1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
#
# !!! This file is managed by Ansible !!!
#
{% if services.rest_server.nginx.sslOnly is not defined or services.rest_server.nginx.sslOnly is false %}
server {
listen 80 ;
listen [::]:80;
server_name {{ services.rest_server.nginx.domain }};
location / {
proxy_pass http://oeffiweb;
}
location /assets {
root /usr/share/oeffi-web;
}
}
{% endif %}
{% if services.rest_server.nginx.ssl.enable is true %}
server {
listen 443 ssl;
listen [::]:443 ssl;
ssl_certificate "{{ services.rest_server.nginx.ssl.cert }}";
ssl_certificate_key "{{ services.rest_server.nginx.ssl.privkey }}";
include /etc/nginx/ssl.conf;
server_name {{ services.rest_server.nginx.domain }};
{% if services.rest_server.nginx.password is defined %}
auth_basic "hello";
auth_basic_user_file /etc/nginx/passwd/rest-server;
{% endif %}
location / {
proxy_pass http://127.0.0.1:{{ services.rest_server.port }}/;
client_max_body_size 500M;
include /etc/nginx/proxy.conf;
}
}
{% endif %}