111 lines
3.4 KiB
Nginx Configuration File
111 lines
3.4 KiB
Nginx Configuration File
server {
|
|
listen 80;
|
|
listen [::]:80;
|
|
server_name localhost;
|
|
root /usr/share/nginx/html;
|
|
index index.html;
|
|
|
|
# Security headers
|
|
add_header X-Frame-Options "SAMEORIGIN" always;
|
|
add_header X-Content-Type-Options "nosniff" always;
|
|
add_header X-XSS-Protection "1; mode=block" always;
|
|
add_header Referrer-Policy "no-referrer-when-downgrade" always;
|
|
|
|
# Performance headers
|
|
add_header X-Content-Type-Options "nosniff" always;
|
|
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
|
|
|
|
# Gzip compression
|
|
gzip on;
|
|
gzip_vary on;
|
|
gzip_proxied any;
|
|
gzip_comp_level 6;
|
|
gzip_min_length 256;
|
|
gzip_types
|
|
text/plain
|
|
text/css
|
|
text/xml
|
|
text/javascript
|
|
application/json
|
|
application/javascript
|
|
application/xml+rss
|
|
application/rss+xml
|
|
font/truetype
|
|
font/opentype
|
|
application/vnd.ms-fontobject
|
|
image/svg+xml
|
|
application/wasm;
|
|
|
|
# Brotli compression (si supporté par nginx)
|
|
# brotli on;
|
|
# brotli_comp_level 6;
|
|
# brotli_types text/plain text/css application/json application/javascript text/xml application/xml image/svg+xml;
|
|
|
|
# Cache static assets - Images WebP
|
|
location ~* \.(webp)$ {
|
|
expires 1y;
|
|
add_header Cache-Control "public, immutable";
|
|
add_header Vary "Accept-Encoding";
|
|
}
|
|
|
|
# Cache static assets - Images
|
|
location ~* \.(jpg|jpeg|png|gif|ico|svg)$ {
|
|
expires 1y;
|
|
add_header Cache-Control "public, immutable";
|
|
add_header Vary "Accept-Encoding";
|
|
}
|
|
|
|
# Cache static assets - CSS/JS avec hash (versionnés)
|
|
location ~* \.(css|js)$ {
|
|
expires 1y;
|
|
add_header Cache-Control "public, immutable";
|
|
add_header Vary "Accept-Encoding";
|
|
}
|
|
|
|
# Cache static assets - Fonts
|
|
location ~* \.(woff|woff2|ttf|otf|eot)$ {
|
|
expires 1y;
|
|
add_header Cache-Control "public, immutable";
|
|
add_header Access-Control-Allow-Origin "*";
|
|
}
|
|
|
|
# SPA fallback - toutes les routes vers index.html
|
|
location / {
|
|
try_files $uri $uri/ /index.html;
|
|
|
|
# HTTP/2 Server Push pour les ressources critiques (si supporté)
|
|
# http2_push /assets/css/index.css;
|
|
# http2_push /assets/js/index.js;
|
|
}
|
|
|
|
# Disable cache for index.html
|
|
location = /index.html {
|
|
add_header Cache-Control "no-cache, no-store, must-revalidate" always;
|
|
add_header Pragma "no-cache" always;
|
|
add_header Expires "0" always;
|
|
|
|
# Ajout de Link headers pour preconnect et dns-prefetch
|
|
add_header Link "<https://fonts.googleapis.com>; rel=dns-prefetch, <https://fonts.googleapis.com>; rel=preconnect" always;
|
|
add_header Link "<https://fonts.gstatic.com>; rel=dns-prefetch, <https://fonts.gstatic.com>; rel=preconnect; crossorigin" always;
|
|
|
|
# Early hints (HTTP 103) si supporté par le serveur
|
|
# Cela permet d'envoyer les hints avant même le HTML
|
|
}
|
|
|
|
# Disable cache for service worker if you add one later
|
|
location = /service-worker.js {
|
|
add_header Cache-Control "no-cache, no-store, must-revalidate";
|
|
add_header Pragma "no-cache";
|
|
add_header Expires "0";
|
|
}
|
|
|
|
# Error pages
|
|
error_page 404 /index.html;
|
|
|
|
# Optimisation supplémentaire
|
|
tcp_nopush on;
|
|
tcp_nodelay on;
|
|
sendfile on;
|
|
keepalive_timeout 65;
|
|
}
|