overmind
/
matrix-docker-ansible-deploy
zrcadlo https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Rozštěpit 0
Zdrojový kód Úkoly 0 Vydání 0 Wiki Aktivita
Matrix Docker Ansible eploy
Nelze vybrat více než 25 témat Téma musí začínat písmenem nebo číslem, může obsahovat pomlčky („-“) a může být dlouhé až 35 znaků.
6024 Revize
13 Větve
104 MiB
 
 
Strom: e04894de7c
Větve Značky
${ item.name }
Vytvořit větev ${ searchTerm }
z „e04894de7c“
${ noResults }
matrix-docker-ansible-deploy/roles/custom/matrix-nginx-proxy/templates/nginx/nginx.conf.j2

78 řádky
2.6 KiB
Surový Blame Historie 

  1. #jinja2: lstrip_blocks: "True"

  2. # This is a custom nginx configuration file that we use in the container (instead of the default one),

  3. # because it allows us to run nginx with a non-root user.

  4. #

  5. # For this to work, the default vhost file (`/etc/nginx/conf.d/default.conf`) also needs to be removed.

  6. #

  7. # The following changes have been done compared to a default nginx configuration file:

  8. # - various temp paths are changed to `/tmp`, so that a non-root user can write to them

  9. # - the `user` directive was removed, as we don't want nginx to switch users

  10. 

  11. worker_processes {{ matrix_nginx_proxy_worker_processes }};

  12. error_log /var/log/nginx/error.log warn;

  13. pid /tmp/nginx.pid;

  14. {% for configuration_block in matrix_nginx_proxy_proxy_additional_configuration_blocks %}

  15. 	{{- configuration_block }}

  16. {% endfor %}

  17. 

  18. events {

  19. 	worker_connections {{ matrix_nginx_proxy_worker_connections }};

  20. {% for configuration_block in matrix_nginx_proxy_proxy_event_additional_configuration_blocks %}

  21. 	{{- configuration_block }}

  22. {% endfor %}

  23. }

  24. 

  25. 

  26. http {

  27. 	proxy_temp_path /tmp/proxy_temp;

  28. 	client_body_temp_path /tmp/client_temp;

  29. 	fastcgi_temp_path /tmp/fastcgi_temp;

  30. 	uwsgi_temp_path /tmp/uwsgi_temp;

  31. 	scgi_temp_path /tmp/scgi_temp;

  32. 

  33. 	include /etc/nginx/mime.types;

  34. 	default_type application/octet-stream;

  35. 

  36. 	log_format main '$remote_addr - $remote_user [$time_local] "$request" '

  37. 					'$status $body_bytes_sent "$http_referer" '

  38. 					'"$http_user_agent" "$http_x_forwarded_for"';

  39. 

  40. 	{% if matrix_nginx_proxy_access_log_enabled %}

  41. 	access_log /var/log/nginx/access.log main;

  42. 	{% endif %}

  43. 

  44. 	{% if matrix_nginx_proxy_access_log_syslog_integration_enabled %}

  45. 	log_format prometheus_fmt 'matrix-nginx-proxy $server_name - $upstream_addr - $remote_addr - $remote_user [$time_local] '

  46. 								'$host "$request" '

  47. 								'$status "$http_referer" '

  48. 								'"$http_user_agent" "$http_x_forwarded_for"';

  49. 

  50. 	access_log syslog:server={{ matrix_nginx_proxy_access_log_syslog_integration_server_port }},tag=matrix_nginx_proxy prometheus_fmt;

  51. 	{% endif %}

  52. 

  53. 	{% if not matrix_nginx_proxy_access_log_enabled and not matrix_nginx_proxy_access_log_syslog_integration_enabled %}

  54. 	access_log off;

  55. 	{% endif %}

  56. 

  57. 	proxy_connect_timeout       {{ matrix_nginx_proxy_connect_timeout }};

  58. 	proxy_send_timeout          {{ matrix_nginx_proxy_send_timeout }};

  59. 	proxy_read_timeout          {{ matrix_nginx_proxy_read_timeout }};

  60. 	send_timeout                {{ matrix_nginx_send_timeout }};

  61. 

  62. 	sendfile on;

  63. 	#tcp_nopush on;

  64. 

  65. 	keepalive_timeout 65;

  66. 

  67. 	server_tokens off;

  68. 

  69. 	#gzip on;

  70. 	{# Map directive needed for proxied WebSocket upgrades #}

  71. 	map $http_upgrade $connection_upgrade {

  72. 		default upgrade;

  73. 		''      close;

  74. 	}

  75. 

  76. 	include /etc/nginx/conf.d/*.conf;

  77. }