nginx.conf

worker_processes auto;
pid /tmp/nginx.pid;

events {
    worker_connections 1024;
    use epoll;
    multi_accept on;
}

http {
    sendfile on;
    tcp_nopush on;
    tcp_nodelay on;
    keepalive_timeout 65;
    server_tokens off;
    
    include /etc/nginx/mime.types;
    default_type application/octet-stream;
    charset utf-8;
    
    access_log /dev/stdout;
    error_log /dev/stderr;
    
    gzip on;
    gzip_vary on;
    gzip_min_length 1024;
    gzip_types text/plain text/css text/xml text/javascript 
               application/javascript application/xml+rss 
               application/json image/svg+xml;
    
    server {
        listen 80;
        server_name _;
        
        root /usr/share/nginx/html;
        index index.html;
        
        # Security headers
        add_header X-Frame-Options "SAMEORIGIN" always;
        add_header X-Content-Type-Options "nosniff" always;
        add_header X-XSS-Protection "1; mode=block" always;
        add_header Referrer-Policy "strict-origin-when-cross-origin" always;
        add_header Content-Security-Policy "script-src 'self' 'unsafe-inline' https://static.cloudflareinsights.com; object-src 'none';" always;
        
        # Favicon: serve at standard /favicon.ico location
        location = /favicon.ico {
            alias /usr/share/nginx/html/assets/logos/favicon.png;
            expires 7d;
            add_header Cache-Control "public, max-age=604800";
            access_log off;
        }
        
        # Logo assets: 1 hour cache
        location ~* ^/assets/logos/ {
            expires 1h;
            add_header Cache-Control "public, max-age=3600";
        }
        
        # Temporary: Disable caching during development
        location ~* \.(css|js|png|jpg|jpeg|gif|ico|svg|woff|woff2|ttf|eot)$ {
            expires 10m;
            add_header Cache-Control "public, immutable";
            # add_header Cache-Control "no-cache, no-store, must-revalidate";
            # add_header Pragma "no-cache";
            # add_header Expires "0";
        }
        
        location ~* \.html$ {
            expires 10m;
            add_header Cache-Control "public";
        #     add_header Cache-Control "no-cache, no-store, must-revalidate";
        #     add_header Pragma "no-cache";
        #     add_header Expires "0";
        }

        location ~* \.json$ {
            expires 1d;
            add_header Cache-Control "public, must-revalidate";
        }
        
        location /health {
            access_log off;
            return 200 'healthy\n';
            add_header Content-Type text/plain;
        }
        
        location / {
            try_files $uri $uri/ /index.html;
        }
        
        error_page 404 /index.html;
    }
}
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00			`worker_processes auto;`
first template launch 2025-08-13 19:10:31 -05:00			`pid /tmp/nginx.pid;`
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00
			`events {`
			`worker_connections 1024;`
			`use epoll;`
			`multi_accept on;`
			`}`

			`http {`
			`sendfile on;`
			`tcp_nopush on;`
			`tcp_nodelay on;`
			`keepalive_timeout 65;`
			`server_tokens off;`

			`include /etc/nginx/mime.types;`
			`default_type application/octet-stream;`
seo (#17) SEO implementation, adds a structured data response and robots.txt, fixes page structure, adds meta tags, add elements to UI for better SEO as well. Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/17 Co-authored-by: Michael DiLeo <michael_dileo@proton.me> Co-committed-by: Michael DiLeo <michael_dileo@proton.me> 2025-09-28 18:00:58 +00:00			`charset utf-8;`
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00
			`access_log /dev/stdout;`
			`error_log /dev/stderr;`

			`gzip on;`
			`gzip_vary on;`
			`gzip_min_length 1024;`
			`gzip_types text/plain text/css text/xml text/javascript`
			`application/javascript application/xml+rss`
			`application/json image/svg+xml;`

			`server {`
			`listen 80;`
			`server_name _;`

			`root /usr/share/nginx/html;`
			`index index.html;`

			`# Security headers`
			`add_header X-Frame-Options "SAMEORIGIN" always;`
			`add_header X-Content-Type-Options "nosniff" always;`
			`add_header X-XSS-Protection "1; mode=block" always;`
			`add_header Referrer-Policy "strict-origin-when-cross-origin" always;`
fix favicon, cloudflare script blocking, error in js on startup 2025-12-07 18:48:48 +01:00			`add_header Content-Security-Policy "script-src 'self' 'unsafe-inline' https://static.cloudflareinsights.com; object-src 'none';" always;`

			`# Favicon: serve at standard /favicon.ico location`
			`location = /favicon.ico {`
			`alias /usr/share/nginx/html/assets/logos/favicon.png;`
			`expires 7d;`
			`add_header Cache-Control "public, max-age=604800";`
			`access_log off;`
			`}`
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00
add seymour icons 2025-12-07 14:15:26 +01:00			`# Logo assets: 1 hour cache`
			`location ~* ^/assets/logos/ {`
			`expires 1h;`
			`add_header Cache-Control "public, max-age=3600";`
			`}`

disable caching - should lower cached value later 2025-08-14 09:45:19 -05:00			`# Temporary: Disable caching during development`
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00			`location ~* \.(css\|js\|png\|jpg\|jpeg\|gif\|ico\|svg\|woff\|woff2\|ttf\|eot)$ {`
add back caching, but for 10 minutes 2025-08-20 16:25:46 -05:00			`expires 10m;`
			`add_header Cache-Control "public, immutable";`
			`# add_header Cache-Control "no-cache, no-store, must-revalidate";`
			`# add_header Pragma "no-cache";`
			`# add_header Expires "0";`
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00			`}`

			`location ~* \.html$ {`
add back caching, but for 10 minutes 2025-08-20 16:25:46 -05:00			`expires 10m;`
			`add_header Cache-Control "public";`
			`# add_header Cache-Control "no-cache, no-store, must-revalidate";`
			`# add_header Pragma "no-cache";`
			`# add_header Expires "0";`
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00			`}`
seo (#17) SEO implementation, adds a structured data response and robots.txt, fixes page structure, adds meta tags, add elements to UI for better SEO as well. Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/17 Co-authored-by: Michael DiLeo <michael_dileo@proton.me> Co-committed-by: Michael DiLeo <michael_dileo@proton.me> 2025-09-28 18:00:58 +00:00
			`location ~* \.json$ {`
			`expires 1d;`
			`add_header Cache-Control "public, must-revalidate";`
			`}`
Add baseline start point (#1) Co-authored-by: Michael DiLeo <michael.dileo@oakstreethealth.com> Reviewed-on: http://source.michaeldileo.org/michael_dileo/Keyboard-Vagabond-Web/pulls/1 2025-08-13 20:56:29 +00:00
			`location /health {`
			`access_log off;`
			`return 200 'healthy\n';`
			`add_header Content-Type text/plain;`
			`}`

			`location / {`
			`try_files $uri $uri/ /index.html;`
			`}`

			`error_page 404 /index.html;`
			`}`
			`}`