60 lines
1.9 KiB
Plaintext
60 lines
1.9 KiB
Plaintext
server {
|
|
listen 443 ssl http2;
|
|
listen [::]:443 ssl http2;
|
|
|
|
# For the federation port
|
|
listen 8448 ssl http2 default_server;
|
|
listen [::]:8448 ssl http2 default_server;
|
|
include snippets/lets-encrypt.conf;
|
|
|
|
server_name mtrx.vern.cc;
|
|
|
|
location ~ ^(/_matrix|/_synapse/client) {
|
|
# note: do not add a path (even a single /) after the port in `proxy_pass`,
|
|
# otherwise nginx will canonicalise the URI and cause signature verification
|
|
# errors.
|
|
proxy_pass http://localhost:8008;
|
|
proxy_set_header X-Forwarded-For $remote_addr;
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
proxy_set_header Host $host;
|
|
|
|
# Nginx by default only allows file uploads up to 1M in size
|
|
# Increase client_max_body_size to match max_upload_size defined in homeserver.yaml
|
|
client_max_body_size 1024M;
|
|
}
|
|
## well-known
|
|
location /.well-known/matrix/support {
|
|
add_header Access-Control-Allow-Origin '*' always;
|
|
add_header Content-Type application/json;
|
|
return 200 '{"admins": [{"matrix_id": "@root:vern.cc", "email_address": "tildemaster@vern.cc", "role": "admin"}], "support_page": "https://matrix.to/#/#vern:vern.cc"}';
|
|
}
|
|
|
|
location /.well-known/matrix/server {
|
|
add_header Access-Control-Allow-Origin '*' always;
|
|
add_header Content-Type application/json;
|
|
return 200 '{"m.server": "mtrx.vern.cc:443"}';
|
|
}
|
|
|
|
location /.well-known/matrix/client {
|
|
add_header Access-Control-Allow-Origin '*' always;
|
|
add_header Content-Type application/json;
|
|
return 200 '{"m.homeserver": {"base_url": "https://mtrx.vern.cc"}}';
|
|
}
|
|
|
|
}
|
|
server {
|
|
server_name dim.vern.cc;
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
|
|
root /var/www/matrix;
|
|
index index.html;
|
|
|
|
location / {
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
proxy_pass http://localhost:8184;
|
|
}
|
|
|
|
include snippets/lets-encrypt.conf;
|
|
}
|