From 47967fd7475e9d143eff4822f27960fa195de2a0 Mon Sep 17 00:00:00 2001 From: Anthony Wang Date: Thu, 16 Nov 2023 02:18:47 +0000 Subject: [PATCH] Use one TLS cert for all meower.mdwalters.exozy.me subdomains, reformat file --- mdwalters.conf | 112 ++++++++++++++++++++++++------------------------- 1 file changed, 55 insertions(+), 57 deletions(-) diff --git a/mdwalters.conf b/mdwalters.conf index 7929721..7fb24b7 100644 --- a/mdwalters.conf +++ b/mdwalters.conf @@ -1,57 +1,55 @@ -server { - listen 443 ssl; - listen [::]:443 ssl; - server_name meower.mdwalters.exozy.me; - - ssl_certificate /etc/letsencrypt/live/meower.mdwalters.exozy.me/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/meower.mdwalters.exozy.me/privkey.pem; - - location / { - proxy_pass http://localhost:5173; - proxy_set_header Host $host; - proxy_set_header X-Real-IP $remote_addr; - proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; - proxy_set_header X-Forwarded-Proto $scheme; - } -} - -server { - listen 443 ssl; - listen [::]:443 ssl; - server_name api.meower.mdwalters.exozy.me; - - ssl_certificate /etc/letsencrypt/live/api.meower.mdwalters.exozy.me/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/api.meower.mdwalters.exozy.me/privkey.pem; - - location / { - proxy_pass http://localhost:1342; - proxy_set_header Host $host; - proxy_set_header X-Real-IP $remote_addr; - proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; - proxy_set_header X-Forwarded-Proto $scheme; - } -} - -server { - listen 443 ssl; - listen [::]:443 ssl; - server_name wss.meower.mdwalters.exozy.me; - - ssl_certificate /etc/letsencrypt/live/wss.meower.mdwalters.exozy.me/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/wss.meower.mdwalters.exozy.me/privkey.pem; - - location / { - proxy_pass http://localhost:1341; - proxy_set_header Host $host; - proxy_set_header X-Real-IP $remote_addr; - proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; - proxy_set_header X-Forwarded-Proto $scheme; - - # Proxy WebSockets - proxy_http_version 1.1; - proxy_set_header Upgrade $http_upgrade; - proxy_set_header Connection "upgrade"; - } -} - - +server { + listen 443 ssl; + listen [::]:443 ssl; + server_name meower.mdwalters.exozy.me; + + ssl_certificate /etc/letsencrypt/live/meower.mdwalters.exozy.me/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/meower.mdwalters.exozy.me/privkey.pem; + + location / { + proxy_pass http://localhost:5173; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + } +} + +server { + listen 443 ssl; + listen [::]:443 ssl; + server_name api.meower.mdwalters.exozy.me; + + ssl_certificate /etc/letsencrypt/live/meower.mdwalters.exozy.me/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/meower.mdwalters.exozy.me/privkey.pem; + + location / { + proxy_pass http://localhost:1342; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + } +} + +server { + listen 443 ssl; + listen [::]:443 ssl; + server_name wss.meower.mdwalters.exozy.me; + + ssl_certificate /etc/letsencrypt/live/meower.mdwalters.exozy.me/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/meower.mdwalters.exozy.me/privkey.pem; + + location / { + proxy_pass http://localhost:1341; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + + # Proxy WebSockets + proxy_http_version 1.1; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "upgrade"; + } +}