Azoraqua · August 15, 2020 12:02
diff --git a/nginx.example b/nginx.example
 server {
    listen 80;
    server_name <DOMAIN>;
    return 301 https://$server_name$request_uri;
 }

 server {
    listen 443 ssl http2;
    server_name <DOMAIN>;

    root /var/www/<APP_NAME>;
    index index.php;

    access_log /var/log/nginx/<APP_NAME>.app-access.log;
    error_log  /var/log/nginx/<APP_NAME>.app-error.log error;

    # allow larger file uploads and longer script runtimes
    client_max_body_size 100m;
    client_body_timeout 120s;

    sendfile off;

    # See https://hstspreload.org/ before uncommenting the line below.
    # add_header Strict-Transport-Security "max-age=15768000; preload;";
    add_header X-Content-Type-Options nosniff;
    add_header X-XSS-Protection "1; mode=block";
    add_header X-Robots-Tag none;
    add_header Content-Security-Policy "frame-ancestors 'self'";
    add_header X-Frame-Options DENY;
    add_header Referrer-Policy same-origin;

    location / {
        try_files $uri $uri/ /index.php?$query_string;
    }

    location ~ \.php$ {
        fastcgi_split_path_info ^(.+\.php)(/.+)$;
        fastcgi_pass unix:/run/php/php<PHP_VERSION>-fpm.sock;
        fastcgi_index index.php;
        include fastcgi_params;
        fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        fastcgi_param HTTP_PROXY "";
        fastcgi_intercept_errors off;
        fastcgi_buffer_size 16k;
        fastcgi_buffers 4 16k;
        fastcgi_connect_timeout 300;
        fastcgi_send_timeout 300;
        fastcgi_read_timeout 300;
        include /etc/nginx/fastcgi_params;
    }

    location ~ /\.ht {
        deny all;
    }
 }
	server {
	listen 80;
	server_name <DOMAIN>;
	return 301 https://$server_name$request_uri;
	}

	server {
	listen 443 ssl http2;
	server_name <DOMAIN>;

	root /var/www/<APP_NAME>;
	index index.php;

	access_log /var/log/nginx/<APP_NAME>.app-access.log;
	error_log /var/log/nginx/<APP_NAME>.app-error.log error;

	# allow larger file uploads and longer script runtimes
	client_max_body_size 100m;
	client_body_timeout 120s;

	sendfile off;

	# See https://hstspreload.org/ before uncommenting the line below.
	# add_header Strict-Transport-Security "max-age=15768000; preload;";
	add_header X-Content-Type-Options nosniff;
	add_header X-XSS-Protection "1; mode=block";
	add_header X-Robots-Tag none;
	add_header Content-Security-Policy "frame-ancestors 'self'";
	add_header X-Frame-Options DENY;
	add_header Referrer-Policy same-origin;

	location / {
	try_files $uri $uri/ /index.php?$query_string;
	}

	location ~ \.php$ {
	fastcgi_split_path_info ^(.+\.php)(/.+)$;
	fastcgi_pass unix:/run/php/php<PHP_VERSION>-fpm.sock;
	fastcgi_index index.php;
	include fastcgi_params;
	fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
	fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
	fastcgi_param HTTP_PROXY "";
	fastcgi_intercept_errors off;
	fastcgi_buffer_size 16k;
	fastcgi_buffers 4 16k;
	fastcgi_connect_timeout 300;
	fastcgi_send_timeout 300;
	fastcgi_read_timeout 300;
	include /etc/nginx/fastcgi_params;
	}

	location ~ /\.ht {
	deny all;
	}
	}