add mta-sts configuration

This commit is contained in:
Daniel Micay 2023-05-22 17:47:52 -04:00
parent 341f7a3077
commit 12e5ad3a7e

View File

@ -108,7 +108,7 @@ http {
server { server {
listen 80; listen 80;
listen [::]:80; listen [::]:80;
server_name matrix.grapheneos.org element.grapheneos.org; server_name matrix.grapheneos.org element.grapheneos.org mta-sts.matrix.grapheneos.org;
keepalive_timeout 0; keepalive_timeout 0;
@ -197,6 +197,29 @@ http {
} }
} }
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name mta-sts.matrix.grapheneos.org;
root /srv/mta-sts;
keepalive_timeout 0;
include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always;
location = / {
return 301 https://grapheneos.org/articles/grapheneos-servers;
}
location = /.well-known/mta-sts.txt {}
location / {
return 404;
}
}
server { server {
listen unix:/run/nginx/status.sock; listen unix:/run/nginx/status.sock;