nginx – 筚路蓝缕

upstream php-handler {
    server 127.0.0.1:9000;
    #server unix:/var/run/php5-fpm.sock;
}

server {
    listen 80;
    server_name example.com;
    return 301 https://$server_name$request_uri;
}

server {
    listen 443 ssl;
    server_name example.com;

    ssl_certificate /etc/ssl/nginx/cert.pem;
    ssl_certificate_key /etc/ssl/nginx/cert.key;

    root /var/www;

    client_max_body_size 1000M; # set max upload size
    fastcgi_buffers 64 4K;

    # ownCloud blacklist
    location ~ ^/owncloud/(?:\.htaccess|data|config|db_structure\.xml|README) {
        deny all;
        error_page 403 = /owncloud/core/templates/403.php;
    }

    location / {
        index index.html;
    }

    location /owncloud/ {
        error_page 403 = /owncloud/core/templates/403.php;
        error_page 404 = /owncloud/core/templates/404.php;

        rewrite ^/owncloud/caldav(.*)$ /remote.php/caldav$1 redirect;
        rewrite ^/owncloud/carddav(.*)$ /remote.php/carddav$1 redirect;
        rewrite ^/owncloud/webdav(.*)$ /remote.php/webdav$1 redirect;

        rewrite ^(/owncloud/core/doc[^\/]+/)$ $1/index.html;

        # The following rules are only needed with webfinger
        rewrite ^/owncloud/.well-known/host-meta /public.php?service=host-meta last;
        rewrite ^/owncloud/.well-known/host-meta.json /public.php?service=host-meta-json last;
        rewrite ^/owncloud/.well-known/carddav /remote.php/carddav/ redirect;
        rewrite ^/owncloud/.well-known/caldav /remote.php/caldav/ redirect;

        try_files $uri $uri/ index.php;
    }

    location ~ \.php(?:$|/) {
        fastcgi_split_path_info ^(.+\.php)(/.+)$;
        include fastcgi_params;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        fastcgi_param PATH_INFO $fastcgi_path_info;
        fastcgi_param HTTPS on;
        fastcgi_pass php-handler;
    }

    # Optional: set long EXPIRES header on static assets
    location ~* ^/owncloud(/.+\.(jpg|jpeg|gif|bmp|ico|png|css|js|swf))$ {
        expires 30d;
        access_log off;  # Optional: Don't log access to assets
    }
}

upstream php-handler {

server 127.0.0.1:9000;

#server unix:/var/run/php5-fpm.sock;

}

server {

listen 80;

server_name example.com;

return 301 https://$server_name$request_uri;

}

server {

listen 443 ssl;

server_name example.com;

ssl_certificate /etc/ssl/nginx/cert.pem;

ssl_certificate_key /etc/ssl/nginx/cert.key;

root /var/www;

client_max_body_size 1000M; # set max upload size

fastcgi_buffers 64 4K;

# ownCloud blacklist

location ~ ^/owncloud/(?:\.htaccess|data|config|db_structure\.xml|README) {

deny all;

error_page 403 = /owncloud/core/templates/403.php;

}

location / {

index index.html;

}

location /owncloud/ {

error_page 403 = /owncloud/core/templates/403.php;

error_page 404 = /owncloud/core/templates/404.php;

rewrite ^/owncloud/caldav(.*)$ /remote.php/caldav$1 redirect;

rewrite ^/owncloud/carddav(.*)$ /remote.php/carddav$1 redirect;

rewrite ^/owncloud/webdav(.*)$ /remote.php/webdav$1 redirect;

rewrite ^(/owncloud/core/doc[^\/]+/)$ $1/index.html;

# The following rules are only needed with webfinger

rewrite ^/owncloud/.well-known/host-meta /public.php?service=host-meta last;

rewrite ^/owncloud/.well-known/host-meta.json /public.php?service=host-meta-json last;

rewrite ^/owncloud/.well-known/carddav /remote.php/carddav/ redirect;

rewrite ^/owncloud/.well-known/caldav /remote.php/caldav/ redirect;

try_files $uri $uri/ index.php;

}

location ~ \.php(?:$|/) {

fastcgi_split_path_info ^(.+\.php)(/.+)$;

include fastcgi_params;

fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;

fastcgi_param PATH_INFO $fastcgi_path_info;

fastcgi_param HTTPS on;

fastcgi_pass php-handler;

}

# Optional: set long EXPIRES header on static assets

location ~* ^/owncloud(/.+\.(jpg|jpeg|gif|bmp|ico|png|css|js|swf))$ {

expires 30d;

access_log off; # Optional: Don't log access to assets

}

标签： nginx

用nginx实现微信公众号相关的反向代理

Nginx图片防盗链valid_referers

nginx、php-fpm、mysql用户权限解析

nginx代理https后，应用redirect https变成http

ownCloud的Nginx配置

CentOS7 Nginx FastCGI sent in stderr: “Primary script unknown”

应用服务器配置SSL证书 + HTTPS站点