zino/docker-nginx
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

m

Browse Source
This commit is contained in:
zino
2023-12-06 00:30:34 +01:00
parent a697ffe38a
commit c8e7eb665b
3 changed files with 8 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
volumes/conf.d/code.zinomedia.de.conf
View File

@@ -12,17 +12,11 @@ server {
ssl_certificate /etc/letsencrypt/live/code.zinomedia.de/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/code.zinomedia.de/privkey.pem;
# SSL Optimizations
ssl_protocols TLSv1.2 TLSv1.3;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 10m;
ssl_prefer_server_ciphers on;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:;" always;
include "snippets/ssl-optimizations.conf";
include "snippets/enable-vouch.conf";
add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:;" always;
location / {
resolver 127.0.0.11;
set $upstream "http://code-server:8443";

1
volumes/conf.d/vouch.armos.zinomedia.de.conf
View File

@@ -22,7 +22,6 @@ server {
location / {
resolver 127.0.0.11;
set $upstream "http://vouch:9090";
#proxy_set_header Host $http_host;
proxy_pass $upstream;
}
}

5
volumes/snippets/ssl-optimizations.conf Normal file
View File

@@ -0,0 +1,5 @@
ssl_protocols TLSv1.2 TLSv1.3;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 10m;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;