mirror of
https://github.com/linuxserver/reverse-proxy-confs.git
synced 2024-09-07 16:00:47 -07:00
46 lines
1.6 KiB
Plaintext
46 lines
1.6 KiB
Plaintext
## Version 2024/07/16
|
|
# make sure that your nextcloud container is named nextcloud
|
|
# make sure that your dns has a cname set for nextcloud
|
|
# assuming this container is called "swag", edit your nextcloud container's config
|
|
# located at /config/www/nextcloud/config/config.php and add the following lines before the ");":
|
|
# 'trusted_proxies' => [gethostbyname('swag')],
|
|
# 'overwrite.cli.url' => 'https://nextcloud.example.com/',
|
|
# 'overwritehost' => 'nextcloud.example.com',
|
|
# 'overwriteprotocol' => 'https',
|
|
#
|
|
# Also don't forget to add your domain name to the trusted domains array. It should look somewhat like this:
|
|
# array (
|
|
# 0 => '192.168.0.1:444', # This line may look different on your setup, don't modify it.
|
|
# 1 => 'nextcloud.example.com',
|
|
# ),
|
|
|
|
server {
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
|
|
server_name nextcloud.*;
|
|
|
|
include /config/nginx/ssl.conf;
|
|
|
|
client_max_body_size 0;
|
|
|
|
location / {
|
|
include /config/nginx/proxy.conf;
|
|
include /config/nginx/resolver.conf;
|
|
set $upstream_app nextcloud;
|
|
set $upstream_port 443;
|
|
set $upstream_proto https;
|
|
proxy_pass $upstream_proto://$upstream_app:$upstream_port;
|
|
|
|
# Hide proxy response headers from Nextcloud that conflict with ssl.conf
|
|
# Uncomment the Optional additional headers in SWAG's ssl.conf to pass Nextcloud's security scan
|
|
proxy_hide_header Referrer-Policy;
|
|
proxy_hide_header X-Content-Type-Options;
|
|
proxy_hide_header X-Frame-Options;
|
|
proxy_hide_header X-XSS-Protection;
|
|
|
|
# Disable proxy buffering
|
|
proxy_buffering off;
|
|
}
|
|
}
|