1、无ssl证书模版
worker_processes 1;
pid /run/nginx.pid;
events {
worker_connections 1024;
}
http {
include mime.types;
default_type application/json;
sendfile on;
keepalive_timeout 65;
server {
listen 80;
listen [::]:80;
server_name www.xxx.com;
# 前端静态资源
location / {
root /usr/share/nginx/html/lifecolor;
try_files $uri $uri/ /index.html;# 不加刷新会404
index index.html index.htm;
}
# 转发后端
location ^~/prod-api/ {
proxy_pass http://lifecolor:8080/;
}
}
}
2、有ssl证书模版
user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log notice;
pid /var/run/nginx.pid;
events {
worker_connections 1024;
}
http {
include /etc/nginx/mime.types;
default_type application/octet-stream;
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /var/log/nginx/access.log main;
sendfile on;
#tcp_nopush on;
keepalive_timeout 65;
#gzip on;
include /etc/nginx/conf.d/*.conf;
server {
listen 80;
listen [::]:80;
server_name www.xxx.com;
rewrite ^(.*) https://$server_name$1 permanent;
}
server {
listen 443 ssl;
server_name xxx.com;
# 注意证书文件名字和位置,是从/etc/nginx/下开始算起的
ssl_certificate /etc/nginx/certs/${server_name}/fullchain.cer;
ssl_certificate_key /etc/nginx/certs/${server_name}/${server_name}.key;
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 5m;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
root /usr/share/nginx/html/lifecolor;
try_files $uri $uri/ /index.html;# 不加刷新会404
index index.html index.htm;
}
location ^~/prod-api/ {
proxy_pass http://lifecolor:8080/;
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
root /usr/share/nginx/html;
}
}
}
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
