diff options
| author | Cullum Smith <cullum@sacredheartsc.com> | 2025-03-25 21:24:12 -0400 |
|---|---|---|
| committer | Cullum Smith <cullum@sacredheartsc.com> | 2025-03-25 21:24:12 -0400 |
| commit | d58dac1bb32b87e79e16a2e9777a6dced701aa3b (patch) | |
| tree | f273075417e09566ec6d7a63d1627429909295a1 /files/usr/local/etc/nginx | |
| parent | 9ffc950b5296374f387bfc689806d7af717bb78a (diff) | |
| download | infrastructure-d58dac1bb32b87e79e16a2e9777a6dced701aa3b.tar.gz | |
add mollysocket support to xmpp server
Diffstat (limited to 'files/usr/local/etc/nginx')
| -rw-r--r-- | files/usr/local/etc/nginx/vhosts.conf.xmpp_server | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/files/usr/local/etc/nginx/vhosts.conf.xmpp_server b/files/usr/local/etc/nginx/vhosts.conf.xmpp_server index fad92ad..7cbe5a2 100644 --- a/files/usr/local/etc/nginx/vhosts.conf.xmpp_server +++ b/files/usr/local/etc/nginx/vhosts.conf.xmpp_server @@ -21,3 +21,26 @@ server { proxy_pass http://127.0.0.1:${prosody_http_port}; } } + +server { + listen ${mollysocket_port} ssl default_server; + listen [::]:${mollysocket_port} ssl default_server; + + http2 on; + + ssl_certificate ${prosody_https_cert}; + ssl_certificate_key ${prosody_https_key}; + ssl_trusted_certificate ${prosody_https_cacert}; + + add_header Strict-Transport-Security "max-age=63072000" always; + + location / { + proxy_http_version 1.1; + proxy_set_header Host \$host:\$server_port; + proxy_set_header X-Real-IP \$remote_addr; + proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto \$scheme; + proxy_set_header X-Original-URL \$uri; + proxy_pass http://127.0.0.1:${mollysocket_local_port}; + } +} |