Created
May 6, 2019 04:23
-
-
Save qzm/3a2908595514b6e2c314fd0aebf41a68 to your computer and use it in GitHub Desktop.
Nginx configure file for single page application(SPA)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| user nobody; | |
| worker_processes auto; | |
| worker_rlimit_nofile 65535; | |
| events { | |
| multi_accept on; | |
| worker_connections 65535; | |
| } | |
| http { | |
| charset utf-8; | |
| sendfile on; | |
| tcp_nopush on; | |
| tcp_nodelay on; | |
| server_tokens off; | |
| log_not_found off; | |
| types_hash_max_size 2048; | |
| client_max_body_size 16M; | |
| # MIME | |
| include mime.types; | |
| default_type application/octet-stream; | |
| # logging | |
| access_log /var/log/nginx/access.log; | |
| error_log /var/log/nginx/error.log warn; | |
| # load configs | |
| include /etc/nginx/conf.d/*.conf; | |
| # www.example.com | |
| server { | |
| listen 80; | |
| listen [::]:80; | |
| server_name www.example.com; | |
| root /www/html; | |
| # logging | |
| access_log /var/log/nginx/example.com.access.log; | |
| error_log /var/log/nginx/example.com.error.log warn; | |
| # index.html fallback | |
| location / { | |
| try_files $uri $uri/ /index.html; | |
| } | |
| # reverse proxy | |
| location /api { | |
| proxy_pass http://backend:8080; | |
| proxy_http_version 1.1; | |
| proxy_cache_bypass $http_upgrade; | |
| proxy_set_header Upgrade $http_upgrade; | |
| proxy_set_header Connection "upgrade"; | |
| proxy_set_header Host $host; | |
| proxy_set_header X-Real-IP $remote_addr; | |
| proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
| proxy_set_header X-Forwarded-Proto $scheme; | |
| proxy_set_header X-Forwarded-Host $host; | |
| proxy_set_header X-Forwarded-Port $server_port; | |
| } | |
| # security headers | |
| add_header X-Frame-Options "SAMEORIGIN" always; | |
| add_header X-XSS-Protection "1; mode=block" always; | |
| add_header X-Content-Type-Options "nosniff" always; | |
| add_header Referrer-Policy "no-referrer-when-downgrade" always; | |
| add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always; | |
| # . files | |
| location ~ /\.(?!well-known) { | |
| deny all; | |
| } | |
| # favicon.ico | |
| location = /favicon.ico { | |
| log_not_found off; | |
| access_log off; | |
| } | |
| # robots.txt | |
| location = /robots.txt { | |
| log_not_found off; | |
| access_log off; | |
| } | |
| # assets, media | |
| location ~* \.(?:css(\.map)?|js(\.map)?|jpe?g|png|gif|ico|cur|heic|webp|tiff?|mp3|m4a|aac|ogg|midi?|wav|mp4|mov|webm|mpe?g|avi|ogv|flv|wmv)$ { | |
| expires 7d; | |
| access_log off; | |
| } | |
| # svg, fonts | |
| location ~* \.(?:svgz?|ttf|ttc|otf|eot|woff2?)$ { | |
| add_header Access-Control-Allow-Origin "*"; | |
| expires 7d; | |
| access_log off; | |
| } | |
| # gzip | |
| gzip on; | |
| gzip_vary on; | |
| gzip_proxied any; | |
| gzip_comp_level 6; | |
| gzip_types text/plain text/css text/xml application/json application/javascript application/xml+rss application/atom+xml image/svg+xml; | |
| } | |
| } |
Author
qzm
commented
May 6, 2019
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment