nginx + node + ssl config

nginx.conf

upstream foo_backend {
  server 127.0.0.1:8080;
}
 
server {
  listen 443 ssl;
  ssl_certificate /etc/nginx/ssl/foo.com.bundle.crt;
  ssl_certificate_key /etc/nginx/ssl/foo.com.key;
  ssl_ciphers RC4:HIGH:!aNULL:!MD5;
  ssl_prefer_server_ciphers on;
  keepalive_timeout 70;
  server_name api.foo.com;
  access_log /var/log/nginx/access.log;
 
  location / {
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $http_host;
    proxy_set_header X-NginX-Proxy true;
    proxy_set_header X-Forwarded-Proto https;
     
    proxy_pass http://foo_backend;
    proxy_redirect off;
  }
}

# If we want non-SSL as well.
server {
  listen 80;
  keepalive_timeout 70;
  server_name api.foo.com;
  access_log /var/log/nginx/access.log;
 
  location / {
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $http_host;
    proxy_set_header X-NginX-Proxy true;
    proxy_set_header X-Forwarded-Proto https;
     
    proxy_pass http://foo_backend;
    proxy_redirect off;
  }
}