mirror of
https://github.com/NginxProxyManager/nginx-proxy-manager.git
synced 2025-05-14 17:44:36 +00:00
993ce372b2
to ensure that the X-Forwarded-Proto and X-Forwarded-Scheme headers reflect the most accurate protocol. The resolved_proto variable prioritizes the X-Forwarded-Proto header (set by sources like Cloudflare or AWS) and falls back to $scheme when unavailable, then this value is used to set Scheme and Proto instead of $scheme
56 lines
1.2 KiB
Plaintext
56 lines
1.2 KiB
Plaintext
{% include "_header_comment.conf" %}
|
|
|
|
{% if enabled %}
|
|
|
|
{% include "_hsts_map.conf" %}
|
|
|
|
{% include "_resolved_proto_map.conf" %}
|
|
|
|
server {
|
|
set $forward_scheme {{ forward_scheme }};
|
|
set $server "{{ forward_host }}";
|
|
set $port {{ forward_port }};
|
|
|
|
{% include "_listen.conf" %}
|
|
{% include "_certificates.conf" %}
|
|
{% include "_assets.conf" %}
|
|
{% include "_exploits.conf" %}
|
|
{% include "_hsts.conf" %}
|
|
{% include "_forced_ssl.conf" %}
|
|
|
|
{% if allow_websocket_upgrade == 1 or allow_websocket_upgrade == true %}
|
|
proxy_set_header Upgrade $http_upgrade;
|
|
proxy_set_header Connection $http_connection;
|
|
proxy_http_version 1.1;
|
|
{% endif %}
|
|
|
|
access_log /data/logs/proxy-host-{{ id }}_access.log proxy;
|
|
error_log /data/logs/proxy-host-{{ id }}_error.log warn;
|
|
|
|
{{ advanced_config }}
|
|
|
|
{{ locations }}
|
|
|
|
{% if use_default_location %}
|
|
|
|
location / {
|
|
|
|
{% include "_access.conf" %}
|
|
{% include "_hsts.conf" %}
|
|
|
|
{% if allow_websocket_upgrade == 1 or allow_websocket_upgrade == true %}
|
|
proxy_set_header Upgrade $http_upgrade;
|
|
proxy_set_header Connection $http_connection;
|
|
proxy_http_version 1.1;
|
|
{% endif %}
|
|
|
|
# Proxy!
|
|
include conf.d/include/proxy.conf;
|
|
}
|
|
{% endif %}
|
|
|
|
# Custom
|
|
include /data/nginx/custom/server_proxy[.]conf;
|
|
}
|
|
{% endif %}
|