1 files changed, 192 insertions, 0 deletions

diff --git a/usr/local/etc/nginx/nginx.conf b/usr/local/etc/nginx/nginx.conf
new file mode 100644
index 0000000..2cfd861
--- /dev/null
+++ b/usr/local/etc/nginx/nginx.conf
@@ -0,0 +1,192 @@
+worker_processes  1;
+
+events {
+	worker_connections  1024;
+}
+
+http {
+	include			mime.types;
+	default_type		application/octet-stream;
+	sendfile		on;
+	keepalive_timeout	65;
+	gzip			on;
+	gzip_vary		on;
+	gzip_min_length		1024;
+	gzip_proxied		expired no-cache no-store private auth;
+
+	server{
+		server_name  jozanofastora.xyz;
+		root   /usr/local/www/jozan;
+		index  index.html;
+		location / {
+			try_files $uri $uri/ =404;
+		} 
+		location ~ /\.ht {
+			deny all;
+		}
+		error_page  403 /403.html;
+		location = /403.html {
+			root /usr/local/www/jozan/err;
+		}
+		error_page  404 /404.html;
+		location = /404.html {
+			root /usr/local/www/jozan/err;
+		}
+		error_page   500 502 503 504  /50x.html;
+		location = /50x.html {
+			root   /usr/local/www/nginx-dist;
+		}
+	
+
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /usr/local/etc/letsencrypt/live/jozanofastora.xyz-0001/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /usr/local/etc/letsencrypt/live/jozanofastora.xyz-0001/privkey.pem; # managed by Certbot
+    include /usr/local/etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+    ssl_dhparam /usr/local/etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+
+}
+
+	server{
+		server_name  gitjoe.xyz git.jozanofastora.xyz;
+		root   /usr/local/www/gitjoe;
+		index  index.html;
+		location / {
+			try_files $uri $uri/ =404;
+		} 
+		location ~ /\.ht {
+			deny all;
+		}
+		error_page  403 /403.html;
+		location = /403.html {
+			root /usr/local/www/gitjoe/err;
+		}
+		error_page  404 /404.html;
+		location = /404.html {
+			root /usr/local/www/gitjoe/err;
+		}
+		error_page   500 502 503 504  /50x.html;
+		location = /50x.html {
+			root   /usr/local/www/nginx-dist;
+		}
+	
+
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /usr/local/etc/letsencrypt/live/jozanofastora.xyz-0001/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /usr/local/etc/letsencrypt/live/jozanofastora.xyz-0001/privkey.pem; # managed by Certbot
+    include /usr/local/etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+    ssl_dhparam /usr/local/etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+
+
+}
+
+	server {
+		listen 80;
+		server_name cgit.gitjoe.xyz;
+		root /usr/local/www/cgit;
+
+		# Serve static files with nginx
+		location ~* ^.+(cgit.(css|png)|favicon.ico|robots.txt) {
+			root /usr/share/webapps/cgit;
+			expires 30d;
+		}
+		location / {
+			try_files $uri @cgit;
+		}
+		location @cgit {
+			gzip off;
+			include uwsgi_params;
+			uwsgi_modifier1 9;
+			uwsgi_pass unix:/var/run/uwsgi/cgit.sock;
+		}
+	} 
+
+	server {
+		server_name fossil.jozanofastora.xyz;
+		index  index.html;
+		root /usr/local/www/fossiljoe;
+
+		# Bypass Fossil for the static documentation generated from
+		# our source code by Doxygen, so it merges into the embedded
+		# doc URL hierarchy at Fossil’s $ROOT/doc without requiring that
+		# these generated files actually be stored in the repo.  This
+		# also lets us set aggressive caching on these docs, since
+		# they rarely change.
+		location /code/doc/html {
+			root /usr/local/www/fossiljoe;
+
+			location ~* \.(html|ico|css|js|gif|jpg|png)$ {
+				expires 7d;
+				add_header Vary Accept-Encoding;
+				access_log off;
+			}
+		}
+		# Redirect everything else to the Fossil instance
+		location /code {
+			include scgi_params;
+			scgi_param SCRIPT_NAME "/code";
+			scgi_pass 127.0.0.1:12345;
+		}
+	
+
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /usr/local/etc/letsencrypt/live/jozanofastora.xyz-0001/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /usr/local/etc/letsencrypt/live/jozanofastora.xyz-0001/privkey.pem; # managed by Certbot
+    include /usr/local/etc/letsencrypt/options-ssl-nginx.conf; # managed by Ce/srvrtbot
+    ssl_dhparam /usr/local/etc/letsencrypt/ssl-dhparams.pem; # managed by Cert/srvbot
+
+	}
+
+
+server{
+	if ($host = git.jozanofastora.xyz) {
+		return 301 https://gitjoe.xyz$request_uri;
+	} # managed by Certbot
+
+	if ($host = www.gitjoe.xyz) {
+		return 301 https://gitjoe.xyz$request_uri;
+	} # managed by Certbot
+
+	if ($host = gitjoe.xyz) {
+		return 301 https://$host$request_uri;
+	} # managed by Certbot
+
+
+	server_name  gitjoe.xyz;
+	listen 80;
+	return 404; # managed by Certbot
+
+
+
+
+}
+
+server{
+	if ($host = www.jozanofastora.xyz) {
+		return 301 https://jozanofastora.xyz$request_uri;
+	} # managed by Certbot
+
+	if ($host = jozanofastora.xyz) {
+		return 301 https://$host$request_uri;
+	} # managed by Certbot
+
+
+	server_name  jozanofastora.xyz;
+	listen 80;
+	return 404; # managed by Certbot
+
+
+}
+
+server {
+	if ($host = fossil.jozanofastora.xyz) {
+		return 301 https://$host$request_uri;
+	} # managed by Certbot
+
+
+	server_name fossil.jozanofastora.xyz;
+	listen 80;
+	return 404; # managed by Certbot
+
+
+}
+}