self/infra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

prod

Browse Source
This commit is contained in:
Administrator 2022-10-20 10:55:26 +03:00
parent 15018aa4ed
commit 5491083759
1 changed files with 4 additions and 59 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

63
nginx/nginx-prod/nginx-prod.conf
View File

@ -157,7 +157,9 @@ http {
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name battleship.sprinthub.ru;
server_name ~^(?<domain>\w+)\.sprinthub\.ru$;
resolver 127.0.0.11 ipv6=off;
ssl_certificate /etc/nginx/fullchain.pem;
ssl_certificate_key /etc/nginx/privkey.pem;
@ -169,64 +171,7 @@ http {
add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
location / {
proxy_pass http://battleship-nginx:1238/;
}
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name dev.sprinthub.ru;
ssl_certificate /etc/nginx/fullchain.pem;
ssl_certificate_key /etc/nginx/privkey.pem;
add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-XSS-Protection "1; mode=block" always;
add_header X-Content-Type-Options "nosniff" always;
add_header Referrer-Policy "no-refferer-when-downgrade" always;
add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
location / {
proxy_pass http://dev-nginx:1238/;
}
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name exchange.sprinthub.ru;
ssl_certificate /etc/nginx/fullchain.pem;
ssl_certificate_key /etc/nginx/privkey.pem;
add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-XSS-Protection "1; mode=block" always;
add_header X-Content-Type-Options "nosniff" always;
add_header Referrer-Policy "no-refferer-when-downgrade" always;
add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
location / {
proxy_pass http://exchange-nginx:1238/;
}
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name b-jokes.sprinthub.ru;
ssl_certificate /etc/nginx/fullchain.pem;
ssl_certificate_key /etc/nginx/privkey.pem;
add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-XSS-Protection "1; mode=block" always;
add_header X-Content-Type-Options "nosniff" always;
add_header Referrer-Policy "no-refferer-when-downgrade" always;
add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
location / {
proxy_pass http://b-jokes-nginx:1238/;
proxy_pass http://$domain-nginx:1238$request_uri;
}
}