drupal-demo-ssl.site (1437B)
1 server { 2 listen 443 ssl; ## listen for ipv4; this line is default and implied 3 # listen [::]:80 default_server ipv6only=on; ## listen for ipv6 4 5 server_name drupal.demo.taler.net; 6 7 root /home/demo/drupal-demo; 8 9 ssl_certificate /etc/letsencrypt/live/taler.net/fullchain.pem; 10 ssl_certificate_key /etc/letsencrypt/live/taler.net/privkey.pem; 11 ssl_prefer_server_ciphers on; 12 ssl_session_cache shared:SSL:10m; 13 ssl_dhparam /etc/ssl/certs/dhparam.pem; 14 ssl_protocols TLSv1.2 TLSv1.1 TLSv1; 15 ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH'; 16 17 add_header Strict-Transport-Security "max-age=63072000; preload"; 18 19 # Make site accessible from http://localhost/ 20 21 # location / { 22 # try_files $uri $uri/ =404; 23 # rewrite /taler/pay /pay.php; 24 # rewrite /taler/contract /generate_taler_contract.php; 25 # } 26 27 # location /fullfillment { 28 # rewrite /(.*) /$1.php; 29 # } 30 31 location ~ \.php$ { 32 fastcgi_index index.php; 33 fastcgi_pass unix:/var/run/php5-fpm.sock; 34 fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; 35 include fastcgi_params; 36 } 37 38 # location /backend { 39 # rewrite /backend/(.*) /$1 break; 40 # proxy_pass http://127.0.0.1:19966; 41 # proxy_redirect off; 42 # proxy_set_header Host $host; 43 # } 44 45 client_max_body_size 10M; 46 client_body_buffer_size 128k; 47 48 include apps/drupal/drupal.conf; 49 }