Merged
Conversation
jholdstock
approved these changes
Sep 23, 2019
Member
|
Approving because the changes look fine, but I have not actually tested this file with a real nginx installation. I don't have nginx fronting my dev or test environments (too lazy...) Maybe @JoeGruffins could check this out, I think he has nginx in front of his test site. |
Member
Author
|
@JoeGruffins please do test it out since I think you added in the gzip_static block. It wasn't working form me on account of root vs alias, but also I think the "*" in the location wasn't working as intended. |
JoeGruffins
requested changes
Sep 24, 2019
Member
JoeGruffins
left a comment
JoeGruffins
left a comment
There was a problem hiding this comment.
Also, I find this rate limiting
dcrstakepool/sample-nginx.conf
Line 77 in 8a1fde0
to be too restrictive and leads to images not loading
I've always commented that line out. Do you have any better values, or is it a sorta trial error thing?
Member
Author
|
Rate limiting was a problem for me too. The assets location can have something with burst: But I'd also raise the sustained limit too. |
Fix the assets location. With the root directive, it would look for files in /opt/dcrstakepool/public/assets/..., but "assets" is not a directory that exists in the public folder. Use the alias directive instead to map all paths under /assets/ to the public/ folder. Make a comment about ssl_dhparam. Put ssl and http2 in the port 443 server's listen line. Add the needed gzip settings. Disable TLSv1, only using TLSv1.1 and TLSv1.2. Also make a note about TLSv1.3, which is in newer nginx versions. Change the http->https rewrite to a return. Use code 308 so that methods are unchanged (POST stays POST).
chappjc
force-pushed
the
assets-nginx
branch
from
8a1fde0 to
2e1ba71
Compare
JoeGruffins
approved these changes
Sep 25, 2019
Member
Author
|
@dajohi Looks to be merge-ready. |
dajohi
approved these changes
Sep 25, 2019
jyap808
pushed a commit
to ubiq/dcrstakepool
that referenced
this pull request
Dec 16, 2019
* update sample-nginx.conf Fix the assets location. With the root directive, it would look for files in /opt/dcrstakepool/public/assets/..., but "assets" is not a directory that exists in the public folder. Use the alias directive instead to map all paths under /assets/ to the public/ folder. Make a comment about ssl_dhparam. Put ssl and http2 in the port 443 server's listen line. Add the needed gzip settings. Disable TLSv1, only using TLSv1.1 and TLSv1.2. Also make a note about TLSv1.3, which is in newer nginx versions. Change the http->https rewrite to a return. Use code 308 so that methods are unchanged (POST stays POST). * increase rate limit * note that /opt/dcrstakepool is an example * update readme with installation suggestions
ljk662
pushed a commit
to bisontrails/dcrstakepool
that referenced
this pull request
Mar 4, 2020
* update sample-nginx.conf Fix the assets location. With the root directive, it would look for files in /opt/dcrstakepool/public/assets/..., but "assets" is not a directory that exists in the public folder. Use the alias directive instead to map all paths under /assets/ to the public/ folder. Make a comment about ssl_dhparam. Put ssl and http2 in the port 443 server's listen line. Add the needed gzip settings. Disable TLSv1, only using TLSv1.1 and TLSv1.2. Also make a note about TLSv1.3, which is in newer nginx versions. Change the http->https rewrite to a return. Use code 308 so that methods are unchanged (POST stays POST). * increase rate limit * note that /opt/dcrstakepool is an example * update readme with installation suggestions
ljk662
pushed a commit
to bisontrails/dcrstakepool
that referenced
this pull request
Mar 4, 2020
* update sample-nginx.conf Fix the assets location. With the root directive, it would look for files in /opt/dcrstakepool/public/assets/..., but "assets" is not a directory that exists in the public folder. Use the alias directive instead to map all paths under /assets/ to the public/ folder. Make a comment about ssl_dhparam. Put ssl and http2 in the port 443 server's listen line. Add the needed gzip settings. Disable TLSv1, only using TLSv1.1 and TLSv1.2. Also make a note about TLSv1.3, which is in newer nginx versions. Change the http->https rewrite to a return. Use code 308 so that methods are unchanged (POST stays POST). * increase rate limit * note that /opt/dcrstakepool is an example * update readme with installation suggestions
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Fix the assets location. With the root directive, it would look for
files in /opt/dcrstakepool/public/assets/..., but "assets" is not a
directory that exists in the public folder. Use the alias directive
instead to map all paths under /assets/ to the public/ folder.
Make a comment about ssl_dhparam.
Put ssl and http2 in the port 443 server's listen line.
Add the needed gzip settings.
Disable TLSv1, only using TLSv1.1 and TLSv1.2. Also make a note about
TLSv1.3, which is in newer nginx versions.
Change the http->https rewrite to a return. Use code 308 so that
methods are unchanged (POST stays POST).
https://nginx.org/en/docs/http/ngx_http_rewrite_module.html#return