5 changed files with 151 additions and 29 deletions
-
29config/nginx/conf.d/vhosts.conf.example
-
24config/nginx/conf.d/z-grav.conf.example
-
19config/nginx/conf.d/z-s3.conf.example
-
67config/nginx/conf.d/z-wordpress.conf.example
-
41config/nginx/conf.d/z-yii.conf.example
@ -0,0 +1,24 @@ |
|||||
|
server { |
||||
|
server_name loc.wpstudio-new; |
||||
|
listen 80; |
||||
|
root $root; |
||||
|
index index.html index.htm index.php; |
||||
|
location / { |
||||
|
try_files $uri $uri/ /index.php?$query_string; |
||||
|
} |
||||
|
location ~ \.php$ { |
||||
|
fastcgi_pass fpm74; |
||||
|
include fastcgi_params; |
||||
|
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; |
||||
|
} |
||||
|
## Begin - Security |
||||
|
# deny all direct access for these folders |
||||
|
location ~* /(\.git|cache|bin|logs|backup|tests)/.*$ { return 403; } |
||||
|
# deny running scripts inside core system folders |
||||
|
location ~* /(system|vendor)/.*\.(txt|xml|md|html|yaml|yml|php|pl|py|cgi|twig|sh|bat|example)$ { return 403; } |
||||
|
# deny running scripts inside user folder |
||||
|
location ~* /user/.*\.(txt|md|yaml|yml|php|pl|py|cgi|twig|sh|bat)$ { return 403; } |
||||
|
# deny access to specific files in the root folder |
||||
|
location ~ /(LICENSE\.txt|composer\.lock|composer\.json|nginx\.conf|web\.config|htaccess\.txt|\.htaccess) { return 403; } |
||||
|
## End - Security |
||||
|
} |
||||
@ -0,0 +1,19 @@ |
|||||
|
server { |
||||
|
server_name s3.local; |
||||
|
ignore_invalid_headers off; |
||||
|
client_max_body_size 0; |
||||
|
proxy_buffering off; |
||||
|
location / { |
||||
|
proxy_pass http://minio:9000; |
||||
|
proxy_set_header Host $host; |
||||
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; |
||||
|
proxy_set_header X-Real-IP $remote_addr; |
||||
|
proxy_connect_timeout 300; |
||||
|
# Default is HTTP/1, keepalive is only enabled in HTTP/1.1 |
||||
|
proxy_http_version 1.1; |
||||
|
proxy_set_header Connection ""; |
||||
|
chunked_transfer_encoding off; |
||||
|
} |
||||
|
|
||||
|
listen 80; |
||||
|
} |
||||
@ -0,0 +1,67 @@ |
|||||
|
server { |
||||
|
server_name |
||||
|
wp-with-file-proxy.local.wpstudio.ru |
||||
|
; |
||||
|
listen 80; |
||||
|
root $root; |
||||
|
index index.html index.htm index.php; |
||||
|
location / { |
||||
|
try_files $uri $uri/ /index.php?$args; |
||||
|
} |
||||
|
rewrite /wp-admin$ $scheme://$host$uri/ permanent; |
||||
|
location ~* ^/wp-content/uploads/.*$ { |
||||
|
expires max; |
||||
|
proxy_pass $uploads_upstream; |
||||
|
} |
||||
|
location ~* ^/uploads/.*$ { |
||||
|
expires max; |
||||
|
proxy_pass $uploads_upstream; |
||||
|
} |
||||
|
location ~* ^.+\.(ogg|ogv|svg|svgz|eot|otf|woff|mp4|ttf|rss|atom|jpg|jpeg|gif|png|ico|zip|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf)$ { |
||||
|
access_log off; |
||||
|
} |
||||
|
location ~ [^/]\.php(/|$) { |
||||
|
fastcgi_split_path_info ^(.+?\.php)(/.*)$; |
||||
|
if (!-f $document_root$fastcgi_script_name) { |
||||
|
return 404; |
||||
|
} |
||||
|
include fastcgi_params; |
||||
|
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; |
||||
|
fastcgi_param PATH_INFO $fastcgi_path_info; |
||||
|
fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info; |
||||
|
|
||||
|
fastcgi_pass fpm74; |
||||
|
fastcgi_index index.php; |
||||
|
fastcgi_read_timeout 3000; |
||||
|
} |
||||
|
} |
||||
|
|
||||
|
server { |
||||
|
server_name |
||||
|
wp.local.wpstudio.ru |
||||
|
; |
||||
|
listen 80; |
||||
|
root $root; |
||||
|
index index.html index.htm index.php; |
||||
|
location / { |
||||
|
try_files $uri $uri/ /index.php?$args; |
||||
|
} |
||||
|
rewrite /wp-admin$ $scheme://$host$uri/ permanent; |
||||
|
location ~* ^.+\.(ogg|ogv|svg|svgz|eot|otf|woff|mp4|ttf|rss|atom|jpg|jpeg|gif|png|ico|zip|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf)$ { |
||||
|
access_log off; |
||||
|
} |
||||
|
location ~ [^/]\.php(/|$) { |
||||
|
fastcgi_split_path_info ^(.+?\.php)(/.*)$; |
||||
|
if (!-f $document_root$fastcgi_script_name) { |
||||
|
return 404; |
||||
|
} |
||||
|
include fastcgi_params; |
||||
|
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; |
||||
|
fastcgi_param PATH_INFO $fastcgi_path_info; |
||||
|
fastcgi_param PATH_TRANSLATED $document_root$fastcgi_path_info; |
||||
|
|
||||
|
fastcgi_pass fpm74; |
||||
|
fastcgi_index index.php; |
||||
|
fastcgi_read_timeout 3000; |
||||
|
} |
||||
|
} |
||||
@ -0,0 +1,41 @@ |
|||||
|
server { |
||||
|
server_name |
||||
|
yii.local.slave.dimti.ru |
||||
|
backend.yii.local.slave.dimti.ru |
||||
|
; |
||||
|
root $root; |
||||
|
set $yii_bootstrap "index.php"; |
||||
|
charset utf-8; |
||||
|
location / { |
||||
|
index index.html $yii_bootstrap; |
||||
|
try_files $uri $uri/ /$yii_bootstrap?$args; |
||||
|
} |
||||
|
location ~ ^/(protected|framework|themes/\w+/views) { |
||||
|
deny all; |
||||
|
} |
||||
|
# отключаем обработку запросов фреймворком к несуществующим статичным файлам |
||||
|
location ~ \.(js|css|png|jpg|gif|swf|ico|pdf|mov|fla|zip|rar)$ { |
||||
|
try_files $uri =404; |
||||
|
} |
||||
|
# передаем PHP-скрипт серверу FastCGI, прослушивающему адрес 127.0.0.1:9000 |
||||
|
location ~ \.php { |
||||
|
fastcgi_split_path_info ^(.+\.php)(.*)$; |
||||
|
# позволяем yii перехватывать запросы к несуществующим PHP-файлам |
||||
|
set $fsn /$yii_bootstrap; |
||||
|
if (-f $document_root$fastcgi_script_name){ |
||||
|
set $fsn $fastcgi_script_name; |
||||
|
} |
||||
|
fastcgi_pass fpm74; |
||||
|
include fastcgi_params; |
||||
|
fastcgi_param SCRIPT_FILENAME $document_root$fsn; |
||||
|
# PATH_INFO и PATH_TRANSLATED могут быть опущены, но стандарт RFC 3875 определяет для CGI |
||||
|
fastcgi_param PATH_INFO $fastcgi_path_info; |
||||
|
fastcgi_param PATH_TRANSLATED $document_root$fsn; |
||||
|
} |
||||
|
# не позволять nginx отдавать файлы, начинающиеся с точки (.htaccess, .svn, .git и прочие) |
||||
|
location ~ /\. { |
||||
|
deny all; |
||||
|
access_log off; |
||||
|
log_not_found off; |
||||
|
} |
||||
|
} |
||||
Write
Preview
Loading…
Cancel
Save
Reference in new issue