upstream backend-dsk {server unix:/var/run/fpm-ds-krovlya.sock;} #upstream backend-dsk { server localhost:3129; } server { server_name www.ds-krovlya.ru; return 301 $scheme://ds-krovlya.ru$request_uri; } server { listen 80; server_name ds-krovlya.ru; root /var/www/html/ds-krovlya.ru; access_log /var/log/nginx/ds-krovlya.ru_access.log; error_log /var/log/nginx/ds-krovlya.ru_error.log; index index.php index.html; rewrite_log on; location ~* ^/core/ { deny all; } location ~* ^/administrator/.+\.php { #allow X.X.X.X; // ограничить доступ по ip #deny all; auth_basic "Hello master, please login"; auth_basic_user_file /var/www/html/.htpasswd; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_pass backend-dsk; } location ~* ^/pma/.+\.php { auth_basic "No trespassing!.."; auth_basic_user_file /var/www/html/.htpasswd; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_pass backend-dsk; } location / { try_files $uri $uri/ @rewrite; } location /index.html { rewrite // permanent; } location ~ ^/(.*?)/index\.html$ { rewrite ^/(.*?)/ // permanent; } location @rewrite { rewrite ^/(.*)$ /index.php?q=$uri&$args; } location ~ \.php$ { # Избавляемся от /index.php (done!) if ($request_uri ~ ^/index.(html|php)) { rewrite ^.*$ / permanent; } include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_pass backend-dsk; } # Не ведём журнал скачивания вспомогательных файлов отображения страницы, # отдаём их напрямую с диска location ~* ^.+\.(jpg|jpeg|gif|css|png|js|ico|bmp|svg|woff|ttf|txt)$ { access_log off; expires 20d; break; } # Ведем журнал скачивания больших файлов и кэшируем их на 90 дней location ~* ^.+\.(mp3|ogg|mpe?g|avi|zip|gz|bz2?|rar|tbz)$ { access_log /var/log/nginx/ds-krovlya.ru_access.log; expires 90d; break; } location ~ /\.ht { deny all; } }