diff options
Diffstat (limited to 'swag/etc-config-swag/nginx/proxy-confs/freshrss.subdomain.conf')
-rw-r--r-- | swag/etc-config-swag/nginx/proxy-confs/freshrss.subdomain.conf | 51 |
1 files changed, 51 insertions, 0 deletions
diff --git a/swag/etc-config-swag/nginx/proxy-confs/freshrss.subdomain.conf b/swag/etc-config-swag/nginx/proxy-confs/freshrss.subdomain.conf new file mode 100644 index 0000000..8747718 --- /dev/null +++ b/swag/etc-config-swag/nginx/proxy-confs/freshrss.subdomain.conf @@ -0,0 +1,51 @@ +## Version 2023/05/31 +# make sure that your freshrss container is named freshrss +# make sure that your dns has a cname set for freshrss + +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name rss.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 0; + + # enable for ldap auth (requires ldap-location.conf in the location block) + #include /config/nginx/ldap-server.conf; + + # enable for Authelia (requires authelia-location.conf in the location block) + #include /config/nginx/authelia-server.conf; + + # enable for Authentik (requires authentik-location.conf in the location block) + #include /config/nginx/authentik-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable for ldap auth (requires ldap-server.conf in the server block) + #include /config/nginx/ldap-location.conf; + + # enable for Authelia (requires authelia-server.conf in the server block) + #include /config/nginx/authelia-location.conf; + + # enable for Authentik (requires authentik-server.conf in the server block) + #include /config/nginx/authentik-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app freshrss; + set $upstream_port 80; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + proxy_buffering off; + proxy_set_header X-Forwarded-Port $server_port; + proxy_cookie_path / "/; HTTPOnly; Secure"; + proxy_set_header Authorization $http_authorization; + proxy_pass_header Authorization; + } +} |