73 lines
1.6 KiB
YAML
73 lines
1.6 KiB
YAML
---
|
|
nginx_official_repo_enabled: True
|
|
nginx_user: nginx
|
|
nginx_group: nginx
|
|
nginx_worker_processes: 1
|
|
nginx_worker_connections: 1024
|
|
nginx_error_log:
|
|
enabled: True
|
|
file: /var/log/nginx/error.log
|
|
level: error
|
|
nginx_access_log:
|
|
enabled: True
|
|
file: /var/log/nginx/access.log
|
|
format: main
|
|
|
|
## nginx buffer sizes
|
|
nginx_client_body_buffer_size: 10k
|
|
nginx_client_header_buffer_size: 1k
|
|
nginx_client_max_body_size: 8m
|
|
|
|
## nginx timeout settings
|
|
nginx_client_body_timeout: 60
|
|
nginx_client_header_timeout: 60
|
|
nginx_keepalive_timeout: 65
|
|
nginx_send_timeout: 60
|
|
nginx_reset_timedout_connection: True
|
|
|
|
## nginx compression
|
|
nginx_gzip_enabled: True
|
|
nginx_gzip_comp_level: 2
|
|
nginx_gzip_min_length: 1000
|
|
nginx_gzip_proxied:
|
|
- expired
|
|
- no-cache
|
|
- no-store
|
|
- private
|
|
- auth
|
|
nginx_gzip_types:
|
|
- text/plain
|
|
- application/x-javascript
|
|
- text/xml
|
|
- text/css
|
|
- application/xml
|
|
|
|
nginx_open_ports:
|
|
- 80
|
|
- 443
|
|
|
|
nginx_tls_enabled: False
|
|
nginx_tls_certs_dir: /etc/pki/tls/certs
|
|
nginx_tls_key_dir: /etc/pki/tls/private
|
|
nginx_tls_cert_file: "{{ nginx_tls_certs_dir }}/mycert.pem"
|
|
nginx_tls_key_file: "{{ nginx_tls_key_dir }}/mykey.pem"
|
|
nginx_tls_source_use_content: False
|
|
nginx_tls_source_use_files: True
|
|
nginx_tls_cert_source: mycert.pem
|
|
nginx_tls_key_source: mykey.pem
|
|
|
|
nginx_pfs_enabled: False
|
|
nginx_dhparam_size: 4069
|
|
nginx_dhparam_file: "{{ nginx_tls_certs_dir }}/dhparam-{{ nginx_dhparam_size }}.pem"
|
|
|
|
nginx_hsts_enabled: False
|
|
nginx_hsts_options:
|
|
- nginx_hsts_max_age=63072000
|
|
- includeSubDomains
|
|
|
|
nginx_vhosts_dir: /var/www/vhosts
|
|
|
|
nginx_default_page_enabled: False
|
|
|
|
nginx_server_names_hash_bucket_size: 32
|