nginx.movie-gate.online.conf.txt

server {
    listen 80;
    listen [::]:80;
    server_name db.movie-gate.ru www.db.movie-gate.ru;

    location / {
        proxy_pass  http://127.0.0.1:5432;
    }
}
server {
    listen 80;
    listen [::]:80;
    server_name admindb.movie-gate.ru www.admindb.movie-gate.ru;

    location / {
        proxy_pass  http://127.0.0.1:5050;
    }
}
server {
    listen 80;
    listen [::]:80;
    server_name prometheus.movie-gate.ru www.prometheus.movie-gate.ru;

    location / {
        proxy_pass  http://127.0.0.1:9090;
    }
}


upstream grafana {
  server 127.0.0.1:3000;
}
server {
  listen 80;
  listen [::]:80;
  server_name www.monitoring.movie-gate.ru;
  root /usr/share/nginx/html;
  index index.html index.htm;

  location / {
    proxy_set_header Host $http_host;
    proxy_pass http://grafana;
  }

  # Proxy Grafana Live WebSocket connections.
  location /api/live/ {
    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection $connection_upgrade;
    proxy_set_header Host $http_host;
    proxy_pass http://grafana;
  }

   location /database/ {
        proxy_pass http://127.0.0.1:5432;
    }
}

server {
    listen 80;
    listen [::]:80;

    server_name movie-gate.ru www.movie-gate.ru;
    return 301 https://movie-gate.ru$request_uri;
}
server {
    listen 443 ssl http2;
    listen [::]:443 ssl http2;

    server_name movie-gate.ru;
    root /var/www/movie-gate.ru/html/;
    location / {
       index  index.html;
        add_header Content-Security-Policy "default-src 'none'; script-src 'self' 'unsafe-eval'; connect-src 'self' ws: wss:; frame-src youtube.com www.youtube.com; img-src 'self' data:; sty>
        add_header X-Frame-Options "ALLOW-FROM youtube.com www.youtube.com" always;
        add_header X-Content-Type-Options "nosniff" always;
        add_header Strict-Transport-Security "max-age=31536000";
        add_header Referrer-Policy "strict-origin";
       try_files $uri $uri/ /index.html;
    }
    location /api/v1/ {
        proxy_pass https://127.0.0.1:8088;
    }
    location /api/v1/film/recommendation {
        proxy_pass https://127.0.0.1:8088/api/v1/film/recommendation;
        proxy_cache all;
        proxy_cache_valid any 1m;
    }
    location ~ \.(js|css|webmanifest)$ {
       try_files $uri =404;
       access_log off;
       expires 3d;
    }
    location ~ \.(png|jpg|webp|gif|swf|ico|pdf|mov|fla|zip|rar)$ {
       try_files $uri =404;
    }
    location /api/v1/notifications {
        proxy_pass https://127.0.0.1:8088/api/v1/notifications;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection $connection_upgrade;
        proxy_read_timeout 10m;
    }

    ssl_certificate /etc/letsencrypt/live/movie-gate.ru/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/movie-gate.ru/privkey.pem;
    ssl_trusted_certificate /etc/letsencrypt/live/movie-gate.ru/chain.pem;

    include snippets/ssl-params.conf;
}

server {
    listen 80;
    listen [::]:80;

    server_name uikit.movie-gate.ru;
    return 301 https://uikit.movie-gate.ru.com$request_uri;
}
server {
    listen 443 ssl http2;
    listen [::]:443 ssl http2;

    server_name uikit.movie-gate.ru;
    root /var/www/moviegate-storybook;
    index index.html;

    ssl_certificate /etc/letsencrypt/live/uikit.movie-gate.ru/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/uikit.movie-gate.ru/privkey.pem;
    ssl_trusted_certificate /etc/letsencrypt/live/uikit.movie-gate.ru/chain.pem;

    include snippets/ssl-params.conf;
}