enki/kindexr
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
kindexr/deploy/nginx.conf.example
T

68 lines
2.2 KiB
Plaintext
Raw Permalink Blame History

# nginx reverse proxy for kindexr
# Place this in /etc/nginx/sites-available/kindexr and symlink to sites-enabled/.
#
# Prerequisites:
# - kindexr listening on 127.0.0.1:9117
# - TLS certificate (e.g. from Let's Encrypt via certbot)
#
# Usage:
# cp nginx.conf.example /etc/nginx/sites-available/kindexr
# ln -s /etc/nginx/sites-available/kindexr /etc/nginx/sites-enabled/
# nginx -t && systemctl reload nginx
upstream kindexr {
server 127.0.0.1:9117;
keepalive 32;
}
server {
listen 80;
listen [::]:80;
server_name kindexr.example.com;
return 301 https://$host$request_uri;
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name kindexr.example.com;
# TLS — uncomment and adjust paths after running certbot
# ssl_certificate /etc/letsencrypt/live/kindexr.example.com/fullchain.pem;
# ssl_certificate_key /etc/letsencrypt/live/kindexr.example.com/privkey.pem;
# include /etc/letsencrypt/options-ssl-nginx.conf;
# ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
add_header X-Content-Type-Options "nosniff" always;
add_header X-Frame-Options "DENY" always;
add_header X-XSS-Protection "1; mode=block" always;
add_header Referrer-Policy "no-referrer" always;
access_log /var/log/nginx/kindexr_access.log;
error_log /var/log/nginx/kindexr_error.log;
location / {
proxy_pass http://kindexr;
proxy_http_version 1.1;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header Connection "";
# Torznab searches on a large index can be slow
proxy_read_timeout 60s;
proxy_send_timeout 60s;
}
location /health {
proxy_pass http://kindexr/health;
proxy_http_version 1.1;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
Reference in New Issue View Git Blame Copy Permalink