casjaysdevdocker/tor
1
0
Fork 0
mirror of https://github.com/casjaysdevdocker/tor synced 2025-10-14 08:02:34 -04:00
Code Issues Actions Packages Projects Releases Wiki Activity

🗃️ Committing everything that changed 🗃️

Browse Source 
rootfs/tmp/etc/nginx/nginx.conf
rootfs/tmp/etc/nginx/vhosts.d/admin.conf
rootfs/tmp/etc/php84/php-fpm.conf
This commit is contained in:
casjay
2025-09-20 07:20:49 -04:00
parent 269f93f2bb
commit a0075c81d7
3 changed files with 41 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
rootfs/tmp/etc/nginx/nginx.conf
View File

@@ -103,17 +103,51 @@ http {
} }
location @api { location @api {
fastcgi_pass 127.0.0.1:9000; fastcgi_pass unix:/run/php-fpm.sock;
fastcgi_param SCRIPT_FILENAME /usr/local/share/webpanel/api/index.php; fastcgi_param SCRIPT_FILENAME /usr/local/share/webpanel/api/index.php;
fastcgi_param REQUEST_URI $request_uri; fastcgi_param REQUEST_URI $request_uri;
include fastcgi_params; fastcgi_param QUERY_STRING $query_string;
fastcgi_param REQUEST_METHOD $request_method;
fastcgi_param CONTENT_TYPE $content_type;
fastcgi_param CONTENT_LENGTH $content_length;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
fastcgi_param DOCUMENT_URI $document_uri;
fastcgi_param DOCUMENT_ROOT $document_root;
fastcgi_param SERVER_PROTOCOL $server_protocol;
fastcgi_param REQUEST_SCHEME $scheme;
fastcgi_param HTTPS $https if_not_empty;
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;
fastcgi_param REMOTE_ADDR $remote_addr;
fastcgi_param REMOTE_PORT $remote_port;
fastcgi_param SERVER_ADDR $server_addr;
fastcgi_param SERVER_PORT $server_port;
fastcgi_param SERVER_NAME $server_name;
fastcgi_param REDIRECT_STATUS 200;
} }
location ~ \.php$ { location ~ \.php$ {
fastcgi_pass 127.0.0.1:9000; fastcgi_pass unix:/run/php-fpm.sock;
fastcgi_index index.php; fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /usr/local/share/webpanel$fastcgi_script_name; fastcgi_param SCRIPT_FILENAME /usr/local/share/webpanel$fastcgi_script_name;
include fastcgi_params; fastcgi_param QUERY_STRING $query_string;
fastcgi_param REQUEST_METHOD $request_method;
fastcgi_param CONTENT_TYPE $content_type;
fastcgi_param CONTENT_LENGTH $content_length;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
fastcgi_param DOCUMENT_URI $document_uri;
fastcgi_param DOCUMENT_ROOT $document_root;
fastcgi_param SERVER_PROTOCOL $server_protocol;
fastcgi_param REQUEST_SCHEME $scheme;
fastcgi_param HTTPS $https if_not_empty;
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;
fastcgi_param REMOTE_ADDR $remote_addr;
fastcgi_param REMOTE_PORT $remote_port;
fastcgi_param SERVER_ADDR $server_addr;
fastcgi_param SERVER_PORT $server_port;
fastcgi_param SERVER_NAME $server_name;
fastcgi_param REDIRECT_STATUS 200;
} }
} }
@@ -123,7 +157,7 @@ http {
return 404; return 404;
} }
fastcgi_param HTTP_PROXY ""; fastcgi_param HTTP_PROXY "";
fastcgi_pass 127.0.0.1:9000; fastcgi_pass unix:/run/php-fpm.sock;
fastcgi_index index.php; fastcgi_index index.php;
fastcgi_param QUERY_STRING $query_string; fastcgi_param QUERY_STRING $query_string;
fastcgi_param REQUEST_METHOD $request_method; fastcgi_param REQUEST_METHOD $request_method;

38
rootfs/tmp/etc/nginx/vhosts.d/admin.conf
View File

@@ -1,38 +0,0 @@
server {
listen 80;
server_name admin.tor localhost;
root /usr/local/share/webpanel;
index index.php;
access_log /data/logs/nginx/admin.access.log;
error_log /data/logs/nginx/admin.error.log;
# Security headers
add_header X-Frame-Options "DENY" always;
add_header X-XSS-Protection "1; mode=block" always;
add_header X-Content-Type-Options "nosniff" always;
add_header Referrer-Policy "strict-origin-when-cross-origin" always;
# PHP processing
location ~ \.php$ {
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
include fastcgi_params;
}
# Static files
location ~* \.(css|js|png|jpg|jpeg|gif|ico|svg)$ {
expires 1y;
add_header Cache-Control "public, immutable";
}
# Deny access to sensitive files
location ~ /\.(ht|git) {
deny all;
}
location ~ \.(conf|log|txt)$ {
deny all;
}
}

4
rootfs/tmp/etc/php84/php-fpm.conf
View File

@@ -1,5 +1,5 @@
[global] [global]
pid = /run/php-fpm84.pid pid = /run/php-fpm.pid
error_log = /data/logs/php-fpm/php-fpm.log error_log = /data/logs/php-fpm/php-fpm.log
log_level = notice log_level = notice
emergency_restart_threshold = 0 emergency_restart_threshold = 0
@@ -10,7 +10,7 @@ daemonize = no
[www] [www]
user = root user = root
group = root group = root
listen = /run/php-fpm84.sock listen = /run/php-fpm.sock
listen.owner = root listen.owner = root
listen.group = root listen.group = root
listen.mode = 0660 listen.mode = 0660