conf/nginx.conf


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107

user nsensfel nsensfel;
worker_processes 1;

error_log /var/log/nginx/error_log info;

events {
   worker_connections 1024;
   use epoll;
}

http {
   include /etc/nginx/mime.types;
   default_type application/octet-stream;

   log_format main
      '$remote_addr - $remote_user [$time_local] '
      '"$request" $status $bytes_sent '
      '"$http_referer" "$http_user_agent" '
      '"$gzip_ratio"';

   client_header_timeout 10m;
   client_body_timeout 10m;
   send_timeout 10m;

   connection_pool_size 256;
   client_header_buffer_size 1k;
   large_client_header_buffers 4 2k;
   request_pool_size 4k;

   gzip off;

   output_buffers 1 32k;
   postpone_output 1460;

   sendfile on;
   tcp_nopush on;
   tcp_nodelay on;

   keepalive_timeout 75 20;

   ignore_invalid_headers on;

   index index.html;

   ## Local tests
   server {
      listen 127.0.0.1;
      server_name localhost;

      access_log /var/log/nginx/localhost.access_log main;
      error_log /var/log/nginx/localhost.error_log info;

      root /my/src/tacticians-client/www/;

      location / {
         autoindex on;
         autoindex_exact_size off;
      }

      location /handler/ {
         proxy_set_header Host $host;
         proxy_set_header X-Real-IP $remote_addr;
         proxy_pass http://127.0.0.1:8000;
      }
   }

#   ## Public tests
#   server {
#      listen 443;
#      server_name tacticians.online;
#
#      ssl on;
#      ssl_certificate /secure/tacticians.pem;
#      ssl_certificate_key /secure/tacticians.key;
#
#      access_log /var/log/nginx/public.ssl_access_log main;
#      error_log /var/log/nginx/public.ssl_error_log info;
#
#      root /my/src/tacticians-client/www/;
#
#      location / {
#         autoindex on;
#         autoindex_exact_size off;
#      }
#
#      location /handler/ {
#         proxy_set_header Host $host;
#         proxy_set_header X-Real-IP $remote_addr;
#         proxy_pass http://127.0.0.1:8000;
#      }
#   }
#
#   ## Let's Encrypt Tests
#   server {
#      listen 80;
#      server_name acme;
#
#       location /.well-known/acme-challenge/
#       {
#           alias /var/www/challenges/;
#           try_files $uri =404;
#       }
#
#      access_log /var/log/nginx/acme.access_log main;
#      error_log /var/log/nginx/acme.error_log info;
#   }
}