CCCHH/nix-infra
CCCHH/nix-infra
2
3
Fork 3
Code Issues Pull requests 2 Wiki Activity

configure specific diday website requirements

Browse source
This commit is contained in:
lilly 2026-02-18 14:11:30 +01:00
commit a8229bfd0d
Signed by: lilly
SSH key fingerprint: SHA256:y9T5GFw2A20WVklhetIxG1+kcg/Ce0shnQmbu1LQ37g
2 changed files with 60 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
config/hosts/public-web-static/nginx.nix
View file

@ -5,6 +5,11 @@
enable = true;
appendHttpConfig = ''
access_log off;
# load the DI-Day redirect map from the webroot
map $request_uri $did_redirect_target {
include /var/www/did.hamburg.ccc.de/nginx-redirects.conf;
}
'';
};

55
config/hosts/public-web-static/virtualHosts/did.hamburg.ccc.de.nix
View file

@ -49,6 +49,61 @@ in
error_page 404 /404.html;
port_in_redirect off;
index index.html;
add_header Referrer-Policy "strict-origin-when-cross-origin" always;
# return a redirect based on the map loaded from the webroot
if ($did_redirect_target ~ ^301:(.*)$) {
return 301 $1;
}
if ($did_redirect_target ~ ^302:(.*)$) {
return 302 $1;
}
# deny access to the redirects config file
location = /nginx-redirects.conf {
deny all;
return 404;
}
# dynamically redirect the user to the language they prefer
location = / {
set $lang "de";
if ($http_accept_language ~* "^en") {
set $lang "en";
}
return 302 /$lang/;
}
# configure decap-cms content-type and caching rules
location = /admin/cms.js {
expires -1;
add_header Cache-Control "no-store";
}
location = /admin/config.yml {
expires -1;
add_header Cache-Control "no-store";
types { }
default_type text/yaml;
}
# configure asset caching
location ~* \.(js|css|png|jpg|jpeg|gif|ico|svg|woff2?)$ {
expires 1y;
add_header Cache-Control "public, immutable";
}
# we are using the Astro Image Pipeline, therefore DecapCMS can't access image previews
location /admin/src/ {
log_not_found off;
return 404;
}
location / {
try_files $uri $uri/ =404;
}
'';
};
};