首页 发现 帮助
注册 登录
fusion
/
va_admin_server
2
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
浏览代码

feat: 添加nginx配置

max 7 月之前
父节点
0410f48ad9
当前提交
ffff1dfa3a
共有 2 个文件被更改,包括 208 次插入0 次删除
分列视图 显示文件统计
  1. 104 0
      nginxConf/nginxProd.conf
  2. 104 0
      nginxConf/nginxSandbox.conf

+ 104 - 0
nginxConf/nginxProd.conf
查看文件 

@@ -0,0 +1,104 @@
 
+server
 
+{
 
+    listen 80;
 
+    listen 443 ssl;
 
+    server_name va.fusionpay.one;
 
+    index index.html index.htm default.htm default.html;
 
+    root /www/wwwroot/va/admin/dist;
 
+    
+    #SSL-START SSL related configuration
 
+    #error_page 404/404.html;
 
+    ssl_certificate    /www/server/panel/vhost/cert/server/fullchain.pem;
 
+    ssl_certificate_key    /www/server/panel/vhost/cert/server/privkey.pem;
 
+    ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
 
+    ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
 
+    ssl_prefer_server_ciphers on;
 
+    ssl_session_cache shared:SSL:10m;
 
+    ssl_session_timeout 10m;
 
+    add_header Strict-Transport-Security "max-age=31536000";
 
+    error_page 497  https://$host$request_uri;
 
+    #SSL-END
 
+    
+    #ERROR-PAGE-START  Error page related configuration
 
+    #error_page 404 /404.html;
 
+    #error_page 502 /502.html;
 
+    #ERROR-PAGE-END
 
+    
+    
+    #REWRITE-START Pseudo-static related configuration
 
+    include /www/server/panel/vhost/rewrite/node_server.conf;
 
+    #REWRITE-END
 
+    
+    location / {
 
+      index  index.html index.htm;
 
+	    try_files $uri $uri/ @router;
 
+    }
 
+    location @router {
 
+        rewrite ^.*$ /index.html last;
 
+    }
 
+    
+    #Files or directories forbidden to access
 
+    location ~ ^/(\.user.ini|\.htaccess|\.git|\.svn|\.project|LICENSE|README.md|package.json|package-lock.json|\.env|node_modules) {
 
+        return 404;
 
+    }
 
+    
+    #One-click application for SSL certificate verification directory related settings
 
+    location /.well-known/ {
 
+        root  /www/wwwroot/va/server;
 
+    }
 
+
 
+    # HTTP reverse proxy related settings begin >>>
 
+    location ~ /purge(/.*) {
 
+        proxy_cache_purge cache_one $host$request_uri$is_args$args;
 
+    }
 
+
 
+    location /api/ {
 
+        proxy_pass http://127.0.0.1:8008/;
 
+        proxy_set_header Host $host;
 
+        proxy_set_header X-Real-IP $remote_addr;
 
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 
+        proxy_set_header REMOTE-HOST $remote_addr;
 
+        add_header X-Cache $upstream_cache_status;
 
+
 
+        proxy_connect_timeout 30s;
 
+        proxy_read_timeout 86400s;
 
+        proxy_send_timeout 30s;
 
+        proxy_http_version 1.1;
 
+        proxy_set_header Upgrade $http_upgrade;
 
+        proxy_set_header Connection "upgrade";
 
+    }
 
+    location /openApi/ {
 
+        proxy_pass http://127.0.0.1:8008/api/;
 
+        proxy_set_header Host $host;
 
+        proxy_set_header X-Real-IP $remote_addr;
 
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 
+        proxy_set_header REMOTE-HOST $remote_addr;
 
+        add_header X-Cache $upstream_cache_status;
 
+
 
+        proxy_connect_timeout 30s;
 
+        proxy_read_timeout 86400s;
 
+        proxy_send_timeout 30s;
 
+        proxy_http_version 1.1;
 
+        proxy_set_header Upgrade $http_upgrade;
 
+        proxy_set_header Connection "upgrade";
 
+    }
 
+        location /api-doc/ {
 
+        proxy_pass http://127.0.0.1:8008/swagger-ui/index.html;
 
+        proxy_set_header Host $host;
 
+        proxy_set_header X-Real-IP $remote_addr;
 
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 
+        proxy_set_header REMOTE-HOST $remote_addr;
 
+        add_header X-Cache $upstream_cache_status;
 
+
 
+        proxy_connect_timeout 30s;
 
+        proxy_read_timeout 86400s;
 
+        proxy_send_timeout 30s;
 
+        proxy_http_version 1.1;
 
+        proxy_set_header Upgrade $http_upgrade;
 
+        proxy_set_header Connection "upgrade";
 
+    }
 
+    # End of HTTP reverse proxy related settings <<<
 
+    
+    access_log  /www/wwwlogs/server.log;
 
+    error_log  /www/wwwlogs/server.error.log;
 
+}

+ 104 - 0
nginxConf/nginxSandbox.conf
查看文件 

@@ -0,0 +1,104 @@
 
+server
 
+{
 
+    listen 80;
 
+    listen 443 ssl;
 
+    server_name sandbox-va.fusionpay.one;
 
+    index index.html index.htm default.htm default.html;
 
+    root /www/wwwroot/va/admin_test/dist;
 
+
 
+    #SSL-START SSL related configuration
 
+    #error_page 404/404.html;
 
+    ssl_certificate    /www/server/panel/vhost/cert/server/fullchain.pem;
 
+    ssl_certificate_key    /www/server/panel/vhost/cert/server/privkey.pem;
 
+    ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
 
+    ssl_ciphers EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
 
+    ssl_prefer_server_ciphers on;
 
+    ssl_session_cache shared:SSL:10m;
 
+    ssl_session_timeout 10m;
 
+    add_header Strict-Transport-Security "max-age=31536000";
 
+    error_page 497  https://$host$request_uri;
 
+    #SSL-END
 
+
 
+    #ERROR-PAGE-START  Error page related configuration
 
+    #error_page 404 /404.html;
 
+    #error_page 502 /502.html;
 
+    #ERROR-PAGE-END
 
+
 
+
 
+    #REWRITE-START Pseudo-static related configuration
 
+    include /www/server/panel/vhost/rewrite/node_server.conf;
 
+    #REWRITE-END
 
+
 
+    location / {
 
+      index  index.html index.htm;
 
+	    try_files $uri $uri/ @router;
 
+    }
 
+    location @router {
 
+        rewrite ^.*$ /index.html last;
 
+    }
 
+
 
+    #Files or directories forbidden to access
 
+    location ~ ^/(\.user.ini|\.htaccess|\.git|\.svn|\.project|LICENSE|README.md|package.json|package-lock.json|\.env|node_modules) {
 
+        return 404;
 
+    }
 
+
 
+    #One-click application for SSL certificate verification directory related settings
 
+    location /.well-known/ {
 
+        root  /www/wwwroot/va/server_test;
 
+    }
 
+
 
+    # HTTP reverse proxy related settings begin >>>
 
+    location ~ /purge(/.*) {
 
+        proxy_cache_purge cache_one $host$request_uri$is_args$args;
 
+    }
 
+
 
+    location /api/ {
 
+        proxy_pass http://127.0.0.1:8009/;
 
+        proxy_set_header Host $host;
 
+        proxy_set_header X-Real-IP $remote_addr;
 
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 
+        proxy_set_header REMOTE-HOST $remote_addr;
 
+        add_header X-Cache $upstream_cache_status;
 
+
 
+        proxy_connect_timeout 30s;
 
+        proxy_read_timeout 86400s;
 
+        proxy_send_timeout 30s;
 
+        proxy_http_version 1.1;
 
+        proxy_set_header Upgrade $http_upgrade;
 
+        proxy_set_header Connection "upgrade";
 
+    }
 
+    location /openApi/ {
 
+        proxy_pass http://127.0.0.1:8009/api/;
 
+        proxy_set_header Host $host;
 
+        proxy_set_header X-Real-IP $remote_addr;
 
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 
+        proxy_set_header REMOTE-HOST $remote_addr;
 
+        add_header X-Cache $upstream_cache_status;
 
+
 
+        proxy_connect_timeout 30s;
 
+        proxy_read_timeout 86400s;
 
+        proxy_send_timeout 30s;
 
+        proxy_http_version 1.1;
 
+        proxy_set_header Upgrade $http_upgrade;
 
+        proxy_set_header Connection "upgrade";
 
+    }
 
+    location /api-doc/ {
 
+        proxy_pass http://127.0.0.1:8009/swagger-ui/index.html;
 
+        proxy_set_header Host $host;
 
+        proxy_set_header X-Real-IP $remote_addr;
 
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 
+        proxy_set_header REMOTE-HOST $remote_addr;
 
+        add_header X-Cache $upstream_cache_status;
 
+
 
+        proxy_connect_timeout 30s;
 
+        proxy_read_timeout 86400s;
 
+        proxy_send_timeout 30s;
 
+        proxy_http_version 1.1;
 
+        proxy_set_header Upgrade $http_upgrade;
 
+        proxy_set_header Connection "upgrade";
 
+    }
 
+    # End of HTTP reverse proxy related settings <<<
 
+
 
+    access_log  /www/wwwlogs/server.log;
 
+    error_log  /www/wwwlogs/server.error.log;
 
+}