rbarazi/nginx-passenger-ssl.conf

## nginx-passenger-ssl.conf
# for redirecting hhtp traffic to https version of the site
server {
  listen 80;
  server_name example.com;
  return 301 https://$server_name$request_uri;
}

# for redirecting to non-www version of the site
server {
    listen  80;
    server_name  www.example.com;
    return 301 https://example.com$request_uri;
}

server {
  listen 443 ssl;
  server_name example.com;

  passenger_enabled on;
  rails_env production;
  root /home/user/example_user/current/public;

  ssl on;
  ssl_certificate /home/example_user/.certs/ssl-bundle.crt;
  ssl_certificate_key /home/example_user/.certs/example.com.key;

  ssl_session_timeout  5m;

  ssl_protocols  SSLv2 SSLv3 TLSv1;
  ssl_ciphers  HIGH:!aNULL:!MD5;
  ssl_prefer_server_ciphers   on;

  location ^~ /assets/ {
    gzip_static on;
    expires max;
    add_header Cache-Control public;
  }

  error_page 500 502 503 504 /500.html;
  client_max_body_size 4G;
  keepalive_timeout 10;
}
	# for redirecting hhtp traffic to https version of the site
	server {
	listen 80;
	server_name example.com;
	return 301 https://$server_name$request_uri;
	}

	# for redirecting to non-www version of the site
	server {
	listen 80;
	server_name www.example.com;
	return 301 https://example.com$request_uri;
	}

	server {
	listen 443 ssl;
	server_name example.com;

	passenger_enabled on;
	rails_env production;
	root /home/user/example_user/current/public;

	ssl on;
	ssl_certificate /home/example_user/.certs/ssl-bundle.crt;
	ssl_certificate_key /home/example_user/.certs/example.com.key;

	ssl_session_timeout 5m;

	ssl_protocols SSLv2 SSLv3 TLSv1;
	ssl_ciphers HIGH:!aNULL:!MD5;
	ssl_prefer_server_ciphers on;

	location ^~ /assets/ {
	gzip_static on;
	expires max;
	add_header Cache-Control public;
	}

	error_page 500 502 503 504 /500.html;
	client_max_body_size 4G;
	keepalive_timeout 10;
	}