add php

Signed-off-by: Zoey <zoey@z0ey.de>

backend/templates/proxy_host.conf

@@ -8,42 +8,22 @@ server {
 
 {% include "_listen.conf" %}
 {% include "_certificates.conf" %}
-{% include "_exploits.conf" %}
 {% include "_hsts.conf" %}
 {% include "_forced_ssl.conf" %}
 
-{% if allow_websocket_upgrade == 1 or allow_websocket_upgrade == true %}
-  proxy_set_header Upgrade $http_upgrade;
-  proxy_set_header Connection $http_connection;
-{% endif %}
+  include conf.d/include/letsencrypt-acme-challenge.conf;
+  include conf.d/include/block-exploits.conf;
 
 {{ advanced_config }}
-
-{{ locations }}
-  include conf.d/include/letsencrypt-acme-challenge.conf;
+  
 {% if use_default_location %}
-
   location / {
     include conf.d/include/letsencrypt-acme-challenge.conf;
+
     {% if access_list_id > 0 %}
     {% if access_list.items.length > 0 %}
-    # Authorization
-    auth_basic            "Authorization required";
-    auth_basic_user_file  /data/access/{{ access_list_id }};
-
     {{ access_list.passauth }}
     {% endif %}
-
-    # Access Rules
-    {% for client in access_list.clients %}
-    {{- client.rule -}};
-    {% endfor %}deny all;
-
-    # Access checks must...
-    {% if access_list.satisfy %}
-    {{ access_list.satisfy }};
-    {% endif %}
-
     {% endif %}
 
     {% if allow_websocket_upgrade == 1 or allow_websocket_upgrade == true %}
@@ -56,6 +36,29 @@ server {
   }
 {% endif %}
 
+  {% if access_list_id > 0 %}
+  {% if access_list.items.length > 0 %}
+  # Authorization
+  auth_basic            "Authorization required";
+  auth_basic_user_file  /data/access/{{ access_list_id }};
+ 
+  {{ access_list.passauth }}
+  {% endif %}
+ 
+  # Access Rules
+  {% for client in access_list.clients %}
+  {{- client.rule -}};
+  {% endfor %}deny all;
+ 
+  # Access checks must...
+  {% if access_list.satisfy %}
+  {{ access_list.satisfy }};
+  {% endif %}
+ 
+  {% endif %}
+
+{{ locations }}
+
   # Custom
   include /data/nginx/custom/server_proxy.conf;
 }