2021-04-22 23:04:44 +00:00
|
|
|
server {
|
|
|
|
|
listen 80;
|
|
|
|
|
server_name "jellyfin.{{ base_domain }}";
|
2021-04-22 23:20:32 +00:00
|
|
|
set $jellyfin {{ server_ip }};
|
2021-04-22 23:04:44 +00:00
|
|
|
#resolver 127.0.0.1 valid=30;
|
|
|
|
|
|
2021-04-26 16:54:59 +00:00
|
|
|
# Security/XSS Mitigation Headers
|
|
|
|
|
add_header X-Frame-Options "SAMEORIGIN";
|
|
|
|
|
add_header X-XSS-Protection "1; mode=block";
|
|
|
|
|
add_header X-Content-Type-Options "nosniff";
|
|
|
|
|
|
2021-04-22 23:04:44 +00:00
|
|
|
location / {
|
|
|
|
|
proxy_pass http://$jellyfin:8096;
|
|
|
|
|
proxy_set_header Host $host;
|
2021-04-26 16:54:59 +00:00
|
|
|
proxy_set_header X-Real-IP $remote_addr;
|
|
|
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
|
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
|
|
|
proxy_set_header X-Forwarded-Protocol $scheme;
|
|
|
|
|
proxy_set_header X-Forwarded-Host $http_host;
|
|
|
|
|
proxy_buffering off;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
location = /web/ {
|
|
|
|
|
proxy_pass http://$jellyfin:8096/web/index.html;
|
|
|
|
|
proxy_set_header Host $host;
|
|
|
|
|
proxy_set_header X-Real-IP $remote_addr;
|
|
|
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
|
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
|
|
|
proxy_set_header X-Forwarded-Protocol $scheme;
|
|
|
|
|
proxy_set_header X-Forwarded-Host $http_host;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
location /socket {
|
|
|
|
|
proxy_pass http://$jellyfin:8096;
|
|
|
|
|
proxy_http_version 1.1;
|
|
|
|
|
proxy_set_header Upgrade $http_upgrade;
|
|
|
|
|
proxy_set_header Connection "upgrade";
|
|
|
|
|
proxy_set_header Host $host;
|
|
|
|
|
proxy_set_header X-Real-IP $remote_addr;
|
|
|
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
|
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
|
|
|
proxy_set_header X-Forwarded-Protocol $scheme;
|
|
|
|
|
proxy_set_header X-Forwarded-Host $http_host;
|
2021-04-22 23:04:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
