45 lines
1.6 KiB
Nginx Configuration File
45 lines
1.6 KiB
Nginx Configuration File
|
server {
|
||
|
#listen 80;
|
||
|
index index.html index.php;
|
||
|
|
||
|
## Begin - Server Info
|
||
|
root /home/USER/www/html;
|
||
|
server_name localhost;
|
||
|
## End - Server Info
|
||
|
|
||
|
## Begin - Index
|
||
|
# for subfolders, simply adjust:
|
||
|
# `location /subfolder {`
|
||
|
# and the rewrite to use `/subfolder/index.php`
|
||
|
location / {
|
||
|
try_files $uri $uri/ /index.php?$query_string;
|
||
|
}
|
||
|
## End - Index
|
||
|
|
||
|
## Begin - Security
|
||
|
# deny all direct access for these folders
|
||
|
location ~* /(\.git|cache|bin|logs|backup|tests)/.*$ { return 403; }
|
||
|
# deny running scripts inside core system folders
|
||
|
location ~* /(system|vendor)/.*\.(txt|xml|md|html|htm|shtml|shtm|json|yaml|yml|php|php2|php3|php4|php5|phar|phtml|pl|py|cgi|twig|sh|bat)$ { return 403; }
|
||
|
# deny running scripts inside user folder
|
||
|
location ~* /user/.*\.(txt|md|json|yaml|yml|php|php2|php3|php4|php5|phar|phtml|pl|py|cgi|twig|sh|bat)$ { return 403; }
|
||
|
# deny access to specific files in the root folder
|
||
|
location ~ /(LICENSE\.txt|composer\.lock|composer\.json|nginx\.conf|web\.config|htaccess\.txt|\.htaccess) { return 403; }
|
||
|
## End - Security
|
||
|
|
||
|
## Begin - PHP
|
||
|
location ~ \.php$ {
|
||
|
# Choose either a socket or TCP/IP address
|
||
|
fastcgi_pass unix:/var/run/php/php-fpm.sock;
|
||
|
# fastcgi_pass unix:/var/run/php5-fpm.sock; #legacy
|
||
|
# fastcgi_pass 127.0.0.1:9000;
|
||
|
|
||
|
fastcgi_split_path_info ^(.+\.php)(/.+)$;
|
||
|
fastcgi_index index.php;
|
||
|
include fastcgi_params;
|
||
|
fastcgi_param SCRIPT_FILENAME $document_root/$fastcgi_script_name;
|
||
|
}
|
||
|
## End - PHP
|
||
|
}
|
||
|
|