1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
#
# !!! This file is managed by Ansible !!!
#
{% if services.pleroma.nginx.sslOnly is not defined or services.pleroma.nginx.sslOnly is false %}
server {
listen 80 ;
listen [::]:80;
server_name {{ services.pleroma.nginx.domain }};
gzip_vary on;
gzip_proxied any;
gzip_comp_level 6;
gzip_buffers 16 8k;
gzip_http_version 1.1;
gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript application/activity+json application/atom+xml;
client_max_body_size 150m;
ignore_invalid_headers off;
location / {
proxy_pass http://127.0.0.1:4000/;
include /etc/nginx/proxy.conf;
}
{% if services.pleroma.nginx.extraConfig is defined %}
{{ services.pleroma.nginx.extraConfig }}
{% endif %}
}
{% endif %}
{% if services.pleroma.nginx.ssl.enable is true %}
server {
listen 443 ssl;
listen [::]:443 ssl;
ssl_certificate "{{ services.pleroma.nginx.ssl.cert }}";
ssl_certificate_key "{{ services.pleroma.nginx.ssl.privkey }}";
include /etc/nginx/ssl.conf;
server_name {{ services.pleroma.nginx.domain }};
gzip_vary on;
gzip_proxied any;
gzip_comp_level 6;
gzip_buffers 16 8k;
gzip_http_version 1.1;
gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript application/activity+json application/atom+xml;
client_max_body_size 150m;
ignore_invalid_headers off;
location / {
proxy_pass http://127.0.0.1:4000/;
include /etc/nginx/proxy.conf;
}
{% if services.pleroma.nginx.extraConfig is defined %}
{{ services.pleroma.nginx.extraConfig }}
{% endif %}
}
{% endif %}