Kinou/portfolio-website
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: correct Traefik entrypoints and HTTP to HTTPS redirect

Browse Source
This commit is contained in:
kinou-p 2025-10-02 17:32:36 +02:00
parent 005e9c1598
commit 263b581d3a
2 changed files with 52 additions and 79 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
Dockerfile
View File

@ -28,8 +28,8 @@ FROM nginx:alpine
# Copier les fichiers buildés depuis l'étape builder # Copier les fichiers buildés depuis l'étape builder
COPY --from=builder /app/dist /usr/share/nginx/html COPY --from=builder /app/dist /usr/share/nginx/html
# Copier la configuration Nginx optimisée # Copier la configuration Nginx optimisée (remplace le default.conf)
COPY nginx.conf /etc/nginx/nginx.conf COPY nginx.conf /etc/nginx/conf.d/default.conf
# Exposer le port 80 # Exposer le port 80
EXPOSE 80 EXPOSE 80

49
nginx.conf
View File

@ -1,28 +1,15 @@
user nginx; server {
worker_processes auto; listen 80;
error_log /var/log/nginx/error.log warn; listen [::]:80;
pid /var/run/nginx.pid; server_name localhost;
root /usr/share/nginx/html;
index index.html;
events { # Security headers
worker_connections 1024; add_header X-Frame-Options "SAMEORIGIN" always;
} add_header X-Content-Type-Options "nosniff" always;
add_header X-XSS-Protection "1; mode=block" always;
http { add_header Referrer-Policy "no-referrer-when-downgrade" always;
include /etc/nginx/mime.types;
default_type application/octet-stream;
log_format main '$remote_addr - $remote_user [$time_local] "$request" '
'$status $body_bytes_sent "$http_referer" '
'"$http_user_agent" "$http_x_forwarded_for"';
access_log /var/log/nginx/access.log main;
# Performance optimizations
sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
# Gzip compression # Gzip compression
gzip on; gzip on;
@ -34,19 +21,6 @@ http {
application/rss+xml font/truetype font/opentype application/rss+xml font/truetype font/opentype
application/vnd.ms-fontobject image/svg+xml; application/vnd.ms-fontobject image/svg+xml;
server {
listen 80;
listen [::]:80;
server_name _;
root /usr/share/nginx/html;
index index.html;
# Security headers
add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-Content-Type-Options "nosniff" always;
add_header X-XSS-Protection "1; mode=block" always;
add_header Referrer-Policy "no-referrer-when-downgrade" always;
# Cache static assets - Images # Cache static assets - Images
location ~* \.(jpg|jpeg|png|gif|ico|svg|webp)$ { location ~* \.(jpg|jpeg|png|gif|ico|svg|webp)$ {
expires 1y; expires 1y;
@ -88,4 +62,3 @@ http {
# Error pages # Error pages
error_page 404 /index.html; error_page 404 /index.html;
} }
}