server
{
	listen 80;
	listen [::]:80;

	root /var/www/html;
	index index.html index.htm index.nginx-debian.html;

	server_name index.torrust-demo.com;

	error_log /var/log/nginx/error.log debug;

	location /api/v1/proxy
	{
		rewrite ^ $request_uri;
		rewrite ^/api(/.*) $1 break;
		proxy_pass http://index:3001;
	}

	location ^~ /api/
	{
		rewrite ^/api/(.*)$ /$1 break;
		proxy_pass http://index:3001;
	}

	location /
	{
		proxy_pass http://index-gui:3000;
	}

	location ~ /.well-known/acme-challenge
	{
		allow all;
		root /var/www/html;
	}
}

server
{
	listen 80;
	listen [::]:80;

	root /var/www/html;
	index index.html index.htm index.nginx-debian.html;

	server_name tracker.torrust-demo.com;

	error_log /var/log/nginx/error.log debug;

	location /api/
	{
		proxy_pass http://tracker:1212;
	}

	location /
	{
		proxy_pass http://tracker:7070;
	}

	location ~ /.well-known/acme-challenge
	{
		allow all;
		root /var/www/html;
	}
}

#server
#{
#	listen 443 ssl http2;
#	listen [::]:443 ssl http2;
#	server_name index.torrust-demo.com;
#
#	error_log /var/log/nginx/error.log debug;
#	merge_slashes off;
#	server_tokens off;
#
#	ssl_certificate /etc/letsencrypt/live/index.torrust-demo.com-0001/fullchain.pem;
#	ssl_certificate_key /etc/letsencrypt/live/index.torrust-demo.com-0001/privkey.pem;
#
#	ssl_buffer_size 8k;
#
#	ssl_dhparam /etc/ssl/certs/dhparam-2048.pem;
#
#	ssl_protocols TLSv1.2;
#	ssl_prefer_server_ciphers on;
#
#	ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:DH+3DES:!ADH:!AECDH:!MD5;
#
#	ssl_ecdh_curve secp384r1;
#	ssl_session_tickets off;
#
#	ssl_stapling on;
#	ssl_stapling_verify on;
#	resolver 8.8.8.8;
#
#	error_log /var/log/nginx/error.log debug;
#
#	location /api/v1/proxy
#	{
#		rewrite ^ $request_uri;
#		rewrite ^/api(/.*) $1 break;
#		#proxy_pass http://index:3001;
#		try_files $uri @index;
#	}
#
#	location ^~/api/
#	{
#		rewrite ^/api/(.*)$ /$1 break;
#		try_files $uri @index;
#	}
#
#	location /
#	{
#		try_files $uri @index-gui;
#	}
#
#	location @index
#	{
#		proxy_pass http://index:3001;
#		add_header X-Frame-Options "SAMEORIGIN" always;
#		add_header X-XSS-Protection "1; mode=block" always;
#		add_header X-Content-Type-Options "nosniff" always;
#		add_header Referrer-Policy "no-referrer-when-downgrade" always;
#		add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
#		#add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
#		# enable strict transport security only if you understand the implications
#	}
#
#	location @index-gui
#	{
#		proxy_pass http://index-gui:3000;
#		add_header X-Frame-Options "SAMEORIGIN" always;
#		add_header X-XSS-Protection "1; mode=block" always;
#		add_header X-Content-Type-Options "nosniff" always;
#		add_header Referrer-Policy "no-referrer-when-downgrade" always;
#		add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
#		#add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
#		# enable strict transport security only if you understand the implications
#	}
#
#	root /var/www/html;
#	index index.html index.htm index.nginx-debian.html;
#}
#
#server
#{
#	listen 443 ssl http2;
#	listen [::]:443 ssl http2;
#	server_name tracker.torrust-demo.com;
#
#	server_tokens off;
#
#	ssl_certificate /etc/letsencrypt/live/tracker.torrust-demo.com/fullchain.pem;
#	ssl_certificate_key /etc/letsencrypt/live/tracker.torrust-demo.com/privkey.pem;
#
#	ssl_buffer_size 8k;
#
#	ssl_dhparam /etc/ssl/certs/dhparam-2048.pem;
#
#	ssl_protocols TLSv1.2;
#	ssl_prefer_server_ciphers on;
#
#	ssl_ciphers ECDH+AESGCM:ECDH+AES256:ECDH+AES128:DH+3DES:!ADH:!AECDH:!MD5;
#
#	ssl_ecdh_curve secp384r1;
#	ssl_session_tickets off;
#
#	ssl_stapling on;
#	ssl_stapling_verify on;
#	resolver 8.8.8.8;
#
#	location /api/
#	{
#		try_files $uri @tracker-api;
#	}
#
#	location /
#	{
#		try_files $uri @tracker-http;
#	}
#
#	location @tracker-api
#	{
#		proxy_pass http://tracker:1212;
#		add_header X-Frame-Options "SAMEORIGIN" always;
#		add_header X-XSS-Protection "1; mode=block" always;
#		add_header X-Content-Type-Options "nosniff" always;
#		add_header Referrer-Policy "no-referrer-when-downgrade" always;
#		add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
#		#add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
#		# enable strict transport security only if you understand the implications
#	}
#
#	location @tracker-http
#	{
#		proxy_pass http://tracker:7070;
#		add_header X-Frame-Options "SAMEORIGIN" always;
#		add_header X-XSS-Protection "1; mode=block" always;
#		add_header X-Content-Type-Options "nosniff" always;
#		add_header Referrer-Policy "no-referrer-when-downgrade" always;
#		add_header Content-Security-Policy "default-src * data: 'unsafe-eval' 'unsafe-inline'" always;
#		#add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
#		# enable strict transport security only if you understand the implications
#
#		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
#	}
#
#	root /var/www/html;
#	index index.html index.htm index.nginx-debian.html;
#}