Created
January 27, 2018 09:50
-
-
Save karlosmid/0714a5ab63435cbd08136eea99377e7b to your computer and use it in GitHub Desktop.
Jenkins and nexus behind same nginx reverse proxy
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| server { | |
| listen 80 default_server; | |
| listen [::]:80 default_server; | |
| return 301 https://$host$request_uri; | |
| } | |
| server { | |
| # SSL configuration | |
| # | |
| listen 443 ssl default_server; | |
| listen [::]:443 ssl default_server; | |
| ssl_certificate /etc/nginx/cert.crt; | |
| ssl_certificate_key /etc/nginx/cert.key; | |
| ssl on; | |
| ssl_session_cache builtin:1000 shared:SSL:10m; | |
| ssl_protocols TLSv1 TLSv1.1 TLSv1.2; | |
| ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4; | |
| ssl_prefer_server_ciphers on; | |
| client_max_body_size 100M; | |
| access_log /var/log/nginx/jenkins.access.log; | |
| error_log /var/log/nginx/jenkins.error.log; | |
| # | |
| # Note: You should disable gzip for SSL traffic. | |
| # See: https://bugs.debian.org/773332 | |
| # | |
| # Read up on ssl_ciphers to ensure a secure configuration. | |
| # See: https://bugs.debian.org/765782 | |
| # | |
| # Self signed certs generated by the ssl-cert package | |
| # Don't use them in a production server! | |
| # | |
| # include snippets/snakeoil.conf; | |
| root /var/www/html; | |
| # Add index.php to the list if you are using PHP | |
| index index.html index.htm index.nginx-debian.html; | |
| server_name your_domain_name www.your_domain_name; | |
| location /jenkins { | |
| # First attempt to serve request as file, then | |
| # as directory, then fall back to displaying a 404. | |
| # try_files $uri $uri/ =404; | |
| auth_basic "Restricted"; #For Basic Auth | |
| auth_basic_user_file /etc/nginx/.htpasswd; | |
| # Don't forward auth to jenkins | |
| proxy_set_header Authorization ""; | |
| include /etc/nginx/proxy_params; | |
| proxy_pass http://localhost:8080; | |
| proxy_read_timeout 90s; | |
| # Fix potential "It appears that your reverse proxy set up is broken" error. | |
| proxy_redirect http://localhost:8080 https://your_domain_name/jenkins; | |
| } | |
| location / { | |
| # First attempt to serve request as file, then | |
| # as directory, then fall back to displaying a 404. | |
| # try_files $uri $uri/ =404; | |
| auth_basic "Restricted"; #For Basic Auth | |
| auth_basic_user_file /etc/nginx/.htpasswd; | |
| # Don't forward auth to nexus | |
| proxy_set_header Authorization ""; | |
| include /etc/nginx/proxy_params; | |
| proxy_pass http://localhost:8081/; | |
| proxy_read_timeout 90s; | |
| # Fix potential "It appears that your reverse proxy set up is broken" error. | |
| proxy_redirect http://localhost:8081/ https://your_domain_name/nexus; | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment