Fork: 0
pmarini / nc-env
Transfer to URL with SHA Find file
Newer
Older
nc-env / templates / template13-talk-hpb / artifacts / talk-hpb-signaling-nginx-site.conf
@pmarini pmarini on 13 Apr 2022 1 KB initial commit
Raw Blame History 
upstream signaling {
        server 127.0.0.1:8088;
    }


server {
	listen 443 ssl http2;
	server_name #MACHINE_HOSTNAME#;

	ssl_certificate /etc/nginx/ssl/#MACHINE_HOSTNAME#.pem;
	ssl_certificate_key /etc/nginx/ssl/#MACHINE_HOSTNAME#-key.pem;
	ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;
	ssl_protocols TLSv1.2;
	ssl_ecdh_curve secp384r1;
	ssl_prefer_server_ciphers on;
	ssl_session_cache shared:SSL:10m;
	ssl_session_timeout 10m;
	ssl_session_tickets off;

	# ... other existing configuration ...

	location /standalone-signaling/ {
		proxy_pass http://signaling/;
		proxy_http_version 1.1;
		proxy_set_header Host $host;
		proxy_set_header X-Real-IP $remote_addr;
		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	}

	location /standalone-signaling/spreed {
		proxy_pass http://signaling/spreed;
		proxy_http_version 1.1;
		proxy_set_header Upgrade $http_upgrade;
		proxy_set_header Connection "Upgrade";
		proxy_set_header Host $host;
		proxy_set_header X-Real-IP $remote_addr;
		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	}
}