Hammer
4d684a9d74
Brave and other privacy-focused browsers block third-party cookies. Instead of cross-domain requests from app.thenetwork to api.thenetwork, nginx now proxies /api/* to the backend, making everything same-origin.
26 lines
763 B
Nginx Configuration File
26 lines
763 B
Nginx Configuration File
server {
|
|
listen 80;
|
|
server_name _;
|
|
root /usr/share/nginx/html;
|
|
index index.html;
|
|
|
|
# Proxy API requests to backend (same-origin = no cookie issues in Brave etc.)
|
|
location /api/ {
|
|
proxy_pass https://api.thenetwork.donovankelly.xyz/api/;
|
|
proxy_set_header Host api.thenetwork.donovankelly.xyz;
|
|
proxy_set_header X-Real-IP $remote_addr;
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
proxy_ssl_server_name on;
|
|
}
|
|
|
|
location / {
|
|
try_files $uri $uri/ /index.html;
|
|
}
|
|
|
|
location ~* \.(js|css|png|jpg|jpeg|gif|ico|svg|woff|woff2|ttf|eot)$ {
|
|
expires 1y;
|
|
add_header Cache-Control "public, immutable";
|
|
}
|
|
}
|