github.com/EngineerKamesh/gofullstack@v0.0.0-20180609171605-d41341d7d4ee/volume4/section2/gopherface/config/nginx.conf (about) 1 worker_processes 1; 2 3 error_log /var/log/nginx/error.log warn; 4 pid /var/run/nginx.pid; 5 6 events { 7 worker_connections 1024; 8 } 9 10 http { 11 include /etc/nginx/mime.types; 12 default_type application/octet-stream; 13 14 log_format main '$remote_addr - $remote_user [$time_local] "$request" ' 15 '$status $body_bytes_sent "$http_referer" ' 16 '"$http_user_agent" "$http_x_forwarded_for"'; 17 18 sendfile on; 19 keepalive_timeout 65; 20 21 gzip on; 22 gzip_min_length 1100; 23 gzip_buffers 16 8k; 24 gzip_types text/plain application/javascript text/css; 25 gzip_vary on; 26 gzip_comp_level 9; 27 28 server_tokens off; 29 30 server { 31 listen 80; 32 return 301 https://gopherface.kamesh.com$request_uri; 33 } 34 35 server { 36 listen 443 ssl; 37 38 ssl_certificate /etc/letsencrypt/live/gopherface.kamesh.com/fullchain.pem; 39 ssl_certificate_key /etc/letsencrypt/live/gopherface.kamesh.com/privkey.pem; 40 41 ssl_session_cache shared:SSL:1m; 42 ssl_session_timeout 5m; 43 ssl_protocols TLSv1 TLSv1.1 TLSv1.2; 44 ssl_ciphers EECDH+ECDSA+AESGCM:EECDH+aRSA+AESGCM:EECDH+ECDSA+SHA384:EECDH+ECDSA+SHA256:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:EDH+aRSA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4; 45 ssl_prefer_server_ciphers on; 46 47 access_log /var/log/nginx/ssl_access.log main; 48 error_log /var/log/nginx/ssl_error.log; 49 50 location / { 51 proxy_pass http://localhost:8080/; 52 proxy_set_header X-Forwarded-For $remote_addr; 53 proxy_http_version 1.1; 54 proxy_set_header Upgrade $http_upgrade; 55 proxy_set_header Connection "upgrade"; 56 proxy_set_header Host $host; 57 } 58 } 59 }