aboutsummaryrefslogtreecommitdiffstats
path: root/nginx/sandcrawler-minio
diff options
context:
space:
mode:
authorBryan Newbold <bnewbold@archive.org>2022-12-23 15:52:02 -0800
committerBryan Newbold <bnewbold@archive.org>2022-12-23 15:52:02 -0800
commitf3a721a9dce8801b78f7bc31e88dc912b0ec1dba (patch)
treefdae9373e78671d0031f83045e6c76de9ad616cf /nginx/sandcrawler-minio
parent8c2c354a74064f2d66644af8f4e44d74bf322e1f (diff)
downloadsandcrawler-f3a721a9dce8801b78f7bc31e88dc912b0ec1dba.tar.gz
sandcrawler-f3a721a9dce8801b78f7bc31e88dc912b0ec1dba.zip
move a bunch of top-level files/directories to ./extra/
Diffstat (limited to 'nginx/sandcrawler-minio')
-rw-r--r--nginx/sandcrawler-minio57
1 files changed, 0 insertions, 57 deletions
diff --git a/nginx/sandcrawler-minio b/nginx/sandcrawler-minio
deleted file mode 100644
index 2e9bfe3..0000000
--- a/nginx/sandcrawler-minio
+++ /dev/null
@@ -1,57 +0,0 @@
-
-server {
- listen 80;
- listen [::]:80;
- listen 443 ssl http2;
- listen [::]:443 ssl http2;
- server_name sandcrawler-minio.fatcat.wiki minio.sandcrawler.org;
-
- ssl_certificate /etc/letsencrypt/live/sandcrawler-minio.fatcat.wiki/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/sandcrawler-minio.fatcat.wiki/privkey.pem;
-
- #add_header Content-Security-Policy "default-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'";
- add_header X-Frame-Options "SAMEORIGIN"; # 'always' if nginx > 1.7.5
- add_header X-Content-Type-Options "nosniff"; # 'always' if nginx > 1.7.5
- add_header X-Xss-Protection "1";
- # Enable STS with one year period (breaks http; optional)
- #add_header Strict-Transport-Security "max-age=31557600; includeSubDomains";
-
- error_log /var/log/nginx/sandcrawler-errors.log;
- access_log /dev/null;
-
- if ($scheme = http) {
- return 301 https://$server_name$request_uri;
- }
-
- location /minio/ {
-
- # allows all HTTP verbs
-
- proxy_pass http://localhost:9000;
- proxy_redirect off;
-
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header Host $http_host;
- }
-
- location / {
- if ($request_method !~ "GET") {
- return 403;
- break;
- }
-
- proxy_pass http://localhost:9000;
- proxy_redirect off;
-
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header Host $http_host;
- }
-
- # Let's Encrypt SSL Certs
- location /.well-known/acme-challenge/ {
- root /var/www/letsencrypt;
- autoindex off;
- }
-}