen 80;
listen [::]:80;
return 404;
return 301 https://$host$request_uri;
}