paulmataruso/zulip
1
0
Fork 0
mirror of https://github.com/zulip/zulip.git synced 2025-10-27 10:03:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ef8b6e5a42e66c7c977a0ade4a1cb1f00874bc71
zulip/puppet/zulip_internal/files/nginx/sites-available/loadbalancer
Luke Faraone ef8b6e5a42 New certificates from Dropbox. 
Thanks Tom Cook for getting these through Digicert!

We no longer need separate wildcard certificates, etc, because we have SAN star
certs.

(imported from commit 40a8961da51b6a0ae90c68b40b2af6d59cb5cf9f)
2014-05-05 18:24:14 -07:00

155 lines
3.5 KiB
Plaintext
Raw Blame History

upstream staging {
server staging.zulip.net:443;
keepalive 10000;
}
upstream alpha {
server alpha0.zulip.net:443;
keepalive 10000;
}
upstream prod {
server prod0.zulip.net:443;
keepalive 10000;
}
server {
listen 80;
return 301 https://$host$request_uri;
}
server {
listen www.humbughq.com:443;
server_name www.humbughq.com api.humbughq.com humbughq.com;
ssl on;
ssl_certificate /etc/ssl/certs/wildcard-all.combined-chain.crt;
ssl_certificate_key /etc/ssl/private/wildcard-all.key;
location / {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy;
}
location /sockjs {
proxy_pass https://prod;
include /etc/nginx/zulip-include/location-sockjs;
}
location ~ /json/get_events|/json/events|/api/v1/events {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy_longpolling;
}
}
server {
listen staging.zulip.com:443;
ssl on;
ssl_certificate /etc/ssl/certs/wildcard-all.combined-chain.crt;
ssl_certificate_key /etc/ssl/private/wildcard-all.key;
location / {
proxy_pass https://staging/;
include /etc/nginx/zulip-include/proxy;
}
location /sockjs {
proxy_pass https://staging;
include /etc/nginx/zulip-include/location-sockjs;
}
location ~ /json/get_events|/json/events|/api/v1/events {
proxy_pass https://staging;
include /etc/nginx/zulip-include/proxy_longpolling;
}
}
server {
# This stanza also covers bare zulip.com
listen www.zulip.com:443 default_server;
ssl on;
ssl_certificate /etc/ssl/certs/wildcard-all.combined-chain.crt;
ssl_certificate_key /etc/ssl/private/wildcard-all.key;
location / {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy;
}
location /sockjs {
proxy_pass https://prod;
include /etc/nginx/zulip-include/location-sockjs;
}
location ~ /json/get_events|/json/events|/api/v1/events {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy_longpolling;
}
}
server {
listen api.zulip.com:443;
ssl on;
ssl_certificate /etc/ssl/certs/wildcard-all.combined-chain.crt;
ssl_certificate_key /etc/ssl/private/wildcard-all.key;
location / {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy;
}
location /sockjs {
proxy_pass https://prod;
include /etc/nginx/zulip-include/location-sockjs;
}
# On api.zulip.com, there's an automatic leading /api
location ~ /v1/events {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy_longpolling;
}
}
server {
listen zephyr.zulip.com:443;
ssl on;
ssl_certificate /etc/ssl/certs/wildcard-all.combined-chain.crt;
ssl_certificate_key /etc/ssl/private/wildcard-all.key;
location / {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy;
}
location /sockjs {
proxy_pass https://prod;
include /etc/nginx/zulip-include/location-sockjs;
}
location ~ /json/get_events|/json/events|/api/v1/events {
proxy_pass https://prod;
include /etc/nginx/zulip-include/proxy_longpolling;
}
}
server {
listen external-content.zulipcdn.net:443;
ssl on;
ssl_certificate /etc/ssl/certs/wildcard-all.combined-chain.crt;
ssl_certificate_key /etc/ssl/private/wildcard-all.key;
location / {
proxy_pass http://127.0.0.1:9292;
include /etc/nginx/zulip-include/proxy;
}
}
Reference in New Issue View Git Blame Copy Permalink