# This module is currently not supported.
# Uncomment if your server is build with the ngx_pagespeed module Gzip_types application/atom+xml application/javascript application/json application/ld+json application/manifest+json application/rss+xml application/vnd.geo+json application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/bmp image/svg+xml image/x-icon text/cache-manifest text/css text/plain text/vcard text/ text/vtt text/x-component text/x-cross-domain-policy Gzip_proxied expired no-cache no-store private no_last_modified no_etag auth # Enable gzip but do not remove ETag headers Return 301 $scheme://$host:$server_port/remote.php/dav #rewrite ^/.well-known/webfinger /public.php?service=webfinger last Add a new server block to your nginx config or add the location entries to an existing one if you’re re-using the same domain. # The following rule is only needed for the Social app. Setup nginx as a reverse proxy You can either run this reverse proxy on a separate (sub-)domain or add it to the same domain your Nextcloud runs on. #rewrite ^/.well-known/host-meta.json /public.php?service=host-meta-json last #rewrite ^/.well-known/host-meta /public.php?service=host-meta last # Uncomment it if you're planning to use this app. # The following 2 rules are only needed for the user_webfinger app. # Remove X-Powered-By, which is an information leak # in all major browsers and getting removed from this listĪdd_header Referrer-Policy "no-referrer" always Īdd_header X-Content-Type-Options "nosniff" always Īdd_header X-Download-Options "noopen" always Īdd_header X-Frame-Options "SAMEORIGIN" always Īdd_header X-Permitted-Cross-Domain-Policies "none" always Īdd_header X-XSS-Protection "1 mode=block" always To be able to work with Collabora Online, you will need a Docker container for editing documents and Nextcloud. # will add the domain to a hardcoded list that is shipped Collabora Online is a collaborative office suite based on LibreOffice that supports all main document, spreadsheet and presentation file formats and can be used in any currently available browser. # WARNING: Only add the preload option once you read about If integrating Collabora Online with NextCloud, 1 x Docker Host should be provisioned to serve the Collabora container behind an Nginx container. #add_header Strict-Transport-Security "max-age=15768000 includeSubDomains preload " always # Before enabling Strict-Transport-Security headers please read into this # Add headers to serve security related headers the username in NEXTCLOUDADMINUSERFILE is used with an ug prefix as postgre database user which should be populated by POSTGRESUSERFILE. Somehow the installation is not using some secret files and using some in the wrong config.php key. Ssl_certificate_key /usr/src/xxxxx/private.key Example using docker secrets is not working.
# NOTE: some settings below might be redundant # Use Mozilla's guidelines for SSL/TLS settings
0 kommentar(er)
