46 lines
1.2 KiB
Plaintext
46 lines
1.2 KiB
Plaintext
{% if updates_tls_crt is defined %}
|
|
server {
|
|
server_name updates.hamburg.freifunk.net;
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
ssl_certificate {{ updates_tls_crt }};
|
|
ssl_certificate_key {{ updates_tls_key }};
|
|
|
|
include snippets/header-hsts.conf;
|
|
include snippets/header-security.conf;
|
|
include snippets/no-unsafe-files.conf;
|
|
|
|
root {{ updates_root }};
|
|
|
|
location / {
|
|
# First attempt to serve request as file, then
|
|
# as directory, then fall back to displaying a 404.
|
|
try_files $uri $uri/ =404;
|
|
fancyindex on;
|
|
fancyindex_name_length 120;
|
|
}
|
|
}
|
|
|
|
{% endif %}
|
|
# Kein HTTPS Redirect wg. Paketinstallation auf Routern
|
|
server {
|
|
server_name updates.hamburg.freifunk.net updates-a.hamburg.freifunk.net updates-b.hamburg.freifunk.net;
|
|
listen 80;
|
|
listen [::]:80;
|
|
|
|
include snippets/autoindex.conf;
|
|
include snippets/header-security.conf;
|
|
include snippets/no-unsafe-files.conf;
|
|
|
|
root {{ updates_root }};
|
|
|
|
{% if updates_letsencrypt == 'local' %}
|
|
location ^~ /.well-known/acme-challenge {
|
|
root /var/www/_acme-challenge;
|
|
access_log off;
|
|
}
|
|
{% elif updates_letsencrypt == 'srv01' %}
|
|
include snippets/location-acme-srv01.conf;
|
|
{% endif %}
|
|
}
|