CouchDB + Let's Encrypt + nginx reverse proxy configuration. Use https://www.digitalocean.com/community/tutorials/how-to-configure-nginx-as-a-web-server-and-reverse-proxy-for-apache-on-one-ubuntu-14-04-droplet to setup Let's Encrypt
server { | |
listen 80; | |
server_name yournamehere.com; | |
return 301 https://$host$request_uri; | |
} | |
server { | |
listen 443 ssl; | |
server_name yournamehere.com; | |
root /usr/share/nginx/html; | |
ssl on; | |
ssl_certificate /etc/letsencrypt/live/yournamehere.com/fullchain.pem; | |
ssl_certificate_key /etc/letsencrypt/live/yournamehere.com/privkey.pem; | |
ssl_protocols TLSv1 TLSv1.1 TLSv1.2; | |
ssl_prefer_server_ciphers on; | |
ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH'; | |
ssl_session_cache shared:SSL:1m; | |
location / { | |
proxy_pass http://localhost:5984; | |
proxy_redirect off; | |
proxy_set_header Host $host; | |
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | |
proxy_set_header X-Forwarded-Ssl on; | |
} | |
location ~ /.well-known { | |
allow all; | |
} | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment