Hello.
I'm new at nginx and i use it right now on a debian 8 server on a banana Pi.
I created certificate files and here is my configuration of /etc/nginx/sites-available/ssl-vhosts
Code:
upstream php-handler {
# server 127.0.0.1:9000;
server unix:/var/run/php5-fpm.sock;
}
# owncloud conf
server {
listen 443;
ssl on;
ssl_certificate /etc/ssl/nginx/cacert.pem; # path to your cacert.pem
ssl_certificate_key /etc/ssl/nginx/privkey.pem; # path to your privkey.pem
root /var/www/secure/;
client_max_body_size 1G; # set max upload size
fastcgi_buffers 64 4K;
index index.php;
error_page 403 /core/templates/403.php;
error_page 404 /core/templates/404.php;
location = /robots.txt {
allow all;
log_not_found off;
access_log off;
}
location ~ ^/(data|config|\.ht|db_structure\.xml|README) {
deny all;
}
location / {
# The following 2 rules are only needed with webfinger
rewrite ^/.well-known/host-meta /public.php?service=host-meta last;
rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;
rewrite ^/.well-known/carddav /remote.php/carddav/ redirect;
rewrite ^/.well-known/caldav /remote.php/caldav/ redirect;
rewrite ^(/core/doc/[^\/]+/)$ $1/index.html;
try_files $uri $uri/ index.php;
}
location ~ ^(.+?\.php)(/.*)?$ {
try_files $1 =404;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$1;
fastcgi_param PATH_INFO $2;
fastcgi_param HTTPS on;
fastcgi_pass php-handler;
}
# Optional: set long EXPIRES header on static assets
location ~* ^.+\.(jpg|jpeg|gif|bmp|ico|png|css|js|swf)$ {
expires 30d;
# Optional: Don't log access to assets
access_log off;
}
}
# dokuwiki conf
server {
listen 443;
ssl on;
ssl_certificate /etc/ssl/nginx/cacert.pem; # path to your cacert.pem
ssl_certificate_key /etc/ssl/nginx/privkey.pem; # path to your privkey.pem
root /var/www/secure/;
client_max_body_size 1G; # set max upload size
fastcgi_buffers 64 4K;
index index.php index.html doku.php;
location ~ /(data|conf|bin|inc)/ {
deny all;
}
location ~ /\.ht {
deny all;
}
location ~ \.php {
fastcgi_index index.php;
fastcgi_split_path_info ^(.+\.php)(.*)$;
include /etc/nginx/fastcgi_params;
fastcgi_pass unix:/var/run/php5-fpm.sock;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
}
}
As you can see i store both of them at /var/www/secure.
Is that a proper configuration with nginx for those two or should i make something different ?
I have also to tell that i'm using noip for the server.
Thank you.