adrian
/
schematics
1
0
Fork 0
Code Issues Pull Requests Releases Activity
A library for writing host-specific, single-binary configuration management and deployment tools
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
108 Commits
1 Branch
0 Tags
810 KiB
Tree: da98bfba8c
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'da98bfba8c'
${ noResults }
schematics/src/templates/nginx/server.rs

214 lines
5.1 KiB
Raw Normal View History

New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Experiment with futures
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
Style
4 years ago
New architecture
4 years ago
  1. use std::fmt::Display;
  2. use std::path::Path;
  4. #[must_use]
  5. pub fn default_server<P: AsRef<Path>>(challenges_snippet_path: P) -> String {
  6. format!(
  7. "server {{
  8. listen 80 default_server;
  9. listen [::]:80 default_server;
  10. include \"{}\";
  11. }}",
  12. challenges_snippet_path.as_ref().to_str().unwrap()
  13. )
  14. }
  16. #[must_use]
  17. pub fn server_config<D: Display, C: AsRef<Path>, K: AsRef<Path>, T: Display, S: AsRef<Path>>(
  18. domain: D,
  19. cert_path: C,
  20. key_path: K,
  21. content: T,
  22. challenges_snippet_path: S,
  23. ) -> String {
  24. format!(
  25. "server {{
  26. listen 443 ssl http2;
  27. listen [::]:443 ssl http2;
  28. server_name {};
  29. include \"{}\";
  31. ssl_certificate {};
  32. ssl_certificate_key {};
  33. add_header Strict-Transport-Security \"max-age=31536000\";
  35. {}
  36. }}
  38. # Redirect all HTTP links to the matching HTTPS page
  39. server {{
  40. listen 80;
  41. listen [::]:80;
  42. server_name {0};
  43. include \"{1}\";
  45. location / {{
  46. return 301 https://$host$request_uri;
  47. }}
  48. }}
  49. ",
  50. domain,
  51. challenges_snippet_path.as_ref().to_str().unwrap(),
  52. cert_path.as_ref().to_str().unwrap(),
  53. key_path.as_ref().to_str().unwrap(),
  54. content
  55. )
  56. }
  58. #[must_use]
  59. pub fn php_snippet<SOCKET: AsRef<Path>, STATIC: AsRef<Path>>(
  60. index: &'static str,
  61. socket_path: SOCKET,
  62. static_path: STATIC,
  63. ) -> String {
  64. format!(
  65. "root {};
  66. index {};
  67. location ~ [^/]\\.php(/|$) {{
  68. fastcgi_pass unix:{};
  69. include \"snippets/fastcgi-php.conf\";
  70. }}",
  71. static_path.as_ref().to_str().unwrap(),
  72. index,
  73. socket_path.as_ref().to_str().unwrap()
  74. )
  75. }
  77. #[must_use]
  78. pub fn redir_snippet(target: &str) -> String {
  79. format!(
  80. "location / {{
  81. return 301 $scheme://{}$request_uri;
  82. }}",
  83. target
  84. )
  85. }
  87. pub trait SocketSpec {
  88. fn to_nginx(&self) -> String;
  89. }
  91. impl<T: AsRef<Path>> SocketSpec for T {
  92. #[must_use]
  93. fn to_nginx(&self) -> String {
  94. format!("unix:{}:", self.as_ref().to_str().unwrap())
  95. }
  96. }
  98. #[derive(Debug)]
  99. pub struct LocalTcpSocket(usize);
  101. impl LocalTcpSocket {
  102. #[must_use]
  103. pub const fn new(x: usize) -> Self {
  104. Self(x)
  105. }
  106. }
  108. impl SocketSpec for LocalTcpSocket {
  109. #[must_use]
  110. fn to_nginx(&self) -> String {
  111. format!("localhost:{}", self.0)
  112. }
  113. }
  115. #[must_use]
  116. pub fn proxy_snippet<S: SocketSpec, STATIC: AsRef<Path>>(
  117. socket_path: &S,
  118. static_path: STATIC,
  119. ) -> String {
  120. format!(
  121. "root {};
  122. location / {{
  123. try_files $uri @proxy;
  124. }}
  126. location @proxy {{
  127. include fastcgi_params;
  128. proxy_pass http://{};
  129. proxy_redirect off;
  130. }}",
  131. static_path.as_ref().to_str().unwrap(),
  132. socket_path.to_nginx()
  133. )
  134. }
  136. #[must_use]
  137. pub fn static_snippet<S: AsRef<Path>>(static_path: S) -> String {
  138. format!(
  139. "root {};
  140. try_files $uri $uri/ $uri.html =404;
  141. ",
  142. static_path.as_ref().to_str().unwrap()
  143. )
  144. }
  146. #[must_use]
  147. pub fn dokuwiki_snippet() -> String {
  148. "
  149. location ~ /(data/|conf/|bin/|inc/|install.php) { deny all; }
  151. location / { try_files $uri $uri/ @dokuwiki; }
  153. location @dokuwiki {
  154. # rewrites \"doku.php/\" out of the URLs if you set the userewrite setting to .htaccess in dokuwiki config page
  155. rewrite ^/_media/(.*) /lib/exe/fetch.php?media=$1 last;
  156. rewrite ^/_detail/(.*) /lib/exe/detail.php?media=$1 last;
  157. rewrite ^/_export/([^/]+)/(.*) /doku.php?do=export_$1&id=$2 last;
  158. rewrite ^/(.*) /doku.php?id=$1&$args last;
  159. }".into()
  160. }
  162. #[must_use]
  163. pub fn nextcloud_snippet() -> String {
  164. "
  165. client_max_body_size 500M;
  167. # Disable gzip to avoid the removal of the ETag header
  168. gzip off;
  170. rewrite ^/caldav(.*)$ /remote.php/caldav$1 redirect;
  171. rewrite ^/carddav(.*)$ /remote.php/carddav$1 redirect;
  172. rewrite ^/webdav(.*)$ /remote.php/webdav$1 redirect;
  174. error_page 403 /core/templates/403.php;
  175. error_page 404 /core/templates/404.php;
  177. location = /robots.txt {
  178. allow all;
  179. log_not_found off;
  180. access_log off;
  181. }
  183. location ~ ^/(?:\\.htaccess|data|config|db_structure\\.xml|README) {
  184. deny all;
  185. }
  187. location / {
  188. # The following 2 rules are only needed with webfinger
  189. rewrite ^/.well-known/host-meta /public.php?service=host-meta last;
  190. rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last;
  192. rewrite ^/.well-known/carddav /remote.php/carddav/ redirect;
  193. rewrite ^/.well-known/caldav /remote.php/caldav/ redirect;
  195. rewrite ^(/core/doc/[^\\/]+/)$ $1/index.html;
  197. try_files $uri $uri/ /index.php;
  198. }
  200. # Adding the cache control header for js and css files
  201. # Make sure it is BELOW the location ~ \\.php(?:$|/) { block
  202. location ~* \\.(?:css|js)$ {
  203. add_header Cache-Control \"public, max-age=7200\";
  204. # Optional: Don't log access to assets
  205. access_log off;
  206. }
  208. # Optional: Don't log access to other assets
  209. location ~* \\.(?:jpg|jpeg|gif|bmp|ico|png|swf)$ {
  210. access_log off;
  211. }
  212. "
  213. .into()
  214. }