mirror of
https://github.com/YunoHost-Apps/concrete5_ynh.git
synced 2024-09-03 18:25:54 +02:00
Delete nginx-root.conf
This commit is contained in:
frju365
GitHub
parent
15031aeae1
commit
d2016cc8f8
1 changed files with 0 additions and 147 deletions
|
|
@ -1,147 +0,0 @@
|
||||||
root ROOT_PATH;
|
|
||||||
add_header "X-Frame-Options" "SAMEORIGIN";
|
|
||||||
add_header "X-XSS-Protection" "1; mode=block";
|
|
||||||
add_header "X-Content-Type-Options" "nosniff";
|
|
||||||
index index.php index.html index.htm;
|
|
||||||
|
|
||||||
|
|
||||||
# Don't log robots.txt or favicon.ico files
|
|
||||||
location = /favicon.ico { log_not_found off; access_log off; }
|
|
||||||
location = /robots.txt { allow all; access_log off; log_not_found off; }
|
|
||||||
|
|
||||||
# deny access to .htaccess files, if Apache's document root
|
|
||||||
# concurs with nginx's one
|
|
||||||
location ~ /\.ht {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location ~ /\.git {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /src {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /gen-src {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /files/fonts {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /files/private {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /cache {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /bin {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /samples {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /tests {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /vendor {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /conf {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location /logs {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Deny every non-public files in themes
|
|
||||||
location ~ /themes/(.+)\.(php|yml|twig|xlf|rzn|rzt|rzg)$ {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
location ~ /themes/([^/.]+)/(Resources|Command|Tests|Controllers|Entities|Form|Model|Services)/ {
|
|
||||||
deny all;
|
|
||||||
}
|
|
||||||
|
|
||||||
# Enable Expire on Themes public assets
|
|
||||||
location ~* ^/themes/*.*\.(?:ico|css|js|woff2?|eot|ttf|otf|svg|gif|jpe?g|png)$ {
|
|
||||||
expires 30d;
|
|
||||||
access_log off;
|
|
||||||
add_header "Pragma" "public";
|
|
||||||
add_header "Cache-Control" "public";
|
|
||||||
add_header "Vary" "Accept-Encoding";
|
|
||||||
add_header "X-Frame-Options" "SAMEORIGIN";
|
|
||||||
add_header "X-XSS-Protection" "1; mode=block";
|
|
||||||
add_header "X-Content-Type-Options" "nosniff";
|
|
||||||
|
|
||||||
if ($request_method = 'GET') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*';
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
|
|
||||||
}
|
|
||||||
}
|
|
||||||
# Enable Expire on native documents files
|
|
||||||
location ~* ^/files/*.*\.(?:ico|gif|jpe?g|png)$ {
|
|
||||||
expires 15d;
|
|
||||||
access_log off;
|
|
||||||
add_header "Pragma" "public";
|
|
||||||
add_header "Cache-Control" "public";
|
|
||||||
add_header "Vary" "Accept-Encoding";
|
|
||||||
add_header "X-Frame-Options" "SAMEORIGIN";
|
|
||||||
add_header "X-XSS-Protection" "1; mode=block";
|
|
||||||
add_header "X-Content-Type-Options" "nosniff";
|
|
||||||
|
|
||||||
if ($request_method = 'GET') {
|
|
||||||
add_header 'Access-Control-Allow-Origin' '*';
|
|
||||||
add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
|
|
||||||
add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
location / {
|
|
||||||
# First attempt to serve request as file, then
|
|
||||||
# as directory, then fall back to front-end controller
|
|
||||||
# (do not forget to pass GET parameters).
|
|
||||||
try_files $uri $uri/ /index.php?$query_string;
|
|
||||||
}
|
|
||||||
|
|
||||||
location ~ /install.php/ {
|
|
||||||
try_files $uri $uri/ /install.php?$query_string;
|
|
||||||
}
|
|
||||||
location ~ /dev.php/ {
|
|
||||||
try_files $uri $uri/ /dev.php?$query_string;
|
|
||||||
}
|
|
||||||
location ~ /preview.php/ {
|
|
||||||
try_files $uri $uri/ /preview.php?$query_string;
|
|
||||||
}
|
|
||||||
location ~ /clear_cache.php/ {
|
|
||||||
try_files $uri $uri/ /clear_cache.php?$query_string;
|
|
||||||
}
|
|
||||||
|
|
||||||
#
|
|
||||||
# Production entry point.
|
|
||||||
#
|
|
||||||
location ~ ^/index\.php(/|$) {
|
|
||||||
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
|
|
||||||
fastcgi_split_path_info ^(.+\.php)(/.+)$;
|
|
||||||
# NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini
|
|
||||||
# With php5-fpm:
|
|
||||||
fastcgi_pass unix:/var/run/php5-fpm.sock;
|
|
||||||
include fastcgi_params;
|
|
||||||
# Prevents URIs that include the front controller. This will 404:
|
|
||||||
# http://domain.tld/app.php/some-path
|
|
||||||
# Remove the internal directive to allow URIs like this
|
|
||||||
internal;
|
|
||||||
}
|
|
||||||
|
|
||||||
#
|
|
||||||
# Preview, Dev and Install entry points.
|
|
||||||
#
|
|
||||||
# In production server, don't deploy dev.php or install.php
|
|
||||||
#
|
|
||||||
location ~ ^/(dev|install|preview|clear_cache)\.php(/|$) {
|
|
||||||
# Enforce OPCache PHP class cache invalidation at each request
|
|
||||||
#fastcgi_param PHP_VALUE "opcache.revalidate_freq=0";
|
|
||||||
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
|
|
||||||
fastcgi_split_path_info ^(.+\.php)(/.+)$;
|
|
||||||
# NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini
|
|
||||||
# With php5-fpm:
|
|
||||||
fastcgi_pass unix:/var/run/php5-fpm.sock;
|
|
||||||
include fastcgi_params;
|
|
||||||
}
|
|
||||||
Loading…
Add table
Reference in a new issue