X-Git-Url: https://plomlompom.com/repos/?a=blobdiff_plain;f=buster%2Fetc_files%2Fweb%2Fetc%2Fnginx%2Fnginx.conf;h=8320425a5e49f024fef2ea342d51328e62f648fa;hb=05af7e748a62b71f20597bb559106c8692c34ef4;hp=6d84152d283856474d757cc6cf6af2cb3fdfbf61;hpb=e3087a487aa90cbde9407da6dc71db069f4c711f;p=config

diff --git a/buster/etc_files/web/etc/nginx/nginx.conf b/buster/etc_files/web/etc/nginx/nginx.conf
index 6d84152..8320425 100644
--- a/buster/etc_files/web/etc/nginx/nginx.conf
+++ b/buster/etc_files/web/etc/nginx/nginx.conf
@@ -4,10 +4,14 @@ worker_processes auto;
 pid /run/nginx.pid;
 include /etc/nginx/modules-enabled/*.conf;
 
+# is expected even if empty
+events {
+}
+
 http {
     # define content-type headers
     include /etc/nginx/mime.types;
-    #charset utf-8;
+    charset utf-8;
 
     # Some standard optimizations, i.e. Debian default. Explained in
     # <https://thoughts.t37.net/nginx-optimization-understanding-sendfile-tcp-nodelay-and-tcp-nopush-c55cdd276765>
@@ -19,25 +23,16 @@ http {
     # logging deactivated due to GDPR
     #access_log /var/log/nginx/access.log;
     #error_log /var/log/nginx/error.log;
+    access_log off;
+    error_log off;
 
     # virtual hosts: sites-enabled is the Debian way, conf.d the NGINX default
     include /etc/nginx/conf.d/*.conf;
     include /etc/nginx/sites-enabled/*;
 
-    # If we wanted a simple file server …
-    ## HTTP server: only enforce HTTPS
-    #server {
-    #    listen 80;
-    #    return 301 https://$host$request_uri;
-    #}
-    #
-    ## HTTPS server
-    #server {
-    #    listen 443 ssl;
-    #    server_name REPLACE_fqdn_ECALPER;
-    #    ssl_certificate /etc/letsencrypt/live/REPLACE_fqdn_ECALPER/fullchain.pem;
-    #    ssl_certificate_key /etc/letsencrypt/live/REPLACE_fqdn_ECALPER/privkey.pem;
-    #    root /var/www/html/;
-    #    index index.html index.htm index.nginx-debian.html;
-    #}
+    # Redirect all HTTP requests to HTTPS.
+    server {
+        listen 80;
+        return 301 https://$host$request_uri;
+    }
 }