From 0537f1b287fca42eaf7b282b20d0ff6feb117bb8 Mon Sep 17 00:00:00 2001 From: Trey Blancher Date: Mon, 28 Nov 2022 12:35:35 -0500 Subject: [PATCH] Initial commit --- nginx/sites-available/aprilandtrey.us | 33 +++++++++++++++++++ .../sites-available/commento.aprilandtrey.us | 33 +++++++++++++++++++ nginx/sites-available/commento.eldon.me | 33 +++++++++++++++++++ nginx/sites-available/eldon.me | 33 +++++++++++++++++++ 4 files changed, 132 insertions(+) create mode 100644 nginx/sites-available/aprilandtrey.us create mode 100644 nginx/sites-available/commento.aprilandtrey.us create mode 100644 nginx/sites-available/commento.eldon.me create mode 100644 nginx/sites-available/eldon.me diff --git a/nginx/sites-available/aprilandtrey.us b/nginx/sites-available/aprilandtrey.us new file mode 100644 index 0000000..ae16cec --- /dev/null +++ b/nginx/sites-available/aprilandtrey.us @@ -0,0 +1,33 @@ +server { + listen 80; + listen [::]:80; + server_name aprilandtrey.us www.aprilandtrey.us treyandapril.us www.treyandapril.us; + return 301 https://aprilandtrey.us$request_uri; + + # Redirect non-https traffic to https + # if ($scheme != "https") { + # return 301 https://$host$request_uri; + # } # managed by Certbot + +} + +server { + listen 443 ssl; + server_name aprilandtrey.us www.aprilandtrey.us treyandapril.us www.treyandapril.us; + ssl_certificate /etc/letsencrypt/live/aprilandtrey.us/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/aprilandtrey.us/privkey.pem; # managed by Certbot + + root /var/www/aprilandtrey.us/; + location / { + client_max_body_size 364M; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_pass http://aprilandtrey:2368; + proxy_connect_timeout 600; + proxy_send_timeout 600; + proxy_read_timeout 600; + send_timeout 600; + } +} diff --git a/nginx/sites-available/commento.aprilandtrey.us b/nginx/sites-available/commento.aprilandtrey.us new file mode 100644 index 0000000..90b31e9 --- /dev/null +++ b/nginx/sites-available/commento.aprilandtrey.us @@ -0,0 +1,33 @@ +server { + listen 80; + listen [::]:80; + server_name commento.aprilandtrey.us commento.treyandapril.us; + return 301 https://commento.aprilandtrey.us$request_uri; + + # Redirect non-https traffic to https + # if ($scheme != "https") { + # return 301 https://$host$request_uri; + # } # managed by Certbot + +} + +server { + listen 443 ssl; + server_name commento.aprilandtrey.us commento.treyandapril.us; + ssl_certificate /etc/letsencrypt/live/aprilandtrey.us/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/aprilandtrey.us/privkey.pem; # managed by Certbot + + root /var/www/aprilandtrey.us/; + location / { + client_max_body_size 364M; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_pass http://commento_aprilandtrey:8080; + proxy_connect_timeout 600; + proxy_send_timeout 600; + proxy_read_timeout 600; + send_timeout 600; + } +} diff --git a/nginx/sites-available/commento.eldon.me b/nginx/sites-available/commento.eldon.me new file mode 100644 index 0000000..f3e9e46 --- /dev/null +++ b/nginx/sites-available/commento.eldon.me @@ -0,0 +1,33 @@ +server { + listen 80; + listen [::]:80; + server_name commento.eldon.me; + return 301 https://commento.eldon.me$request_uri; + + # Redirect non-https traffic to https + # if ($scheme != "https") { + # return 301 https://$host$request_uri; + # } # managed by Certbot + +} + +server { + listen 443 ssl; + server_name commento.eldon.me; + ssl_certificate /etc/letsencrypt/live/aprilandtrey.us/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/aprilandtrey.us/privkey.pem; # managed by Certbot + + root /var/www/eldon.me/; + location / { + client_max_body_size 364M; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_pass http://commento_eldon:8080; + proxy_connect_timeout 600; + proxy_send_timeout 600; + proxy_read_timeout 600; + send_timeout 600; + } +} diff --git a/nginx/sites-available/eldon.me b/nginx/sites-available/eldon.me new file mode 100644 index 0000000..f6911b9 --- /dev/null +++ b/nginx/sites-available/eldon.me @@ -0,0 +1,33 @@ +server { + listen 80; + listen [::]:80; + server_name eldon.me www.eldon.me; + return 301 https://eldon.me$request_uri; + + # Redirect non-https traffic to https + # if ($scheme != "https") { + # return 301 https://$host$request_uri; + # } # managed by Certbot + +} + +server { + listen 443 ssl; + server_name eldon.me www.eldon.me; + ssl_certificate /etc/letsencrypt/live/aprilandtrey.us/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/aprilandtrey.us/privkey.pem; # managed by Certbot + + root /var/www/eldon.me/; + location / { + client_max_body_size 364M; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass http://eldon:2368; + proxy_connect_timeout 600; + proxy_send_timeout 600; + proxy_read_timeout 600; + send_timeout 600; + } +}