location __PATH__ { # Force usage of https if ($scheme = http) { rewrite ^ https://$server_name$request_uri? permanent; } # Include SSOWAT user panel. include conf.d/yunohost_panel.conf.inc; # This is important for user's privacy ! access_log off; error_log /var/log/nginx/lutim.error.log; # This is important ! Make it OK with your Lutim configuration client_max_body_size 40M; proxy_pass http://127.0.0.1:__PORT__; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; # Lutim reads this header and understands that the current session is actually HTTPS. # Enable it if you run a HTTPS server (in this case, don't forgot to change the listen port proxy_set_header X-Forwarded-Proto https; # We expect the downsteam servers to redirect to the right hostname, so don't do any rewrite proxy_redirect off; }