events { } http { sendfile on; server { listen 80; root /www/data/; access_log /var/log/nginx/access.log; client_max_body_size ${FILE_SIZE_LIMIT}; add_header X-Content-Type-Options "nosniff" always; add_header Referrer-Policy "no-referrer-when-downgrade" always; add_header Permissions-Policy "interest-cohort=()" always; add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; add_header X-Forwarded-Proto "${dollar}scheme"; add_header X-Forwarded-Host "${dollar}host"; add_header X-Forwarded-For "${dollar}proxy_add_x_forwarded_for"; add_header X-Real-IP "${dollar}remote_addr"; location / { proxy_http_version 1.1; proxy_set_header Upgrade ${dollar}http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host ${dollar}http_host; proxy_pass http://localhost:3001/; } location /spaces/ { rewrite ^/spaces/?$ /spaces/login break; proxy_http_version 1.1; proxy_set_header Upgrade ${dollar}http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host ${dollar}http_host; proxy_pass http://localhost:3002/spaces/; } location /god-mode/ { proxy_http_version 1.1; proxy_set_header Upgrade ${dollar}http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host ${dollar}http_host; proxy_pass http://localhost:3003/god-mode/; } location /api/ { proxy_http_version 1.1; proxy_set_header Upgrade ${dollar}http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host ${dollar}http_host; proxy_pass http://localhost:8000/api/; } location /auth/ { proxy_http_version 1.1; proxy_set_header Upgrade ${dollar}http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host ${dollar}http_host; proxy_pass http://localhost:8000/auth/; } location /${BUCKET_NAME}/ { proxy_http_version 1.1; proxy_set_header Upgrade ${dollar}http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host ${dollar}http_host; proxy_pass http://localhost:9000/uploads/; } } }