owncloud nginx php,nginx配置owncloud记录。
开始配置时忘看php-fpm配置
结果这里 server unix:/dev/shm/php-cgi.sock; 一直502,后面加上了错误日志输出,才发现问题。
upstream php-handler {
server unix:/dev/shm/php-cgi.sock; ##开始没注意这里,一直502
# Depending on your used PHP version
}
server {
listen 80;
server_name cloud.yun.cn;
# For Lets Encrypt, this needs to be served via HTTP
# location /.well-known/acme-challenge/ {
root /data/wwwroot/owncloud; # Specify here where the challenge file is placed
# }
# enforce https
location / {
return 301 https://$server_name$request_uri;
}
}
server {
listen 443 ssl http2;
server_name cloud.yun.cn;
ssl_certificate /usr/local/nginx/conf/ssl/yun.cn.crt;
ssl_certificate_key /usr/local/nginx/conf/ssl/yun.cn.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
ssl_prefer_server_ciphers on;
ssl_session_timeout 10m;
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_buffer_size 1400;
add_header Strict-Transport-Security max-age=15768000;
ssl_stapling on;
ssl_stapling_verify on;
access_log /data/wwwlogs/cloud.yun.cn_nginx.log combined;
error_log /data/wwwlogs/cloud.yun.cn_error.log;
root /data/wwwroot/owncloud;
index index.php index.html;
if ($ssl_protocol = "") { return 301 https://$host$request_uri; }
# Add headers to serve security related headers
# Before enabling Strict-Transport-Security headers please read into this topic first.
#add_header Strict-Transport-Security "max-age=15552000; includeSubDomains";
add_header X-Content-Type-Options nosniff;
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
add_header X-Robots-Tag none;
add_header X-Download-Options noopen;
add_header X-Permitted-Cross-Domain-Policies none;
# Path to the root of your installation
location = /robots.txt {
allow all;
log_not_found off;
access_log off;
}
# The following 2 rules are only needed for the user_webfinger app.
# Uncomment it if you're planning to use this app.
rewrite ^/.well-known/host-meta /public.php?service=host-meta last;
rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;
location = /.well-known/carddav {
return 301 $scheme://$host/remote.php/dav;
}
location = /.well-known/caldav {
return 301 $scheme://$host/remote.php/dav;
}
# set max upload size
client_max_body_size 512M;
fastcgi_buffers 4 64K; # Please see note 1
fastcgi_ignore_headers X-Accel-Buffering; # Please see note 2
# Disable gzip to avoid the removal of the ETag header
# Enabling gzip would also make your server vulnerable to BREACH
# if no additional measures are done. See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773332
gzip off;
# Uncomment if your server is build with the ngx_pagespeed module
# This module is currently not supported.
#pagespeed off;
error_page 403 /core/templates/403.php;
error_page 404 /core/templates/404.php;
location / {
rewrite ^ /index.php$uri;
}
location ~ ^/(?:build|tests|config|lib|3rdparty|templates|data)/ {
return 404;
}
location ~ ^/(?:\.|autotest|occ|issue|indie|db_|console) {
return 404;
}
location ~ ^/(?:index|remote|public|cron|core/ajax/update|status|ocs/v[12]|updater/.+|ocs-provider/.+|core/templates/40[34])\.php(?:$|/) {
fastcgi_split_path_info ^(.+\.php)(/.*)$;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name; # necessary for owncloud to detect the contextroot https://github.com/owncloud/core/blob/v10.0.0/lib/private/AppFramework/Http/Request.php#L603
fastcgi_param PATH_INFO $fastcgi_path_info;
fastcgi_param HTTPS on;
fastcgi_param modHeadersAvailable true; #Avoid sending the security headers twice
fastcgi_param front_controller_active true;
fastcgi_read_timeout 180; # increase default timeout e.g. for long running carddav/ caldav syncs with 1000+ entries
fastcgi_pass php-handler;
fastcgi_intercept_errors on;
fastcgi_request_buffering off; #Available since NGINX 1.7.11
}
location ~ ^/(?:updater|ocs-provider)(?:$|/) {
try_files $uri $uri/ =404;
index index.php;
}
# Adding the cache control header for js and css files
# Make sure it is BELOW the PHP block
location ~ \.(?:css|js)$ {
try_files $uri /index.php$uri$is_args$args;
add_header Cache-Control "max-age=15778463";
# Add headers to serve security related headers (It is intended to have those duplicated to the ones above)
# Before enabling Strict-Transport-Security headers please read into this topic first.
#add_header Strict-Transport-Security "max-age=15552000; includeSubDomains";
add_header X-Content-Type-Options nosniff;
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
add_header X-Robots-Tag none;
add_header X-Download-Options noopen;
add_header X-Permitted-Cross-Domain-Policies none;
# Optional: Don't log access to assets
access_log off;
}
location ~ \.(?:svg|gif|png|html|ttf|woff|ico|jpg|jpeg|map)$ {
add_header Cache-Control "public, max-age=7200";
try_files $uri /index.php$uri$is_args$args;
# Optional: Don't log access to other assets
access_log off;
}
}
owncloud nginx php,nginx配置owncloud记录。相关推荐
- 安装nginx并进行配置(记录来源于马哥linux运维教程 三)
nginx最常见配置 1.woker_connections: 最大并发数目:woker_proces*woker_conections 2.user[epoil]/[rgsig]/[select]/ ...
- 安装nginx并进行配置(记录来源于马哥linux运维教与文件操作优化、访问、日志相关的配置配置 五)
文件优化: send_file aio on | off //是否启动异步iodirectio size | off // 理解参考 https://blog.csdn.net/qq_34556414 ...
- nginx配置不记录指定文件类型日志
1.编辑主配置文件 vim /usr/local/nginx/conf/nginx.conf 2.将log_format combined_realip改为log_format river 备注:日志 ...
- 解密TLS协议全记录之Openssl的使用与Nginx Server的配置
引言 Openssl是TLS协议进行报文加密,安全通讯而用到的开源代码包,代码主要由C语言编写,我个人也只看了其中一部分代码,当作工具使用,没有深入分析. 其维基百科的链接:https://zh.wi ...
- nginx+uwsgi+flask配置记录
为什么80%的码农都做不了架构师?>>> nginx部分: nginx使用nginx官方yum源 详情:http://nginx.org/en/download.html ng ...
- nginx负载均衡配置无效解决记录
1.查看是否进行跨域配置 upstream redislock{ server 192.168.3.197:8001; server 192.168.3.197:800 ...
- http响应Last-Modified和ETag以及Apache和Nginx中的配置
基础知识 1) 什么是"Last-Modified"? 在浏览器第一次请求某一个URL时,服务器端的返回状态会是200,内容是你请求的资源,同时有一个Last-Modified的属 ...
- nginx 及 php 配置
一. 配置nginx启动脚本以及nginx.conf 编写启动脚本 vim /etc/init.d/nginx //加入内容 #!/bin/bash # chkconfig: - 30 21 # de ...
- Nginx常用功能配置及优化
规范优化Nginx配置文件: ------------------------------------------------------------------------------------- ...
- 【Nginx】Nginx配置文件参数/启动参数详解;启动/停止/重新加载配置命令
nginx配置文件 nginx及其模块的工作方式是由配置文件指定,默认情况下配置文件被命名为nginx.conf并且存放在/usr/local/nginx/conf或者 /etc/nginx或者 /u ...
最新文章
- Asp.net MVC2.0系列文章-添加操作
- WordPress开发之WP Custom Register Login插件试用
- 关于Class.forName()
- centos 设置双网卡,双网关
- Android进度条函数,Android实用笔记——使用ProgressBar实现进度条
- Keil(MDK-ARM-STM32)系列教程(六)Configuration(Ⅱ)
- 祥云,灯笼,剪纸……春节海报,点缀必备PSD素材
- android root工具排行榜,可root任何机?史上最强安卓root工具出炉
- 世界港航人工智能领军企业CIMCAI成熟AI产品全球前三船公司及港口落地,智能港口码头海关智能铁路场站智能航运船公司堆场提效降本
- 学习C语言基本思路与参考书籍
- 红米note10和红米note10pro的区别
- JavaScript,js的亲戚计算器,中国亲戚关系计算器
- LVGL lv_cont 容器(8)
- 字符串算法之KMP(字符串匹配)
- 我们上语文英语音乐计算机和美术英语,语文、英语、数学、是什么意思
- Kafka SASL SCRAM授权java开发demo
- rtthread的fish输出映射到其他串口
- 如何利用积分系统提升社群活跃度与留存率?
- 【快速入门】华为交换机eNSP简单配置(附缩写总结)
- 拆分pdf文件最简单的方法?PDF拆分成多个文件工具推荐