X-Git-Url: https://plomlompom.com/repos/?a=blobdiff_plain;f=buster%2Fetc_files%2Fweb%2Fetc%2Fnginx%2Fnginx.conf;h=1e9c0c2ee5f023c4629e2234f6b440630d3a56a9;hb=a77fc2bde4db1f695035846947ba6205c9807be9;hp=6d84152d283856474d757cc6cf6af2cb3fdfbf61;hpb=e3087a487aa90cbde9407da6dc71db069f4c711f;p=config

diff --git a/buster/etc_files/web/etc/nginx/nginx.conf b/buster/etc_files/web/etc/nginx/nginx.conf
index 6d84152..1e9c0c2 100644
--- a/buster/etc_files/web/etc/nginx/nginx.conf
+++ b/buster/etc_files/web/etc/nginx/nginx.conf
@@ -4,6 +4,10 @@ worker_processes auto;
 pid /run/nginx.pid;
 include /etc/nginx/modules-enabled/*.conf;
 
+# is expected even if empty
+events {
+}
+
 http {
     # define content-type headers
     include /etc/nginx/mime.types;
@@ -19,25 +23,16 @@ http {
     # logging deactivated due to GDPR
     #access_log /var/log/nginx/access.log;
     #error_log /var/log/nginx/error.log;
+    access_log off;
+    error_log off;
 
     # virtual hosts: sites-enabled is the Debian way, conf.d the NGINX default
     include /etc/nginx/conf.d/*.conf;
     include /etc/nginx/sites-enabled/*;
 
-    # If we wanted a simple file server …
-    ## HTTP server: only enforce HTTPS
-    #server {
-    #    listen 80;
-    #    return 301 https://$host$request_uri;
-    #}
-    #
-    ## HTTPS server
-    #server {
-    #    listen 443 ssl;
-    #    server_name REPLACE_fqdn_ECALPER;
-    #    ssl_certificate /etc/letsencrypt/live/REPLACE_fqdn_ECALPER/fullchain.pem;
-    #    ssl_certificate_key /etc/letsencrypt/live/REPLACE_fqdn_ECALPER/privkey.pem;
-    #    root /var/www/html/;
-    #    index index.html index.htm index.nginx-debian.html;
-    #}
+    # Redirect all HTTP requests to HTTPS.
+    server {
+        listen 80;
+        return 301 https://$host$request_uri;
+    }
 }