Post · bonfire.cafe

I know #iocaine doesn't have a fully fledged howto for using #nginx as the reverse proxy, but I have a lot in my nginx config currently, so I want to try and get it working there
After figuring out that the different configuration pages don't agree on what socket path for the client connections to iocaine, I now have the 421 error being returned to the browser, but I don't understand what I need to fix to get to a working set up
I have no log outputs when accessing blog.cerberos.id.au
#askFedi

upstream iocaine {
server unix://run/iocaine/iocaine.socket;
}

server {
listen 443 ssl;
server_name blog.cerberos.id.au;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;

ssl_protocols TLSv1.2;

ssl_session_cache shared:SSL:1m;
ssl_session_timeout 5m;

ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;

location / {
proxy_pass http://iocaine;
proxy_cache off;
proxy_intercept_errors on;
error_page 421 = @fallback;
}

location @fallback {
root /data/blog;
internal;
}

ssl_certificate /etc/letsencrypt/live/blog.cerberos.id.au/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/blog.cerberos.id.au/privkey.pem; # managed by Certbot

#debug logging options
error_log /var/log/nginx/blog.error.log warn;
access_log /var/log/nginx.access.log;
} — upstream iocaine { server unix://run/iocaine/iocaine.socket; } server { listen 443 ssl; server_name blog.cerberos.id.au; add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; ssl_protocols TLSv1.2; ssl_session_cache shared:SSL:1m; ssl_session_timeout 5m; ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on; location / { proxy_pass http://iocaine; proxy_cache off; proxy_intercept_errors on; error_page 421 = @fallback; } location @fallback { root /data/blog; internal; } ssl_certificate /etc/letsencrypt/live/blog.cerberos.id.au/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/blog.cerberos.id.au/privkey.pem; # managed by Certbot #debug logging options error_log /var/log/nginx/blog.error.log warn; access_log /var/log/nginx.access.log; }

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.0-rc.2.11 no JS en

Automatic federation enabled