lemonldap-ng/_example/etc/portal-nginx.conf

server {
  listen __PORT__;
  server_name auth.__DNSDOMAIN__;
  root __PORTALDIR__;

  if ($uri !~ ^/((static|javascript|favicon).*|.*\.psgi)) {
    rewrite ^/(.*)$ /index.psgi/$1 break;
  }

  location ~ \.psgi(?:$|/) {
    include /etc/nginx/fastcgi_params;
    fastcgi_pass unix:__FASTCGISOCKDIR__/llng-fastcgi.sock;
    fastcgi_param LLTYPE psgi;
    fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    fastcgi_split_path_info ^(.*\.psgi)(/.*)$;
    fastcgi_param PATH_INFO  $fastcgi_path_info;
    # Uncomment this if you use Auth SSL:
    #map $ssl_client_s_dn  $ssl_client_s_dn_cn {
    #  default           "";
    #  ~/CN=(?<CN>[^/]+) $CN;
    #}
    #fastcgi_param  SSL_CLIENT_S_DN_CN $ssl_client_s_dn_cn
  }

  index index.psgi;
  location / {
    try_files $uri $uri/ =404;

    # Uncomment this if you use https only
    #add_header Strict-Transport-Security "15768000";
  }

  location /static/ {
    alias __PORTALSTATICDIR__;
  }

  # SOAP functions for sessions management (disabled by default)
  location /index/adminSessions {
    deny all;
  }

  # SOAP functions for sessions access (disabled by default)
  location /index.psgi/sessions {
    deny all;
  }

  # SOAP functions for configuration access (disabled by default)
  location /index.psgi/config {
    deny all;
  }

  # SOAP functions for notification insertion (disabled by default)
  location /index.psgi/notification {
    deny all;
  }

  # DEBIAN
  # If install was made with USEDEBIANLIBS (official releases), uncomment this
  #location /javascript/ {
  #  alias /usr/share/javascript/;
  #}
}
First Nginx configuration that runs !!! To see it, launch 'make e2e_tests TESTWEBSERVER=nginx' 2016-01-29 17:50:16 +01:00			`server {`
			`listen __PORT__;`
			`server_name auth.__DNSDOMAIN__;`
			`root __PORTALDIR__;`

Adapt server configuration (#595) 2017-01-03 18:23:38 +01:00			`if ($uri !~ ^/((static\|javascript\|favicon).\|.\.psgi)) {`
			`rewrite ^/(.*)$ /index.psgi/$1 break;`
			`}`

			`location ~ \.psgi(?:$\|/) {`
First Nginx configuration that runs !!! To see it, launch 'make e2e_tests TESTWEBSERVER=nginx' 2016-01-29 17:50:16 +01:00			`include /etc/nginx/fastcgi_params;`
Join variables 2016-02-15 22:12:56 +01:00			`fastcgi_pass unix:__FASTCGISOCKDIR__/llng-fastcgi.sock;`
Enable new portal with Nginx (#595) 2017-01-09 22:54:06 +01:00			`fastcgi_param LLTYPE psgi;`
Use SCRIPT_FILENAME to search index.pl (#583) 2016-02-16 09:56:03 +01:00			`fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;`
Update web conf (#1138) 2017-01-18 18:55:04 +01:00			`fastcgi_split_path_info ^(.\.psgi)(/.)$;`
Fix missing PATH_INFO (#1130) 2017-01-09 20:32:19 +01:00			`fastcgi_param PATH_INFO $fastcgi_path_info;`
SSL comments, fix #1129 2017-01-15 15:28:48 +01:00			`# Uncomment this if you use Auth SSL:`
			`#map $ssl_client_s_dn $ssl_client_s_dn_cn {`
			`# default "";`
			`# ~/CN=(?<CN>[^/]+) $CN;`
			`#}`
			`#fastcgi_param SSL_CLIENT_S_DN_CN $ssl_client_s_dn_cn`
First Nginx configuration that runs !!! To see it, launch 'make e2e_tests TESTWEBSERVER=nginx' 2016-01-29 17:50:16 +01:00			`}`

Adapt server configuration (#595) 2017-01-03 18:23:38 +01:00			`index index.psgi;`
First Nginx configuration that runs !!! To see it, launch 'make e2e_tests TESTWEBSERVER=nginx' 2016-01-29 17:50:16 +01:00			`location / {`
Update comments (Closes: #287) Also #583 for headers management 2016-02-11 10:36:12 +01:00			`try_files $uri $uri/ =404;`

			`# Uncomment this if you use https only`
			`#add_header Strict-Transport-Security "15768000";`
First Nginx configuration that runs !!! To see it, launch 'make e2e_tests TESTWEBSERVER=nginx' 2016-01-29 17:50:16 +01:00			`}`
Comments for USEDEBIANLIBS=yes 2016-02-16 12:19:32 +01:00
Enable new portal with Nginx (#595) 2017-01-09 22:54:06 +01:00			`location /static/ {`
			`alias __PORTALSTATICDIR__;`
			`}`

Add other paths (#583) 2016-02-18 12:49:30 +01:00			`# SOAP functions for sessions management (disabled by default)`
			`location /index/adminSessions {`
			`deny all;`
			`}`

			`# SOAP functions for sessions access (disabled by default)`
Adapt server configuration (#595) 2017-01-03 18:23:38 +01:00			`location /index.psgi/sessions {`
Add other paths (#583) 2016-02-18 12:49:30 +01:00			`deny all;`
			`}`

			`# SOAP functions for configuration access (disabled by default)`
Adapt server configuration (#595) 2017-01-03 18:23:38 +01:00			`location /index.psgi/config {`
Add other paths (#583) 2016-02-18 12:49:30 +01:00			`deny all;`
			`}`

			`# SOAP functions for notification insertion (disabled by default)`
Adapt server configuration (#595) 2017-01-03 18:23:38 +01:00			`location /index.psgi/notification {`
Add other paths (#583) 2016-02-18 12:49:30 +01:00			`deny all;`
			`}`
adding default vhost rewrites for IssuerDbGet (references #1025) 2016-06-04 15:48:17 +02:00
Comments for USEDEBIANLIBS=yes 2016-02-16 12:19:32 +01:00			`# DEBIAN`
			`# If install was made with USEDEBIANLIBS (official releases), uncomment this`
			`#location /javascript/ {`
			`# alias /usr/share/javascript/;`
			`#}`
First Nginx configuration that runs !!! To see it, launch 'make e2e_tests TESTWEBSERVER=nginx' 2016-01-29 17:50:16 +01:00			`}`