27 lines
1.1 KiB
Plaintext
27 lines
1.1 KiB
Plaintext
server {
|
|
listen ipv4_1:443 quic;
|
|
listen ipv4_1:443 ssl;
|
|
listen [ipv6_1]:443 quic;
|
|
listen [ipv6_1]:443 ssl;
|
|
|
|
server_name uptime.yourdomain.tld;
|
|
|
|
ssl_certificate /etc/letsencrypt/live/uptime.yourdomain.tld/fullchain.pem;
|
|
ssl_certificate_key /etc/letsencrypt/live/uptime.yourdomain.tld/privkey.pem;
|
|
ssl_trusted_certificate /etc/letsencrypt/live/uptime.yourdomain.tld/chain.pem;
|
|
|
|
include snippets/hsts.conf;
|
|
include snippets/security.conf;
|
|
include snippets/cross-origin-security.conf;
|
|
include snippets/quic.conf;
|
|
include snippets/proxy.conf;
|
|
proxy_hide_header Content-Security-Policy;
|
|
include snippets/universal_paths.conf;
|
|
|
|
add_header Content-Security-Policy "default-src 'none'; connect-src 'self'; img-src 'self' data:; frame-src 'self'; manifest-src 'self'; object-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; base-uri 'none'; block-all-mixed-content; form-action 'none'; frame-ancestors 'self'; upgrade-insecure-requests";
|
|
|
|
location / {
|
|
proxy_pass http://uptime-kuma:3001;
|
|
}
|
|
}
|