"Fossies" - the Fresh Open Source Software Archive

Member "jitsi-meet-5079/doc/debian/jitsi-meet/jitsi-meet.example" (17 Jun 2021, 4571 Bytes) of package /linux/misc/jitsi-meet-5079.tar.gz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file. See also the last Fossies "Diffs" side-by-side code changes report for "jitsi-meet.example": jitsi-meet_5870_vs_jitsi-meet_5963.

    1 server_names_hash_bucket_size 64;
    2 
    3 types {
    4 # nginx's default mime.types doesn't include a mapping for wasm
    5     application/wasm     wasm;
    6 }
    7 server {
    8     listen 80;
    9     listen [::]:80;
   10     server_name jitsi-meet.example.com;
   11 
   12     location ^~ /.well-known/acme-challenge/ {
   13         default_type "text/plain";
   14         root         /usr/share/jitsi-meet;
   15     }
   16     location = /.well-known/acme-challenge/ {
   17         return 404;
   18     }
   19     location / {
   20         return 301 https://$host$request_uri;
   21     }
   22 }
   23 server {
   24     listen 443 ssl;
   25     listen [::]:443 ssl;
   26     server_name jitsi-meet.example.com;
   27 
   28     # Mozilla Guideline v5.4, nginx 1.17.7, OpenSSL 1.1.1d, intermediate configuration
   29     ssl_protocols TLSv1.2 TLSv1.3;
   30     ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
   31     ssl_prefer_server_ciphers off;
   32 
   33     ssl_session_timeout 1d;
   34     ssl_session_cache shared:SSL:10m;  # about 40000 sessions
   35     ssl_session_tickets off;
   36 
   37     add_header Strict-Transport-Security "max-age=63072000" always;
   38     set $prefix "";
   39 
   40     ssl_certificate /etc/jitsi/meet/jitsi-meet.example.com.crt;
   41     ssl_certificate_key /etc/jitsi/meet/jitsi-meet.example.com.key;
   42 
   43     root /usr/share/jitsi-meet;
   44 
   45     # ssi on with javascript for multidomain variables in config.js
   46     ssi on;
   47     ssi_types application/x-javascript application/javascript;
   48 
   49     index index.html index.htm;
   50     error_page 404 /static/404.html;
   51 
   52     gzip on;
   53     gzip_types text/plain text/css application/javascript application/json image/x-icon application/octet-stream application/wasm;
   54     gzip_vary on;
   55     gzip_proxied no-cache no-store private expired auth;
   56     gzip_min_length 512;
   57 
   58     location = /config.js {
   59         alias /etc/jitsi/meet/jitsi-meet.example.com-config.js;
   60     }
   61 
   62     location = /external_api.js {
   63         alias /usr/share/jitsi-meet/libs/external_api.min.js;
   64     }
   65 
   66     # ensure all static content can always be found first
   67     location ~ ^/(libs|css|static|images|fonts|lang|sounds|connection_optimization|.well-known)/(.*)$
   68     {
   69         add_header 'Access-Control-Allow-Origin' '*';
   70         alias /usr/share/jitsi-meet/$1/$2;
   71 
   72         # cache all versioned files
   73         if ($arg_v) {
   74             expires 1y;
   75         }
   76     }
   77 
   78     # BOSH
   79     location = /http-bind {
   80         proxy_pass http://127.0.0.1:5280/http-bind?prefix=$prefix&$args;
   81         proxy_set_header X-Forwarded-For $remote_addr;
   82         proxy_set_header Host $http_host;
   83     }
   84 
   85     # xmpp websockets
   86     location = /xmpp-websocket {
   87         proxy_pass http://127.0.0.1:5280/xmpp-websocket?prefix=$prefix&$args;
   88         proxy_http_version 1.1;
   89         proxy_set_header Upgrade $http_upgrade;
   90         proxy_set_header Connection "upgrade";
   91         proxy_set_header Host $http_host;
   92         tcp_nodelay on;
   93     }
   94 
   95     # colibri (JVB) websockets for jvb1
   96     location ~ ^/colibri-ws/default-id/(.*) {
   97         proxy_pass http://127.0.0.1:9090/colibri-ws/default-id/$1$is_args$args;
   98         proxy_http_version 1.1;
   99         proxy_set_header Upgrade $http_upgrade;
  100         proxy_set_header Connection "upgrade";
  101         tcp_nodelay on;
  102     }
  103 
  104     # load test minimal client, uncomment when used
  105     #location ~ ^/_load-test/([^/?&:'"]+)$ {
  106     #    rewrite ^/_load-test/(.*)$ /load-test/index.html break;
  107     #}
  108     #location ~ ^/_load-test/libs/(.*)$ {
  109     #    add_header 'Access-Control-Allow-Origin' '*';
  110     #    alias /usr/share/jitsi-meet/load-test/libs/$1;
  111     #}
  112 
  113     location ~ ^/([^/?&:'"]+)$ {
  114         try_files $uri @root_path;
  115     }
  116 
  117     location @root_path {
  118         rewrite ^/(.*)$ / break;
  119     }
  120 
  121     location ~ ^/([^/?&:'"]+)/config.js$
  122     {
  123         set $subdomain "$1.";
  124         set $subdir "$1/";
  125 
  126         alias /etc/jitsi/meet/jitsi-meet.example.com-config.js;
  127     }
  128 
  129     # BOSH for subdomains
  130     location ~ ^/([^/?&:'"]+)/http-bind {
  131         set $subdomain "$1.";
  132         set $subdir "$1/";
  133         set $prefix "$1";
  134 
  135         rewrite ^/(.*)$ /http-bind;
  136     }
  137 
  138     # websockets for subdomains
  139     location ~ ^/([^/?&:'"]+)/xmpp-websocket {
  140         set $subdomain "$1.";
  141         set $subdir "$1/";
  142         set $prefix "$1";
  143 
  144         rewrite ^/(.*)$ /xmpp-websocket;
  145     }
  146 
  147     # Anything that didn't match above, and isn't a real file, assume it's a room name and redirect to /
  148     location ~ ^/([^/?&:'"]+)/(.*)$ {
  149         set $subdomain "$1.";
  150         set $subdir "$1/";
  151         rewrite ^/([^/?&:'"]+)/(.*)$ /$2;
  152     }
  153 }