add warning message about automatically generated templates

[friendica.git] / mods / sample-nginx.config

diff --git a/mods/sample-nginx.config b/mods/sample-nginx.config
index 811be404dde2f5ee1e4e3ef43c358d673af5789e..0fb31efffc0a042cdc8ea916c3177f0046c6b307 100644 (file)
--- a/mods/sample-nginx.config
+++ b/mods/sample-nginx.config
@@ -2,7 +2,7 @@
 # Friendica Nginx configuration
 # by Olaf Conradi
 #
-# On debian based distributions you can add this file to
+# On Debian based distributions you can add this file to
 # /etc/nginx/sites-available
 #
 # Then customize to your needs. To enable the configuration
@@ -21,10 +21,11 @@
 
 ##
 # This configuration assumes your domain is example.net
-# You have a seperate subdomain friendica.example.net
+# You have a separate subdomain friendica.example.net
 # You want all friendica traffic to be https
 # You have an SSL certificate and key for your subdomain
 # You have PHP FastCGI Process Manager (php5-fpm) running on localhost
+# You have Friendica installed in /mnt/friendica/www
 ##
 
 server {
@@ -64,44 +65,45 @@ server {
 
   # rewrite to front controller as default rule
   location / {
-    rewrite ^/(.*) /index.php?q=$1 last;
+    rewrite ^/(.*) /index.php?q=$uri&$args last;
   }
 
-  # make sure webfinger isn't blocked by denying dot files
-  # and rewrite to front controller
-  location = /.well-known/host-meta {
+  # make sure webfinger and other well known services aren't blocked
+  # by denying dot files and rewrite request to the front controller
+  location ^~ /.well-known/ {
     allow all;
-    rewrite ^/(.*) /index.php?q=$1 last;
+    rewrite ^/(.*) /index.php?q=$uri&$args last;
   }
 
   # statically serve these file types when possible
   # otherwise fall back to front controller
   # allow browser to cache them
   # added .htm for advanced source code editor library
-  location ~* \.(jpg|jpeg|gif|png|css|js|ico|htm|html)$ {
+  location ~* \.(jpg|jpeg|gif|png|css|js|htm|html)$ {
     expires 30d;
     try_files $uri /index.php?q=$uri&$args;
   }
 
-
   # block these file types
-  location ~* \.(tpl|md|git|tgz|log|out) {
+  location ~* \.(tpl|md|tgz|log|out)$ {
     deny all;
   }
 
   # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
   location ~* \.php$ {
     fastcgi_split_path_info ^(.+\.php)(/.+)$;
-    # # NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini
-    # # With php5-cgi alone:
+    # NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini
+
+    # With php5-cgi alone:
     # fastcgi_pass 127.0.0.1:9000;
+
     # With php5-fpm:
     fastcgi_pass unix:/var/run/php5-fpm.sock;
     fastcgi_index index.php;
     include fastcgi_params;
   }
 
-  # deny access to all dot files (including .htaccess)
+  # deny access to all dot files
   location ~ /\. {
     deny all;
   }