mm53bar · December 14, 2015 07:49
diff --git a/gitrev b/gitrev
 cd $DEPLOY
 git rev-parse HEAD
diff --git a/nginx_unicorn b/nginx_unicorn
 cat > ~/$APP_NAME <<End-of-file
 upstream app_server {
  server unix:/srv/$APP_NAME/tmp/sockets/unicorn.sock fail_timeout=0;
 }

 server {
  listen 80;
  listen 443 ssl;
  server_name $SERVER;

  ssl_certificate      /etc/ssl/$APP_NAME.crt;
  ssl_certificate_key  /etc/ssl/$APP.NAME.key;
    
  rewrite ^(.*)$ $scheme://www.$SERVER\$1 permanent;
 }

 server {
  listen 80;
  server_name www.$SERVER $HOSTNAME;

  client_max_body_size 4G;

  access_log /srv/$APP_NAME/log/access.log;
  error_log /srv/$APP_NAME/log/error.log;

  root /srv/$APP_NAME/public/;

  try_files $uri/index.html $uri.html $uri @app;
  error_page 502 503 =503                  @maintenance;
  error_page 500 504 =500                  @server_error;

  location @app {
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $http_host;
    proxy_redirect off;

    # enable this if and only if you use HTTPS, this helps Rack
    # set the proper protocol for doing redirects:
    # proxy_set_header X-Forwarded-Proto https;

    proxy_pass http://app_server;
  }

  location @maintenance {
    root /srv/$APP_NAME/public;
    try_files /503.html =503;
  }

  location @server_error {
    root /srv/$APP_NAME/public;
    try_files /500.html =500;
  }

  location = /favicon.ico {
    expires    max;
    add_header Cache-Control public;
  }
 }

 server {
  listen 443;
  server_name www.$SERVER $HOSTNAME;
  ssl on;

  ssl_certificate      /etc/ssl/$APP_NAME.crt;
  ssl_certificate_key  /etc/ssl/$APP_NAME.key;

  client_max_body_size 4G;

  access_log /srv/$APP_NAME/log/access.log;
  error_log /srv/$APP_NAME/log/error.log;

  root /srv/$APP_NAME/public/;

  try_files $uri/index.html $uri.html $uri @app;
  error_page 502 503 =503                  @maintenance;
  error_page 500 504 =500                  @server_error;

  location @app {
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $http_host;
    proxy_redirect off;

    # enable this if and only if you use HTTPS, this helps Rack
    # set the proper protocol for doing redirects:
    proxy_set_header X-Forwarded-Proto https;

    proxy_pass http://app_server;
  }

  location @maintenance {
    root /srv/$APP_NAME/public;
    try_files /503.html =503;
  }

  location @server_error {
    root /srv/$APP_NAME/public;
    try_files /500.html =500;
  }

  location ^~ /assets/ {
    gzip_static on;
    expires max;
    add_header Cache-Control public;
  }

  location = /favicon.ico {
    expires    max;
    add_header Cache-Control public;
  }
 }

 server {
  listen 80;
  server_name assets.$SERVER;

  root /srv/$APP_NAME/public/;

  access_log /srv/$APP_NAME/log/access-assets.log;
  error_log /srv/$APP_NAME/log/error-assets.log;

  location / {
    deny all;
  }

  location ^~ /assets/ {
    allow all;
    gzip_http_version 1.0;
    gzip_static  on;
    expires      365d;
    add_header   Last-Modified "";
    add_header   Cache-Control public;
  }
 }
 End-of-file
diff --git a/test b/test
 cd $DEPLOY
 ls
	cat > ~/$APP_NAME <<End-of-file
	upstream app_server {
	server unix:/srv/$APP_NAME/tmp/sockets/unicorn.sock fail_timeout=0;
	}

	server {
	listen 80;
	listen 443 ssl;
	server_name $SERVER;

	ssl_certificate /etc/ssl/$APP_NAME.crt;
	ssl_certificate_key /etc/ssl/$APP.NAME.key;

	rewrite ^(.*)$ $scheme://www.$SERVER\$1 permanent;
	}

	server {
	listen 80;
	server_name www.$SERVER $HOSTNAME;

	client_max_body_size 4G;

	access_log /srv/$APP_NAME/log/access.log;
	error_log /srv/$APP_NAME/log/error.log;

	root /srv/$APP_NAME/public/;

	try_files $uri/index.html $uri.html $uri @app;
	error_page 502 503 =503 @maintenance;
	error_page 500 504 =500 @server_error;

	location @app {
	proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	proxy_set_header Host $http_host;
	proxy_redirect off;

	# enable this if and only if you use HTTPS, this helps Rack
	# set the proper protocol for doing redirects:
	# proxy_set_header X-Forwarded-Proto https;

	proxy_pass http://app_server;
	}

	location @maintenance {
	root /srv/$APP_NAME/public;
	try_files /503.html =503;
	}

	location @server_error {
	root /srv/$APP_NAME/public;
	try_files /500.html =500;
	}

	location = /favicon.ico {
	expires max;
	add_header Cache-Control public;
	}
	}

	server {
	listen 443;
	server_name www.$SERVER $HOSTNAME;
	ssl on;

	ssl_certificate /etc/ssl/$APP_NAME.crt;
	ssl_certificate_key /etc/ssl/$APP_NAME.key;

	client_max_body_size 4G;

	access_log /srv/$APP_NAME/log/access.log;
	error_log /srv/$APP_NAME/log/error.log;

	root /srv/$APP_NAME/public/;

	try_files $uri/index.html $uri.html $uri @app;
	error_page 502 503 =503 @maintenance;
	error_page 500 504 =500 @server_error;

	location @app {
	proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	proxy_set_header Host $http_host;
	proxy_redirect off;

	# enable this if and only if you use HTTPS, this helps Rack
	# set the proper protocol for doing redirects:
	proxy_set_header X-Forwarded-Proto https;

	proxy_pass http://app_server;
	}

	location @maintenance {
	root /srv/$APP_NAME/public;
	try_files /503.html =503;
	}

	location @server_error {
	root /srv/$APP_NAME/public;
	try_files /500.html =500;
	}

	location ^~ /assets/ {
	gzip_static on;
	expires max;
	add_header Cache-Control public;
	}

	location = /favicon.ico {
	expires max;
	add_header Cache-Control public;
	}
	}

	server {
	listen 80;
	server_name assets.$SERVER;

	root /srv/$APP_NAME/public/;

	access_log /srv/$APP_NAME/log/access-assets.log;
	error_log /srv/$APP_NAME/log/error-assets.log;

	location / {
	deny all;
	}

	location ^~ /assets/ {
	allow all;
	gzip_http_version 1.0;
	gzip_static on;
	expires 365d;
	add_header Last-Modified "";
	add_header Cache-Control public;
	}
	}
	End-of-file