12345678910111213141516171819202122232425262728293031323334353637383940414243 |
- server {
- #listen 80;
- index index.html index.php;
- ## Begin - Server Info
- root /home/USER/www/html;
- server_name localhost;
- ## End - Server Info
- ## Begin - Index
- # for subfolders, simply adjust:
- # `location /subfolder {`
- # and the rewrite to use `/subfolder/index.php`
- location / {
- try_files $uri $uri/ /index.php?$query_string;
- }
- ## End - Index
- ## Begin - Security
- # deny all direct access for these folders
- location ~* /(\.git|cache|bin|logs|backup|tests)/.*$ { return 403; }
- # deny running scripts inside core system folders
- location ~* /(system|vendor)/.*\.(txt|xml|md|html|yaml|yml|php|pl|py|cgi|twig|sh|bat)$ { return 403; }
- # deny running scripts inside user folder
- location ~* /user/.*\.(txt|md|yaml|yml|php|pl|py|cgi|twig|sh|bat)$ { return 403; }
- # deny access to specific files in the root folder
- location ~ /(LICENSE\.txt|composer\.lock|composer\.json|nginx\.conf|web\.config|htaccess\.txt|\.htaccess) { return 403; }
- ## End - Security
- ## Begin - PHP
- location ~ \.php$ {
- # Choose either a socket or TCP/IP address
- fastcgi_pass unix:/var/run/php5-fpm.sock;
- # fastcgi_pass 127.0.0.1:9000;
- fastcgi_split_path_info ^(.+\.php)(/.+)$;
- fastcgi_index index.php;
- include fastcgi_params;
- fastcgi_param SCRIPT_FILENAME $document_root/$fastcgi_script_name;
- }
- ## End - PHP
- }
|