diff --git a/docker-compose.yml b/docker-compose.yml index 24d84593..061a70a6 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -69,9 +69,11 @@ services: command: certonly --webroot -w /var/www/certbot --force-renewal --email yasienmeth@gmail.com -d mzansi-innovation-hub.co.za -d www.mzansi-innovation-hub.co.za --agree-tos depends_on: - nginx + profiles: ['withCert'] minio: container_name: MIH-Minio + hostname: minio image: docker.io/bitnami/minio:2022 ports: - '9000:9000' diff --git a/nginx/nginx.conf b/nginx/nginx.conf index 23a2e713..f9451c0c 100644 --- a/nginx/nginx.conf +++ b/nginx/nginx.conf @@ -2,6 +2,11 @@ events { worker_connections 1024; } +upstream minio { + server minio:9000; + } + + http { server_tokens off; charset utf-8; @@ -25,6 +30,15 @@ http { root /var/www/html; index index.php index.html index.htm; + # To allow special characters in headers + ignore_invalid_headers off; + # Allow any size file to be uploaded. + # Set to a value such as 1000m; to restrict file size to a specific value + client_max_body_size 0; + # To disable buffering + proxy_buffering off; + proxy_request_buffering off; + # Web App location / { proxy_pass http://MIH-UX:83/; @@ -37,12 +51,23 @@ http { #Minio storage location /files/ { - proxy_pass http://192.168.1.69:9000/; + proxy_set_header Host $http_host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + + proxy_connect_timeout 300; + # Default is HTTP/1, keepalive is only enabled in HTTP/1.1 + proxy_http_version 1.1; + proxy_set_header Connection ""; + chunked_transfer_encoding off; + + proxy_pass http://minio:9000/; } - location /phpmyadmin/ { - proxy_pass http://192.168.1.69:8081/; - } + # location /phpmyadmin/ { + # proxy_pass http://192.168.1.69:8081/; + # } location ~ /.well-known/acme-challenge/ { root /var/www/certbot;