events {} http { client_max_body_size 150m; map $http_upgrade $connection_upgrade { default upgrade; '' close; } server { listen 80; server_name gitlab.sprinthub.ru; location / { proxy_pass http://dev.sprinthub.ru:1234/; } } server { listen 80; server_name *.sprinthub.ru; return 301 https://$host$request_uri; } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name gitlab.sprinthub.ru; ssl_certificate /etc/nginx/fullchain.pem; ssl_certificate_key /etc/nginx/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; location / { proxy_pass http://dev.sprinthub.ru:1234/; } } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name swarmpit.sprinthub.ru; ssl_certificate /etc/nginx/fullchain.pem; ssl_certificate_key /etc/nginx/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; location / { proxy_pass http://dev.sprinthub.ru:888/; } } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name portainer.sprinthub.ru; ssl_certificate /etc/nginx/fullchain.pem; ssl_certificate_key /etc/nginx/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; location / { proxy_pass http://dev.sprinthub.ru:8888/; } location /api/websocket/ { proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection $connection_upgrade; proxy_set_header Host $host; proxy_pass http://dev.sprinthub.ru:8888/api/websocket/; } } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name rabbitmq.sprinthub.ru; ssl_certificate /etc/nginx/fullchain.pem; ssl_certificate_key /etc/nginx/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; location / { proxy_pass http://dev.sprinthub.ru:15672/; } } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name swarmpit.sprinthub.ru; ssl_certificate /etc/nginx/fullchain.pem; ssl_certificate_key /etc/nginx/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; location / { proxy_pass http://dev.sprinthub.ru:15672/; } } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name minio.sprinthub.ru; ssl_certificate /etc/nginx/fullchain.pem; ssl_certificate_key /etc/nginx/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; location / { proxy_pass http://dev.sprinthub.ru:9001/; } } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name ~^(?.*)\.sprinthub\.ru$; resolver 127.0.0.11 ipv6=off; ssl_certificate /etc/nginx/fullchain.pem; ssl_certificate_key /etc/nginx/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; proxy_set_header X-Real-IP $remote_addr; location / { proxy_pass http://$domain-nginx:1238$request_uri; } } server { listen 80; server_name yourgols.com; return 301 https://$host$request_uri; } server { listen 443 ssl http2; listen [::]:443 ssl http2; server_name yourgols.com; resolver 127.0.0.11 ipv6=off; ssl_certificate /etc/allinvest/fullchain.pem; ssl_certificate_key /etc/allinvest/privkey.pem; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-refferer-when-downgrade" always; add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; proxy_set_header X-Real-IP $remote_addr; proxy_set_header Host $host; proxy_set_header X-Forwarded-For $remote_addr; location / { proxy_pass http://yourgols-nginx:1238$request_uri; } } }