adrian
/
schematics
1
0
Fork 0
Code Issues Pull Requests Releases Activity
A library for writing host-specific, single-binary configuration management and deployment tools
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
101 Commits
1 Branch
0 Tags
810 KiB
Tree: 2d3e3688fa
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '2d3e3688fa'
${ noResults }
schematics/src/templates/nginx/server.rs

203 lines
4.9 KiB
Raw Normal View History

New architecture
4 years ago
Experiment with futures
4 years ago
New architecture
4 years ago
  1. use std::fmt::Display;
  2. use std::path::Path;
  4. pub fn default_server<P: AsRef<Path>>(challenges_snippet_path: P) -> String {
  5. format!(
  6. "server {{
  7. listen 80 default_server;
  8. listen [::]:80 default_server;
  9. include \"{}\";
  10. }}",
  11. challenges_snippet_path.as_ref().to_str().unwrap()
  12. )
  13. }
  15. pub fn server_config<D: Display, C: AsRef<Path>, K: AsRef<Path>, T: Display, S: AsRef<Path>>(
  16. domain: D,
  17. cert_path: C,
  18. key_path: K,
  19. content: T,
  20. challenges_snippet_path: S,
  21. ) -> String {
  22. format!(
  23. "server {{
  24. listen 443 ssl http2;
  25. listen [::]:443 ssl http2;
  26. server_name {};
  27. include \"{}\";
  29. ssl_certificate {};
  30. ssl_certificate_key {};
  31. add_header Strict-Transport-Security \"max-age=31536000\";
  33. {}
  34. }}
  36. # Redirect all HTTP links to the matching HTTPS page
  37. server {{
  38. listen 80;
  39. listen [::]:80;
  40. server_name {0};
  41. include \"{1}\";
  43. location / {{
  44. return 301 https://$host$request_uri;
  45. }}
  46. }}
  47. ",
  48. domain,
  49. challenges_snippet_path.as_ref().to_str().unwrap(),
  50. cert_path.as_ref().to_str().unwrap(),
  51. key_path.as_ref().to_str().unwrap(),
  52. content
  53. )
  54. }
  56. pub fn php_snippet<SOCKET: AsRef<Path>, STATIC: AsRef<Path>>(
  57. index: &'static str,
  58. socket_path: SOCKET,
  59. static_path: STATIC,
  60. ) -> String {
  61. format!(
  62. "root {};
  63. index {};
  64. location ~ [^/]\\.php(/|$) {{
  65. fastcgi_pass unix:{};
  66. include \"snippets/fastcgi-php.conf\";
  67. }}",
  68. static_path.as_ref().to_str().unwrap(),
  69. index,
  70. socket_path.as_ref().to_str().unwrap()
  71. )
  72. }
  74. pub fn redir_snippet(target: &str) -> String {
  75. format!(
  76. "location / {{
  77. return 301 $scheme://{}$request_uri;
  78. }}",
  79. target
  80. )
  81. }
  83. pub trait SocketSpec {
  84. fn to_nginx(&self) -> String;
  85. }
  87. impl<T: AsRef<Path>> SocketSpec for T {
  88. fn to_nginx(&self) -> String {
  89. format!("unix:{}:", self.as_ref().to_str().unwrap())
  90. }
  91. }
  93. #[derive(Debug)]
  94. pub struct LocalTcpSocket(usize);
  96. impl LocalTcpSocket {
  97. pub const fn new(x: usize) -> Self {
  98. Self(x)
  99. }
  100. }
  102. impl SocketSpec for LocalTcpSocket {
  103. fn to_nginx(&self) -> String {
  104. format!("localhost:{}", self.0)
  105. }
  106. }
  108. pub fn proxy_snippet<S: SocketSpec, STATIC: AsRef<Path>>(
  109. socket_path: &S,
  110. static_path: STATIC,
  111. ) -> String {
  112. format!(
  113. "root {};
  114. location / {{
  115. try_files $uri @proxy;
  116. }}
  118. location @proxy {{
  119. include fastcgi_params;
  120. proxy_pass http://{};
  121. proxy_redirect off;
  122. }}",
  123. static_path.as_ref().to_str().unwrap(),
  124. socket_path.to_nginx()
  125. )
  126. }
  128. pub fn static_snippet<S: AsRef<Path>>(static_path: S) -> String {
  129. format!(
  130. "root {};
  131. try_files $uri $uri/ $uri.html =404;
  132. ",
  133. static_path.as_ref().to_str().unwrap()
  134. )
  135. }
  137. pub fn dokuwiki_snippet() -> String {
  138. "
  139. location ~ /(data/|conf/|bin/|inc/|install.php) { deny all; }
  141. location / { try_files $uri $uri/ @dokuwiki; }
  143. location @dokuwiki {
  144. # rewrites \"doku.php/\" out of the URLs if you set the userewrite setting to .htaccess in dokuwiki config page
  145. rewrite ^/_media/(.*) /lib/exe/fetch.php?media=$1 last;
  146. rewrite ^/_detail/(.*) /lib/exe/detail.php?media=$1 last;
  147. rewrite ^/_export/([^/]+)/(.*) /doku.php?do=export_$1&id=$2 last;
  148. rewrite ^/(.*) /doku.php?id=$1&$args last;
  149. }".into()
  150. }
  152. pub fn nextcloud_snippet() -> String {
  153. "
  154. client_max_body_size 500M;
  156. # Disable gzip to avoid the removal of the ETag header
  157. gzip off;
  159. rewrite ^/caldav(.*)$ /remote.php/caldav$1 redirect;
  160. rewrite ^/carddav(.*)$ /remote.php/carddav$1 redirect;
  161. rewrite ^/webdav(.*)$ /remote.php/webdav$1 redirect;
  163. error_page 403 /core/templates/403.php;
  164. error_page 404 /core/templates/404.php;
  166. location = /robots.txt {
  167. allow all;
  168. log_not_found off;
  169. access_log off;
  170. }
  172. location ~ ^/(?:\\.htaccess|data|config|db_structure\\.xml|README) {
  173. deny all;
  174. }
  176. location / {
  177. # The following 2 rules are only needed with webfinger
  178. rewrite ^/.well-known/host-meta /public.php?service=host-meta last;
  179. rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;
  181. rewrite ^/.well-known/carddav /remote.php/carddav/ redirect;
  182. rewrite ^/.well-known/caldav /remote.php/caldav/ redirect;
  184. rewrite ^(/core/doc/[^\\/]+/)$ $1/index.html;
  186. try_files $uri $uri/ /index.php;
  187. }
  189. # Adding the cache control header for js and css files
  190. # Make sure it is BELOW the location ~ \\.php(?:$|/) { block
  191. location ~* \\.(?:css|js)$ {
  192. add_header Cache-Control \"public, max-age=7200\";
  193. # Optional: Don't log access to assets
  194. access_log off;
  195. }
  197. # Optional: Don't log access to other assets
  198. location ~* \\.(?:jpg|jpeg|gif|bmp|ico|png|swf)$ {
  199. access_log off;
  200. }
  201. "
  202. .into()
  203. }