Move Nginx reverse proxy sample from INSTALL to separate file

diff --git a/INSTALL.txt b/INSTALL.txt
index 71671af3f19d8117bc67cdfea91558effdce8c03..08bd41c8d3903bd564d2086f5960fafd00916331 100644 (file)
--- a/INSTALL.txt
+++ b/INSTALL.txt
@@ -154,18 +154,6 @@ Friendica also supports a number on non-standard headers in common use.
     X-Forwarded-Ssl: on
 
 It is however preferable to use the standard approach if configuring a new server.
-In Nginx, this can be done as follows (assuming Friendica runs on port 8080).
-
-    location / {
-            if ( $scheme != https ) {          # Force Redirect to HTTPS
-                    return 302 https://$host$uri;
-            }
-            proxy_pass http://localhost:8080;
-            proxy_redirect off;
-            proxy_set_header Host $host;
-            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-            proxy_set_header Forwarded "for=$proxy_add_x_forwarded_for; proto=$scheme";
-    }
 
 #####################################################################
 

diff --git a/mods/sample-nginx-reverse-proxy.config b/mods/sample-nginx-reverse-proxy.config
new file mode 100644 (file)
index 0000000..fbbbc48
--- /dev/null
+++ b/mods/sample-nginx-reverse-proxy.config
@@ -0,0 +1,30 @@
+#
+# Example of NGINX as reverse-proxy terminating an HTTPS connection.
+#
+# This is not a complete NGINX config.
+#
+# Please refer to NGINX docs
+#
+
+...
+
+server {
+
+       ...
+
+       # assuming Friendica runs on port 8080
+       location / {
+               if ( $scheme != https ) {
+                       # Force Redirect to HTTPS
+                       return 302 https://$host$uri;
+               }
+               proxy_pass http://localhost:8080;
+               proxy_redirect off;
+               proxy_set_header Host $host;
+               proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+               proxy_set_header Forwarded "for=$proxy_add_x_forwarded_for; proto=$scheme";
+       }
+
+       ...
+
+}