server { listen 443 ssl http2; server_name www.gruszczynski.eu.org; set $base /var/www/gruszczynski.eu.org; root $base; ssl_certificate /etc/letsencrypt/live/gruszczynski.eu.org/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/gruszczynski.eu.org/privkey.pem; ssl_trusted_certificate /etc/letsencrypt/live/gruszczynski.eu.org/chain.pem; # ssl cfg include config/ssl_cfg.conf; # security include config/security.conf; # restrict methods if ($request_method !~ ^(GET)$) { return '405'; } # logging access_log /var/log/nginx/gruszczynski.eu.org.access.log; error_log /var/log/nginx/gruszczynski.eu.org.error.log warn; # index.php index index.php index.html; # additional config include config/general.conf; # letsencrypt include config/letsencrypt.conf; # handle .php location ~ \.php$ { include config/php_fastcgi.conf; } } # HTTP redirect server { listen 80; server_name gruszczynski.eu.org www.gruszczynski.eu.org; include config/letsencrypt.conf; # restrict methods if ($request_method !~ ^(GET)$) { return '405'; } location / { return 301 https://www.gruszczynski.eu.org$request_uri; } } server { listen 443 ssl http2; server_name gruszczynski.eu.org; ssl_certificate /etc/letsencrypt/live/gruszczynski.eu.org/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/gruszczynski.eu.org/privkey.pem; ssl_trusted_certificate /etc/letsencrypt/live/gruszczynski.eu.org/chain.pem; # ssl cfg include config/ssl_cfg.conf; # security include config/security.conf; # restrict methods if ($request_method !~ ^(GET)$) { return '405'; } location / { return 301 https://www.gruszczynski.eu.org$request_uri; } }