30 lines
703 B
Django/Jinja
30 lines
703 B
Django/Jinja
{% macro element_common() %}
|
|
root {{var_element_and_nginx_path}};
|
|
{% endmacro %}
|
|
server {
|
|
server_name {{var_element_and_nginx_domain}};
|
|
|
|
listen 80;
|
|
listen [::]:80;
|
|
|
|
{% if (var_element_and_nginx_tls_mode == "force") %}
|
|
return 301 https://$http_host$request_uri;
|
|
{% else %}
|
|
{{ element_common() }}
|
|
{% endif %}
|
|
}
|
|
{% if (var_element_and_nginx_tls_mode != "disable") %}
|
|
|
|
server {
|
|
server_name {{var_element_and_nginx_domain}};
|
|
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
|
|
ssl_certificate /etc/ssl/fullchains/{{var_element_and_nginx_domain}}.pem;
|
|
ssl_certificate_key /etc/ssl/private/{{var_element_and_nginx_domain}}.pem;
|
|
include /etc/nginx/ssl-hardening.conf;
|
|
|
|
{{ element_common() }}
|
|
}
|
|
{% endif %}
|