self-hosted: CGIT/cgit.nginx annotate

annotate CGIT/cgit.nginx @ 3:8e515a52c7a9

add:Cgit File

author	Pluto <meokcin@gmail.com>
date	Tue, 03 Sep 2024 17:14:28 +0800
parents
children

rev	line source
3 8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	1 server {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	2 listen [::]:80;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	3 listen 80;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	4 server_name git.yourdomain.com;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	5 return 301 https://$server_name$request_uri;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	6 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	7
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	8 server {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	9 listen [::]:443 ssl http2;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	10 listen 443 ssl http2;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	11 server_name git.yourdomain.com;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	12
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	13 # SSL Certificate Path
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	14 ssl_certificate /etc/nginx/cert/git.yourdomain.com.pem;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	15 ssl_certificate_key /etc/nginx/cert/git.yourdomain.com.key;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	16
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	17 # SSL Security
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	18 ssl_protocols TLSv1.2 TLSv1.3;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	19 ssl_prefer_server_ciphers on;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	20 ssl_ciphers ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	21
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	22 ssl_session_timeout 1d;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	23 ssl_session_cache shared:SSL:10m;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	24
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	25 # Site Log path
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	26 access_log /var/log/nginx/cgit-access.log;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	27 error_log /var/log/nginx/cgit-error.log;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	28
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	29 root /var/www/cgit;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	30 try_files $uri @cgit;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	31 client_max_body_size 10m;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	32
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	33 location @cgit {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	34 include fastcgi_params;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	35 # cgit's CGI script path
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	36 fastcgi_param SCRIPT_FILENAME /var/www/cgit/cgit.cgi;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	37 fastcgi_param DOCUMENT_ROOT /usr/lib/git-core;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	38 fastcgi_pass unix:/var/run/fcgiwrap.socket;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	39 fastcgi_param PATH_INFO $uri;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	40 fastcgi_param QUERY_STRING $args;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	41 fastcgi_param HTTP_HOST $server_name;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	42 fastcgi_param GIT_HTTP_EXPORT_ALL "";
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	43 fastcgi_param GIT_PROJECT_ROOT /home/git;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	44
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	45 if ($arg_service = git-receive-pack) {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	46 rewrite (/.*) /git_write/$1 last;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	47 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	48
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	49 if ($uri ~ ^/.*/git-receive-pack$) {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	50 rewrite (/.*) /git_write/$1 last;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	51 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	52
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	53 if ($arg_service = git-upload-pack) {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	54 rewrite (/.*) /git_read/$1 last;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	55 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	56
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	57 if ($uri ~ ^/.*/git-upload-pack$) {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	58 rewrite (/.*) /git_read/$1 last;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	59 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	60 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	61
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	62 location ~ /git_read/(.*) {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	63 include git-http-backend.conf;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	64 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	65
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	66 location ~ /git_write/(.*) {
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	67 # HTTP Basic Authentication
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	68 auth_basic "Authentication Required To Push";
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	69 auth_basic_user_file /etc/nginx/.htpasswd;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	70 include git-http-backend.conf;
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	71 }
8e515a52c7a9 add:Cgit File Pluto <meokcin@gmail.com> parents: diff changeset	72 }

Mercurial > self-hosted

annotate CGIT/cgit.nginx @ 3:8e515a52c7a9