diff options
| author |  Daenney <daenney@users.noreply.github.com> | 2024-07-03 20:45:46 +0200 |
|---|---|---|
| committer |  GitHub <noreply@github.com> | 2024-07-03 20:45:46 +0200 |
| commit | 27bcc1fcbd75774f766e32fe3f44e37475af4803 (patch) | |
| tree | 1a9452ad98970dfff2af0e5d7485ba676eaca5a5 /docs/getting_started | |
| parent | [chore]: Bump github.com/yuin/goldmark from 1.7.3 to 1.7.4 (#3059) (diff) | |
| download | gotosocial-27bcc1fcbd75774f766e32fe3f44e37475af4803.tar.xz | |
[docs] Update how to enable http2 on nginx (#3066)
Since 1.25.1 the newer 'http2 on;' syntax should be used. The previous
syntax still works, but throws warnings when testing the configuration
with 'nginx -t'.
This also updates the certbot template to match what's currently
generated. It removes ipv6only=on as that's the default on a listen
directive binding on a wildcard IPv6 address.
Diffstat (limited to 'docs/getting_started')
| -rw-r--r-- | docs/getting_started/reverse_proxy/nginx.md | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/docs/getting_started/reverse_proxy/nginx.md b/docs/getting_started/reverse_proxy/nginx.md index c223274b2..222634d0f 100644 --- a/docs/getting_started/reverse_proxy/nginx.md +++ b/docs/getting_started/reverse_proxy/nginx.md @@ -3,7 +3,7 @@ In order to use NGINX as a reverse proxy for GoToSocial you'll need to have it installed on your server. If you intend for the NGINX instance to also handle TLS, you'll need to [provision TLS certificates](../../advanced/certificates.md) too. !!! tip - Enable HTTP/2 in nginx by including `http2` in the `listen` directives. This can speed up the experience for clients. Browsers do not support HTTP/2 over plain text, so this should only be added to `listen` directives for port `443` that also include the `ssl` directive. + Enable HTTP/2 in nginx by including `http2 on;` in the `server` block. This can speed up the experience for clients. See the [ngx_http_v2_module documentation](https://nginx.org/en/docs/http/ngx_http_v2_module.html#example). NGINX is [packaged for many distributions](https://repology.org/project/nginx/versions). It's very likely you can install it with your distribution's package manager. You can also run NGINX using a container runtime with the [official NGINX image](https://hub.docker.com/_/nginx) that's published to the Docker Hub. @@ -162,8 +162,9 @@ server { } client_max_body_size 40M; - listen [::]:443 ssl ipv6only=on http2; # managed by Certbot - listen 443 ssl http2; # managed by Certbot + listen [::]:443 ssl; # managed by Certbot + listen 443 ssl; # managed by Certbot + http2 on; # managed by Certbot ssl_certificate /etc/letsencrypt/live/example.org/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/example.org/privkey.pem; # managed by Certbot include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot |