blob: 175a7b74f03e3aa227d5a224fb04f738d22c25eb (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
|
##----------------------------------------------------------------------
## openpgpkey.example.com
##----------------------------------------------------------------------
server {
listen 80;
listen [::]:80;
server_name openpgpkey.example.com;
access_log /var/log/nginx/wkd.log mine;
location '/.well-known/acme-challenge' {
default_type "text/plain";
root /var/www/openpgpkey;
}
location / {
return 301 https://openpgpkey.example.com$request_uri;
}
}
#server {
# listen 443 ssl http2;
# listen [::]:443 ssl http2;
# server_name openpgpkey.example.com;
# access_log /var/log/nginx/wkd.log mine;
# root /var/www/openpgpkey;
#
# add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
# add_header Expect-CT "enforce, max-age=300, report-uri=\"https://mattrude.com/expect-ct/\"";
# add_header Content-Security-Policy "default-src 'self'; script-src 'self';";
# add_header X-XSS-Protection "1; mode=block";
# add_header X-Content-Type-Options nosniff;
# add_header X-Frame-Options SAMEORIGIN;
#
# ssl_certificate /etc/letsencrypt/live/openpgpkey.example.com/fullchain.pem;
# ssl_certificate_key /etc/letsencrypt/live/openpgpkey.example.com/privkey.pem;
# ssl_stapling on;
#
# error_page 404 /index.html;
#
# location ~* \.(html|ico)$ {
# expires 60d;
# add_header Cache-Control "public, no-transform";
# }
#
# location ^~ /.well-known/ {
# default_type "text/plain";
# add_header 'Access-Control-Allow-Origin' '*' always;
# }
#
# location /keys {
# default_type "text/plain";
# add_header Content-Type text/plain;
# }
#
# location ^~/.git { return 404; }
# location ^~/.gitignore { return 404; }
# location ^~/README.md { return 404; }
#}
|