No description
Find a file
Drew DeVault a6cb687b25 sourcehut.conf: update $python to 3.12
Pending tomorrow's maintenance window
2024-07-31 09:58:48 +02:00
pages.sr.ht pages.sr.ht: turn on HTTP/2 2023-10-24 13:54:14 +02:00
builds.sr.ht.conf *.conf: update CSP 2023-09-14 14:13:53 +02:00
chat.sr.ht.conf *.conf: update CSP 2023-09-14 14:13:53 +02:00
git.sr.ht.conf *.conf: update CSP 2023-09-14 14:13:53 +02:00
graphql.conf web, graphql: set X-Forwarded-For properly 2021-08-30 10:36:23 +02:00
headers.conf Include common headers from separate file 2022-03-15 12:34:20 +01:00
hg.sr.ht.conf Add https cloning config to hg.sr.ht 2024-01-21 20:33:20 +01:00
hub.sr.ht.conf *.conf: update CSP 2023-09-14 14:13:53 +02:00
LICENSE Initial commit 2020-08-31 18:05:28 -04:00
lists.sr.ht.conf *.conf: update CSP 2023-09-14 14:13:53 +02:00
man.sr.ht.conf *.conf: update CSP 2023-09-14 14:13:53 +02:00
meta.sr.ht.conf meta.sr.ht: include web.conf in /register 2024-03-12 13:34:35 +01:00
nginx.conf all: move domains.conf => sourcehut.conf 2021-08-30 09:29:53 +02:00
paste.sr.ht.conf *.conf: update CSP 2023-09-14 14:13:53 +02:00
port80.conf all: refactor common config options into includes 2021-08-30 09:22:32 +02:00
port443.conf Include common headers from separate file 2022-03-15 12:34:20 +01:00
README.md README.md: fix typo 2021-11-28 11:33:17 +01:00
robots.txt robots.txt: add facebook crawler 2024-07-26 10:47:37 +02:00
sourcehut.conf sourcehut.conf: update $python to 3.12 2024-07-31 09:58:48 +02:00
todo.sr.ht.conf todo.sr.ht: update CSP 2024-07-24 13:40:55 +02:00
web.conf web, graphql: set X-Forwarded-For properly 2021-08-30 10:36:23 +02:00

sr.ht-nginx

This is the nginx configuration files used by sr.ht in production. They are designed to run on an Alpine Linux system using the official sourcehut Alpine packages. You may use them on your own servers, but your mileage may vary. Install the -nginx package (e.g. git.sr.ht-nginx) to pull in these files, then edit /etc/nginx/domains.conf (and /etc/nginx/nginx.conf, if necessary) to suit your particular installation.

You should also write your own file, *-ssl.conf (e.g. /etc/nginx/builds-ssl.conf), which configures the SSL certificate, like so:

ssl_certificate /etc/ssl/uacme/builds.sr.ht/cert.pem;
ssl_certificate_key /etc/ssl/uacme/private/builds.sr.ht/key.pem;

This is annoying. You can thank the nginx devs.