server {
server_name ... ;
charset UTF-8;
index index.php;
disable_symlinks if_not_owner from=$root_path;
include /etc/nginx/vhosts-includes/*.conf;
include /etc/nginx/vhosts-resources/.../*.conf;
set $root_path /var/www/www-root/data/www/...;
root $root_path;
gzip on;
gzip_comp_level 3;
gzip_disable "msie6";
gzip_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript application/javascript image/svg+xml;
error_log /var/www/httpd-logs/danfa.net.error.log warn;
location ~* ^.+\.(jpg|jpeg|gif|png|ico|css|js|ttf)$ {
expires 180d;
}
location / {
try_files $uri /index.php?do=$uri;
location ~ [^/]\.ph(p\d*|tml)$ {
try_files /does_not_exists @php;
}
}
error_page 404 /error/404/;
error_log /var/www/httpd-logs/danfa.net.error.log notice;
location @php {
fastcgi_index index.php;
fastcgi_param PHP_ADMIN_VALUE "sendmail_path = /usr/sbin/sendmail -t -i -f ...";
fastcgi_pass unix:/var/www/php-fpm/1.sock;
fastcgi_split_path_info ^((?U).+\.ph(?:p\d*|tml))(/?.+)$;
try_files $uri =404;
include fastcgi_params;
include /etc/nginx/vhosts-resources/.../dynamic/*.conf;
}
return 301 https://$host:443$request_uri;
access_log off;
listen ...;
listen ...;
}
server {
server_name ... ;
ssl_certificate "/var/www/httpd-cert/www-root/...le2.crtca";
ssl_certificate_key "/var/www/httpd-cert/www-root/...le2.key";
ssl_ciphers ...;
ssl_prefer_server_ciphers on;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
add_header Strict-Transport-Security "max-age=31536000;";
ssl_dhparam /etc/ssl/certs/dhparam4096.pem;
charset UTF-8;
index index.php;
disable_symlinks if_not_owner from=$root_path;
include /etc/nginx/vhosts-includes/*.conf;
include /etc/nginx/vhosts-resources/.../*.conf;
error_log /var/www/httpd-logs/...error.log notice;
set $root_path /var/www/www-root/data/www/...;
root $root_path;
gzip on;
gzip_comp_level 3;
gzip_disable "msie6";
gzip_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript application/javascript image/svg+xml;
location ~* ^.+\.(jpg|jpeg|gif|png|ico|css|js|ttf)$ {
expires 180d;
}
location / {
try_files $uri /index.php?do=$uri;
location ~ [^/]\.ph(p\d*|tml)$ {
try_files /does_not_exists @php;
}
}
location @php {
fastcgi_index index.php;
fastcgi_param PHP_ADMIN_VALUE "sendmail_path = /usr/sbin/sendmail -t -i -f danfa@danfa.net";
fastcgi_pass unix:/var/www/php-fpm/1.sock;
fastcgi_split_path_info ^((?U).+\.ph(?:p\d*|tml))(/?.+)$;
try_files $uri =404;
include fastcgi_params;
include /etc/nginx/vhosts-resources/danfa.net/dynamic/*.conf;
}
error_page 404 /error/404/;
access_log off;
listen .... ssl http2;
listen .... ssl http2;
}
Мне надо было экранировать только одинарные кавычки, как оказалось... А я экранировал все подряд, из за чего получал ошибку.