diff --git a/nixos/nginx.nix b/nixos/nginx.nix index 20cc707..40eb8fe 100644 --- a/nixos/nginx.nix +++ b/nixos/nginx.nix @@ -116,88 +116,88 @@ # ''; # }; #}; - #"blog.quineglobal.com" = { - # enableACME = false; - # forceSSL = false; - # addSSL = false; + "blog.quineglobal.com" = { + enableACME = false; + forceSSL = false; + addSSL = false; - # locations."/" = { - # proxyPass = "http://127.0.0.1:3010/"; # pass through to docker container - # }; - #}; - #"quineglobal.com" = { - # enableACME = false; - # forceSSL = false; - # addSSL = false; + locations."/" = { + proxyPass = "http://127.0.0.1:3010/"; # pass through to docker container + }; + }; + "quineglobal.com" = { + enableACME = false; + forceSSL = false; + addSSL = false; - # locations."/" = { - # extraConfig = '' - # index index.html index.htm; - # root /etc/pullomatic/com_quineglobal; - # ''; - # }; - #}; + locations."/" = { + extraConfig = '' + index index.html index.htm; + root /etc/pullomatic/com_quineglobal; + ''; + }; + }; - #"webdav.philippeterson.com" = { - # serverName = "webdav.philippeterson.com"; - # enableACME = true; - # onlySSL = true; + "webdav.philippeterson.com" = { + serverName = "webdav.philippeterson.com"; + enableACME = true; + onlySSL = true; - # locations."/" = { - # proxyPass = "http://127.0.0.1:8082/"; # pass through to webdav - # extraConfig = '' - # # Pass required headers for WebDAV - # proxy_set_header Host $host; - # proxy_set_header X-Real-IP $remote_addr; - # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; - # proxy_set_header X-Forwarded-Proto $scheme; - # - # # Pass Authorization header if required - # proxy_set_header Authorization $http_authorization; - # - # # Set timeouts for large file uploads or long WebDAV operations - # proxy_read_timeout 300; - # proxy_connect_timeout 300; - # proxy_send_timeout 300; - # - # # Increase client body size for large uploads - # client_max_body_size 100M; - # - # # Optional: Disable caching for WebDAV operations - # proxy_buffering off; - # proxy_cache off; - # ''; - # }; - #}; + locations."/" = { + proxyPass = "http://127.0.0.1:8082/"; # pass through to webdav + extraConfig = '' + # Pass required headers for WebDAV + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + + # Pass Authorization header if required + proxy_set_header Authorization $http_authorization; + + # Set timeouts for large file uploads or long WebDAV operations + proxy_read_timeout 300; + proxy_connect_timeout 300; + proxy_send_timeout 300; + + # Increase client body size for large uploads + client_max_body_size 100M; + + # Optional: Disable caching for WebDAV operations + proxy_buffering off; + proxy_cache off; + ''; + }; + }; - #"forge.quinefoundation.com-https" = { - # serverName = "forge.quinefoundation.com"; - # enableACME = true; - # onlySSL = true; + "forge.quinefoundation.com-https" = { + serverName = "forge.quinefoundation.com"; + enableACME = true; + onlySSL = true; - # locations."/" = { - # proxyPass = "http://127.0.0.1:3000/"; # pass through to Forgejo - # }; - #}; + locations."/" = { + proxyPass = "http://127.0.0.1:3000/"; # pass through to Forgejo + }; + }; - #"forge.quinefoundation.com-http" = { - # serverName = "forge.quinefoundation.com"; + "forge.quinefoundation.com-http" = { + serverName = "forge.quinefoundation.com"; - # listen = [ - # { addr = "0.0.0.0"; port = 80; } - # { addr = "[::]"; port = 80; } - # ]; - # - # locations."/" = { - # # TODO: forgejo does not support HTTP+HTTPS. But it would be nice if it did. - # #proxyPass = "https://forge.quinefoundation.com/"; # pass through to HTTPS + listen = [ + { addr = "0.0.0.0"; port = 80; } + { addr = "[::]"; port = 80; } + ]; + + locations."/" = { + # TODO: forgejo does not support HTTP+HTTPS. But it would be nice if it did. + #proxyPass = "https://forge.quinefoundation.com/"; # pass through to HTTPS - # # Instead, temporarily redirect to HTTPS - # extraConfig = '' - # return 302 https://$host$request_uri; - # ''; - # }; - #}; + # Instead, temporarily redirect to HTTPS + extraConfig = '' + return 302 https://$host$request_uri; + ''; + }; + }; }; # Optionally configure additional options