mirror of
https://github.com/alexbelgium/hassio-addons.git
synced 2026-01-21 03:58:10 +01:00
48 lines
1.7 KiB
Plaintext
48 lines
1.7 KiB
Plaintext
server {
|
|
listen %%interface%%:%%port%% default_server;
|
|
include /etc/nginx/includes/server_params.conf;
|
|
include /etc/nginx/includes/proxy_params.conf;
|
|
client_max_body_size 0;
|
|
server_name jellyfin.*;
|
|
root /usr/share/jellyfin/web;
|
|
index index.html;
|
|
|
|
# Security / XSS Mitigation Headers
|
|
add_header X-Frame-Options "SAMEORIGIN";
|
|
add_header X-XSS-Protection "1; mode=block";
|
|
add_header X-Content-Type-Options "nosniff";
|
|
|
|
location /web/ {
|
|
add_header Access-Control-Allow-Origin *;
|
|
proxy_pass http://127.0.0.1:8096/web/index.html;
|
|
proxy_buffering off;
|
|
proxy_read_timeout 30;
|
|
proxy_pass_request_headers on;
|
|
|
|
proxy_set_header Connection "Upgrade";
|
|
proxy_set_header Upgrade $http_upgrade;
|
|
proxy_set_header Host $host;
|
|
proxy_set_header X-Real-IP $remote_addr;
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
proxy_set_header X-Forwarded-Protocol $scheme;
|
|
proxy_set_header X-Forwarded-Host $http_host;
|
|
proxy_set_header Connection $http_connection;
|
|
}
|
|
|
|
location /socket {
|
|
# Proxy Jellyfin Websockets traffic
|
|
proxy_pass http://127.0.0.1:8096;
|
|
proxy_http_version 1.1;
|
|
proxy_set_header Upgrade $http_upgrade;
|
|
proxy_set_header Connection "upgrade";
|
|
proxy_set_header Host $host;
|
|
proxy_set_header X-Real-IP $remote_addr;
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
proxy_set_header X-Forwarded-Protocol $scheme;
|
|
proxy_set_header X-Forwarded-Host $http_host;
|
|
}
|
|
|
|
}
|