|
@@ -0,0 +1,64 @@
|
|
|
+user www-data www-data;
|
|
|
+daemon off;
|
|
|
+worker_processes 4;
|
|
|
+
|
|
|
+events {
|
|
|
+ worker_connections 768;
|
|
|
+}
|
|
|
+
|
|
|
+http {
|
|
|
+ include mime.types;
|
|
|
+ default_type application/octet-stream;
|
|
|
+ keepalive_timeout 20;
|
|
|
+
|
|
|
+ index index.html index.php;
|
|
|
+
|
|
|
+ server {
|
|
|
+ listen 80;
|
|
|
+ root /var/www/shaarli;
|
|
|
+
|
|
|
+ access_log /var/log/nginx/shaarli.access.log;
|
|
|
+ error_log /var/log/nginx/shaarli.error.log;
|
|
|
+
|
|
|
+ location /phpinfo/ {
|
|
|
+ # add a PHP info page for convenience
|
|
|
+ fastcgi_pass unix:/var/run/php5-fpm.sock;
|
|
|
+ fastcgi_index index.php;
|
|
|
+ fastcgi_param SCRIPT_FILENAME /var/www/index.php;
|
|
|
+ include fastcgi_params;
|
|
|
+ }
|
|
|
+
|
|
|
+ location ~ /\. {
|
|
|
+ # deny access to dotfiles
|
|
|
+ access_log off;
|
|
|
+ log_not_found off;
|
|
|
+ deny all;
|
|
|
+ }
|
|
|
+
|
|
|
+ location ~ ~$ {
|
|
|
+ # deny access to temp editor files, e.g. "script.php~"
|
|
|
+ access_log off;
|
|
|
+ log_not_found off;
|
|
|
+ deny all;
|
|
|
+ }
|
|
|
+
|
|
|
+ location ~* \.(?:ico|css|js|gif|jpe?g|png)$ {
|
|
|
+ # cache static assets
|
|
|
+ expires max;
|
|
|
+ add_header Pragma public;
|
|
|
+ add_header Cache-Control "public, must-revalidate, proxy-revalidate";
|
|
|
+ }
|
|
|
+
|
|
|
+ location ~ (index)\.php$ {
|
|
|
+ # filter and proxy PHP requests to PHP-FPM
|
|
|
+ fastcgi_pass unix:/var/run/php5-fpm.sock;
|
|
|
+ fastcgi_index index.php;
|
|
|
+ include fastcgi.conf;
|
|
|
+ }
|
|
|
+
|
|
|
+ location ~ \.php$ {
|
|
|
+ # deny access to all other PHP scripts
|
|
|
+ deny all;
|
|
|
+ }
|
|
|
+ }
|
|
|
+}
|