X-Git-Url: https://git.cyclocoop.org/?p=lhc%2Fateliers.git;a=blobdiff_plain;f=etc%2Fnginx%2Fnginx.conf;h=94c1ffeb9bdf187e10466ed99640825ad0ad00c5;hp=216e273adc0963d5b4560c48b7e587a14654a8fc;hb=097751f5bd05dd28314024cf185b7eb38a9acda7;hpb=69b12c8b4360bdf14f0844140e88ef40a3d6e16f

diff --git a/etc/nginx/nginx.conf b/etc/nginx/nginx.conf
index 216e273..94c1ffe 100644
--- a/etc/nginx/nginx.conf
+++ b/etc/nginx/nginx.conf
@@ -9,6 +9,16 @@ http {
 	 '$remote_addr - $remote_user [$time_local] "$request" '
 	 '$status $body_bytes_sent "$http_referer" '
 	 '"$http_user_agent" "$http_x_forwarded_for"';
+	log_format piwik
+	 '{"ip": "$remote_addr",'
+	 '"host": "$host",'
+	 '"path": "$request_uri",'
+	 '"status": "$status",'
+	 '"referrer": "$http_referer",'
+	 '"user_agent": "$http_user_agent",'
+	 '"length": $bytes_sent,'
+	 '"generation_time_milli": $request_time,'
+	 '"date": "$time_iso8601"}';
 	access_log /var/log/nginx/access.log main buffer=32k;
 	client_body_buffer_size 4K;
 		# NOTE: % getconf PAGESIZE
@@ -60,18 +70,21 @@ http {
 	include /etc/nginx/mime.types;
 	keepalive_timeout 20;
 	large_client_header_buffers 4 8k;
+	map_hash_bucket_size 128;
 	open_file_cache max=200000 inactive=20s; 
 	open_file_cache_errors on;
 	open_file_cache_min_uses 2;
 	open_file_cache_valid 30s;
 	open_log_file_cache max=1000 inactive=20s min_uses=2 valid=1m;
 	proxy_cache_use_stale updating;
+	proxy_temp_path /run/shm/cache/nginx/proxy_temp 1 2;
 	reset_timedout_connection on;
 	send_timeout 60;
 		# NOTE: if the client stops reading data, free up the stale client connection after this much time.
 	sendfile on;
 	server_names_hash_bucket_size 128;
 	server_tokens off;
+	ssl_session_cache shared:SSL:10m;
 	tcp_nodelay on;
 		# NOTE: don't buffer data-sends (disable Nagle algorithm).
 		#       Good for sending frequent small bursts of data in real time.
@@ -81,14 +94,14 @@ http {
 		#       This is useful for prepending headers before calling sendfile,
 		#       or for throughput optimization.
 	types_hash_max_size 2048;
-	## Add here all user agents that are to be blocked.
 	map $http_user_agent $bad_bot {
+	 # NOTE: user agents that are to be blocked.
 		default 0;
 		libwww-perl                      1;
 		~(?i)(httrack|htmlparser|libwww) 1;
 	 }
-	## Add here all referrers that are to blocked.
 	#map $http_referer $bad_referer {
+	# # NOTE: referrers that are to be blocked.
 	#	default 0;
 	#	~(?i)(babes|casino|click|diamond|forsale|girl|jewelry|love|nudit|organic|poker|porn|poweroversoftware|replica|sex|teen|webcam|zippo) 1;
 	# }
@@ -97,7 +110,21 @@ http {
 		127.0.0.1 0;
 	 }
 	include /etc/nginx/site.d/*/http.conf;
-	include /etc/nginx/site.d/*/server.conf;
+	include /etc/nginx/*/*/server.conf;
+	include /etc/nginx/*/*/*/server.conf;
+	server {
+		listen 80 default_server;
+		server_name  _;
+		return 302 $scheme://heureux-cyclage.org$request_uri;
+	 }
+	server {
+		listen 443 default_server;
+		server_name  _;
+		include             /etc/nginx/conf.d/ssl.conf;
+		ssl_certificate     /etc/nginx/org/heureux-cyclage/crt.pem;
+		ssl_certificate_key /etc/nginx/org/heureux-cyclage/key.pem;
+		return 302 $scheme://heureux-cyclage.org$request_uri;
+	 }
  }
 pid /run/nginx.pid;
 user www-data;