Last active
February 15, 2021 23:00
-
-
Save strophy/74ce468f8954341e3a6ee5d6587fe70e to your computer and use it in GitHub Desktop.
dash platform nginx default config
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| limit_req_zone $binary_remote_addr zone=protect_api:15m rate=120r/m; | |
| server { | |
| listen 3000 default_server; | |
| limit_req zone=protect_api burst=300 nodelay; | |
| limit_req_status 429; | |
| # Docker DNS resolver | |
| # resolver 127.0.0.11 ipv6=off; | |
| # Route JSON RPC requests to DAPI API service | |
| location = / { | |
| if ($request_method = 'OPTIONS') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Max-Age' 1728000 always; | |
| add_header 'Content-Type' 'text/plain charset=UTF-8' always; | |
| add_header 'Content-Length' 0 always; | |
| return 204; | |
| } | |
| if ($request_method = 'POST') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Expose-Headers' 'Content-Transfer-Encoding,Grpc-Message,Grpc-Status,Custom-Header-1' always; | |
| } | |
| proxy_http_version 1.1; | |
| proxy_pass http://127.0.0.1:3004; | |
| proxy_set_header Host $host; | |
| proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
| proxy_set_header X-Real-IP $remote_addr; | |
| } | |
| # Route GRPC-WEB requests to Envoy DAPI TransactionsFilterStream service | |
| location = /org.dash.platform.dapi.v0.Core/subscribeToTransactionsWithProofs { | |
| if ($request_method = 'OPTIONS') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Max-Age' 1728000 always; | |
| add_header 'Content-Type' 'text/plain charset=UTF-8' always; | |
| add_header 'Content-Length' 0 always; | |
| return 204; | |
| } | |
| if ($request_method = 'POST') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Expose-Headers' 'Content-Transfer-Encoding,Grpc-Message,Grpc-Status,Custom-Header-1' always; | |
| } | |
| proxy_http_version 1.1; | |
| proxy_request_buffering off; | |
| proxy_pass http://127.0.0.1:8080$request_uri; | |
| proxy_hide_header access-control-allow-origin; | |
| proxy_set_header Host $host; | |
| proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
| proxy_set_header X-Real-IP $remote_addr; | |
| } | |
| # Route GRPC-WEB requests to Envoy DAPI API service | |
| location ~ ^/org\.dash\.platform\.dapi\.v0\.Core { | |
| if ($request_method = 'OPTIONS') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Max-Age' 1728000 always; | |
| add_header 'Content-Type' 'text/plain charset=UTF-8' always; | |
| add_header 'Content-Length' 0 always; | |
| return 204; | |
| } | |
| if ($request_method = 'POST') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Expose-Headers' 'Content-Transfer-Encoding,Grpc-Message,Grpc-Status,Custom-Header-1' always; | |
| } | |
| proxy_http_version 1.1; | |
| proxy_request_buffering off; | |
| proxy_pass http://127.0.0.1:8080$request_uri; | |
| proxy_hide_header access-control-allow-origin; | |
| proxy_set_header Host $host; | |
| proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
| proxy_set_header X-Real-IP $remote_addr; | |
| } | |
| # Route GRPC-WEB requests to Envoy DAPI Platform service | |
| location ~ ^/org\.dash\.platform\.dapi\.v0\.Platform { | |
| if ($request_method = 'OPTIONS') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Max-Age' 1728000 always; | |
| add_header 'Content-Type' 'text/plain charset=UTF-8' always; | |
| add_header 'Content-Length' 0 always; | |
| return 204; | |
| } | |
| if ($request_method = 'POST') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Expose-Headers' 'Content-Transfer-Encoding,Grpc-Message,Grpc-Status,Custom-Header-1' always; | |
| } | |
| proxy_pass http://127.0.0.1:8080$request_uri; | |
| proxy_http_version 1.1; | |
| proxy_request_buffering off; | |
| proxy_hide_header access-control-allow-origin; | |
| proxy_set_header Host $host; | |
| proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
| proxy_set_header X-Real-IP $remote_addr; | |
| proxy_set_header X-Forwarded-Proto $scheme; | |
| } | |
| location /grpc.health.v1.Health { | |
| if ($request_method = 'OPTIONS') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Max-Age' 1728000 always; | |
| add_header 'Content-Type' 'text/plain charset=UTF-8' always; | |
| add_header 'Content-Length' 0 always; | |
| return 204; | |
| } | |
| if ($request_method = 'POST') { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Expose-Headers' 'Content-Transfer-Encoding,Grpc-Message,Grpc-Status,Custom-Header-1' always; | |
| } | |
| proxy_http_version 1.1; | |
| proxy_request_buffering off; | |
| proxy_pass http://127.0.0.1:8080$request_uri; | |
| proxy_hide_header access-control-allow-origin; | |
| proxy_set_header Host $host; | |
| proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
| proxy_set_header X-Real-IP $remote_addr; | |
| } | |
| location ~ ^/org\.dash\.platform\.dapi\.v[0-9]+\.Core { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Expose-Headers' 'Content-Transfer-Encoding,Grpc-Message,Grpc-Status,Custom-Header-1' always; | |
| add_header 'Content-Type' 'application/grpc-web+proto' always; | |
| add_header 'grpc-status' 12 always; | |
| add_header 'grpc-message' 'Specified service version is not supported' always; | |
| return 204; | |
| } | |
| location ~ ^/org\.dash\.platform\.dapi\.v[0-9]+\.Platform { | |
| add_header 'Access-Control-Allow-Origin' '*' always; | |
| add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; | |
| add_header 'Access-Control-Allow-Headers' 'DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Transfer-Encoding,Custom-Header-1,X-Accept-Content-Transfer-Encoding,X-Accept-Response-Streaming,X-User-Agent,X-Grpc-Web' always; | |
| add_header 'Access-Control-Expose-Headers' 'Content-Transfer-Encoding,Grpc-Message,Grpc-Status,Custom-Header-1' always; | |
| add_header 'Content-Type' 'application/grpc-web+proto' always; | |
| add_header 'grpc-status' 12 always; | |
| add_header 'grpc-message' 'Specified service version is not supported' always; | |
| return 204; | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment