chore: disabled internal SSL/HTTPS in Nginx configs to support host-level SSL termination.

2026-03-11 23:05:51 -04:00
parent 14173cfc22
commit a7b6112f4d
3 changed files with 202 additions and 279 deletions
--- a/conf/nginx/site-enabled_aether_app_svelte_node.conf
+++ b/conf/nginx/site-enabled_aether_app_svelte_node.conf
@@ -64,73 +64,73 @@ server {
 }


-server {
-    listen 443 ssl;
-    listen [::]:443 ssl;
-    http2 on;
-
-    server_name
-        ${DOCKER_AE_APP_SERVER_NAME}
-        svelte.localhost demo.localhost dev.localhost
-
-        bak-app.oneskyit.com
-        bak-connect.oneskyit.com *.bak-connect.oneskyit.com
-        bak-demo.oneskyit.com *.bak-demo.oneskyit.com
-
-        bak-businessgroup.oneskyit.com *.bak-businessgroup.oneskyit.com
-        bak-ishlt.oneskyit.com *.bak-ishlt.oneskyit.com
-
-        dev-app.oneskyit.com
-        dev-connect.oneskyit.com *.dev-connect.oneskyit.com
-        dev-demo.oneskyit.com *.dev-demo.oneskyit.com
-
-        dev-aacc.oneskyit.com *.dev-aacc.oneskyit.com
-        dev-aapor.oneskyit.com *.dev-aapor.oneskyit.com
-        dev-businessgroup.oneskyit.com *.dev-businessgroup.oneskyit.com
-        dev-chow.oneskyit.com *.dev-chow.oneskyit.com
-        dev-idaa.oneskyit.com *.dev-idaa.oneskyit.com
-        dev-ishlt.oneskyit.com *.dev-ishlt.oneskyit.com
-        dev-lci.oneskyit.com *.dev-lci.oneskyit.com
-        dev-npa.oneskyit.com *.dev-npa.oneskyit.com
-        dev-rli.oneskyit.com *.dev-rli.oneskyit.com
-
-        sr-app.oneskyit.com
-        sr-connect.oneskyit.com *.sr-connect.oneskyit.com
-        sr-demo.oneskyit.com *.sr-demo.oneskyit.com
-
-        sr-aacc.oneskyit.com *.sr-aacc.oneskyit.com
-        sr-aapor.oneskyit.com *.sr-aapor.oneskyit.com
-        sr-businessgroup.oneskyit.com *.sr-businessgroup.oneskyit.com
-        sr-lci.oneskyit.com *.sr-lci.oneskyit.com
-
-        test-app.oneskyit.com
-        ;
-
-    access_log  /logs/nginx/access_svelte_node.log;
-    error_log  /logs/nginx/error_svelte_node.log;
-
-    include /etc/nginx/options-ssl-nginx.conf;
-
-    ssl_certificate /etc/certs/fullchain_wild.pem;
-    ssl_certificate_key /etc/certs/privkey_wild.pem;
-    ssl_dhparam /etc/certs/ssl-dhparams.pem;
-
-    client_max_body_size ${OSIT_WEB_MAX_BODY_SIZE};
-
-    location / {
-        proxy_set_header Host $http_host;
-        proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-        proxy_set_header X-Forwarded-Proto $scheme;
-
-        proxy_redirect off;
-        proxy_buffering off;
-
-        proxy_read_timeout 1500s;
-
-        proxy_pass http://svelte_backend;
-    }
-}
+# server {
+#     listen 443 ssl;
+#     listen [::]:443 ssl;
+#     http2 on;
+# 
+#     server_name
+#         ${DOCKER_AE_APP_SERVER_NAME}
+#         svelte.localhost demo.localhost dev.localhost
+# 
+#         bak-app.oneskyit.com
+#         bak-connect.oneskyit.com *.bak-connect.oneskyit.com
+#         bak-demo.oneskyit.com *.bak-demo.oneskyit.com
+# 
+#         bak-businessgroup.oneskyit.com *.bak-businessgroup.oneskyit.com
+#         bak-ishlt.oneskyit.com *.bak-ishlt.oneskyit.com
+# 
+#         dev-app.oneskyit.com
+#         dev-connect.oneskyit.com *.dev-connect.oneskyit.com
+#         dev-demo.oneskyit.com *.dev-demo.oneskyit.com
+# 
+#         dev-aacc.oneskyit.com *.dev-aacc.oneskyit.com
+#         dev-aapor.oneskyit.com *.dev-aapor.oneskyit.com
+#         dev-businessgroup.oneskyit.com *.dev-businessgroup.oneskyit.com
+#         dev-chow.oneskyit.com *.dev-chow.oneskyit.com
+#         dev-idaa.oneskyit.com *.dev-idaa.oneskyit.com
+#         dev-ishlt.oneskyit.com *.dev-ishlt.oneskyit.com
+#         dev-lci.oneskyit.com *.dev-lci.oneskyit.com
+#         dev-npa.oneskyit.com *.dev-npa.oneskyit.com
+#         dev-rli.oneskyit.com *.dev-rli.oneskyit.com
+# 
+#         sr-app.oneskyit.com
+#         sr-connect.oneskyit.com *.sr-connect.oneskyit.com
+#         sr-demo.oneskyit.com *.sr-demo.oneskyit.com
+# 
+#         sr-aacc.oneskyit.com *.sr-aacc.oneskyit.com
+#         sr-aapor.oneskyit.com *.sr-aapor.oneskyit.com
+#         sr-businessgroup.oneskyit.com *.sr-businessgroup.oneskyit.com
+#         sr-lci.oneskyit.com *.sr-lci.oneskyit.com
+# 
+#         test-app.oneskyit.com
+#         ;
+# 
+#     access_log  /logs/nginx/access_svelte_node.log;
+#     error_log  /logs/nginx/error_svelte_node.log;
+# 
+#     include /etc/nginx/options-ssl-nginx.conf;
+# 
+#     ssl_certificate /etc/certs/fullchain_wild.pem;
+#     ssl_certificate_key /etc/certs/privkey_wild.pem;
+#     ssl_dhparam /etc/certs/ssl-dhparams.pem;
+# 
+#     client_max_body_size ${OSIT_WEB_MAX_BODY_SIZE};
+# 
+#     location / {
+#         proxy_set_header Host $http_host;
+#         proxy_set_header X-Real-IP $remote_addr;
+#         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+#         proxy_set_header X-Forwarded-Proto $scheme;
+# 
+#         proxy_redirect off;
+#         proxy_buffering off;
+# 
+#         proxy_read_timeout 1500s;
+# 
+#         proxy_pass http://svelte_backend;
+#     }
+# }


 upstream svelte_backend {