upstream fastcgi_backend { server !FPM_HOST!:!FPM_PORT!; # Variables: FPM_HOST FPM_PORT } server { listen 80; listen 443 ssl; server_name _; # Adding SSL for DEV environment include /etc/nginx/ssl-certificats.conf; location / { proxy_pass http://!UPSTREAM_HOST!:!UPSTREAM_PORT!; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_buffer_size 128k; proxy_buffers 4 256k; proxy_busy_buffers_size 256k; proxy_buffering off; proxy_cache off; } } server { listen 8080; fastcgi_buffers 16 16k; fastcgi_buffer_size 32k; server_name _; set $MAGE_ROOT !MAGENTO_ROOT!; # Variable: MAGENTO_ROOT set $MAGE_MODE !MAGENTO_RUN_MODE!; # Variable: MAGENTO_RUN_MODE set $MFTF_UTILS !MFTF_UTILS!; # Variable: MFTF_UTILS set $WITH_XDEBUG !WITH_XDEBUG!; # Variable: WITH_XDEBUG set $my_fastcgi_pass "fastcgi_backend"; if ($cookie_XDEBUG_SESSION) { set $my_fastcgi_pass "fastcgi_backend_xdebug"; } # Support for SSL termination. set $my_http "http"; set $my_ssl "off"; set $my_port "80"; if ($http_x_forwarded_proto = "https") { set $my_http "https"; set $my_ssl "on"; set $my_port "443"; } # Adding SSL for DEV environment include /etc/nginx/ssl-certificats.conf; root $MAGE_ROOT/pub; index index.php; autoindex off; charset UTF-8; client_max_body_size !UPLOAD_MAX_FILESIZE!; # Variable: UPLOAD_MAX_FILESIZE error_page 404 403 = /errors/404.php; #add_header "X-UA-Compatible" "IE=Edge"; # Deny access to sensitive files location /.user.ini { deny all; } location / { try_files $uri $uri/ /index.php$is_args$args; } location /pub/ { location ~ ^/pub/media/(downloadable|customer|import|theme_customization/.*\.xml) { deny all; } alias $MAGE_ROOT/pub/; add_header X-Frame-Options "SAMEORIGIN"; # Adding CORS headers for DEV environment include /etc/nginx/magento2-cors.conf; } location /static/ { if ($MAGE_MODE = "production") { expires max; } # Remove signature of the static files that is used to overcome the browser cache location ~ ^/static/version { rewrite ^/static/(version\d*/)?(.*)$ /static/$2 last; } location ~* \.(ico|jpg|jpeg|png|gif|svg|js|css|swf|eot|ttf|otf|woff|woff2|json)$ { add_header Cache-Control "public"; add_header X-Frame-Options "SAMEORIGIN"; # Adding CORS headers for DEV environment include /etc/nginx/magento2-cors.conf; expires +1y; if (!-f $request_filename) { rewrite ^/static/(version\d*/)?(.*)$ /static.php?resource=$2 last; } } location ~* \.(zip|gz|gzip|bz2|csv|xml)$ { add_header Cache-Control "no-store"; add_header X-Frame-Options "SAMEORIGIN"; expires off; if (!-f $request_filename) { rewrite ^/static/(version\d*/)?(.*)$ /static.php?resource=$2 last; } } if (!-f $request_filename) { rewrite ^/static/(version\d*/)?(.*)$ /static.php?resource=$2 last; } add_header X-Frame-Options "SAMEORIGIN"; # Adding CORS headers for DEV environment include /etc/nginx/magento2-cors.conf; } location /media/ { try_files $uri $uri/ /get.php$is_args$args; location ~ ^/media/theme_customization/.*\.xml { deny all; } location ~* \.(ico|jpg|jpeg|png|gif|svg|js|css|swf|eot|ttf|otf|woff|woff2)$ { add_header Cache-Control "public"; add_header X-Frame-Options "SAMEORIGIN"; expires +1y; try_files $uri $uri/ /get.php$is_args$args; } location ~* \.(zip|gz|gzip|bz2|csv|xml)$ { add_header Cache-Control "no-store"; add_header X-Frame-Options "SAMEORIGIN"; expires off; try_files $uri $uri/ /get.php$is_args$args; } add_header X-Frame-Options "SAMEORIGIN"; } location /media/customer/ { deny all; } location /media/downloadable/ { deny all; } location /media/import/ { deny all; } location /errors/ { location ~* \.xml$ { deny all; } } # PHP entry point for main application location ~ ^/(index|get|static|errors/report|errors/404|errors/503|health_check)\.php$ { try_files $uri =404; fastcgi_pass $my_fastcgi_pass; fastcgi_buffers 1024 4k; fastcgi_param PHP_FLAG "session.auto_start=off \n suhosin.session.cryptua=off"; fastcgi_param PHP_VALUE "max_execution_time=18000"; fastcgi_read_timeout 600s; fastcgi_connect_timeout 600s; fastcgi_param MAGE_MODE $MAGE_MODE; # Magento uses the HTTPS env var to detrimine if it is using SSL or not. fastcgi_param HTTPS $my_ssl; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; # Adding CORS headers for DEV environment include /etc/nginx/magento2-cors.conf; } location ~* ^/dev/tests/acceptance/utils($|/) { root $MAGE_ROOT; location ~ ^/dev/tests/acceptance/utils/command.php { if ($MFTF_UTILS = 0) { return 405; } fastcgi_pass $my_fastcgi_pass; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; } } gzip on; gzip_disable "msie6"; gzip_comp_level 6; gzip_min_length 1100; gzip_buffers 16 8k; gzip_proxied any; gzip_types text/plain text/css text/js text/xml text/javascript application/javascript application/x-javascript application/json application/xml application/xml+rss image/svg+xml; gzip_vary on; # Banned locations (only reached if the earlier PHP entry point regexes don't match) location ~* (\.php$|\.htaccess$|\.git) { deny all; } location /nginx_status { stub_status on; access_log off; } location ~ ^/(status|ping)$ { fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; fastcgi_pass $my_fastcgi_pass; } }