1. map $request_uri $redirect_fbclid {
  2. "~^(.*?)([?&]fbclid=[a-zA-Z0-9_-]+)$" $1;
  3. }
  5. server {
  6. listen 80;
  7. server_name blog.rednet.ge;
  8. #return 301 https://blog.rednet.ge$request_uri;
  9. root /var/www/html/wordpress;
  10. }
  13. server {
  14. listen 443 ssl http2;
  15. server_name blog.rednet.ge;
  16. keepalive_timeout 70;
  17. ssl_certificate /etc/letsencrypt/live/blog.rednet.ge/fullchain.pem;
  18. ssl_certificate_key /etc/letsencrypt/live/blog.rednet.ge/privkey.pem;
  19. ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  20. ssl_ciphers HIGH:!aNULL:!MD5;
  21. gzip on;
  22. gzip_static on;
  23. ssl_session_cache shared:SSL:10m;
  24. ssl_session_timeout 10m;
  25. charset UTF-8;
  26. root /var/www/html/wordpress;
  28. if ( $redirect_fbclid ) {
  29. return 301 $redirect_fbclid;
  30. }
  32. set $cache_uri $request_uri;
  33. # bypass cache if POST requests or URLs with a query string
  34. if ($request_method = POST) {
  35. set $cache_uri 'nullcache';
  36. }
  38. if ($query_string != "") {
  39. set $cache_uri 'nullcache';
  40. }
  41. # bypass cache if URLs containing the following strings
  42. if ($request_uri ~* "(/wp-admin/|/xmlrpc.php|/wp-(app|cron|login|register|mail).php|wp-.*.php|/feed/|index.php|wp-comments-popup.php|wp-links-opml.php|wp-locations.php|sitemap(index)?.xml|[a-z0-9-]+-sitemap([0-9]+)?.xml)") {
  43. set $cache_uri 'nullcache';
  44. }
  45. # bypass cache if the cookies containing the following strings
  46. if ($http_cookie ~* "comment_author|wordpress_[a-f0-9]+|wp-postpass|wordpress_logged_in") {
  47. set $cache_uri 'nullcache';
  48. }
  50. # default html file
  51. set $cache_enabler_uri '/wp-content/cache/cache-enabler/${http_host}${cache_uri}index.html';
  54. location / {
  55. gzip_static on; # this directive is not required but recommended
  56. try_files $cache_enabler_uri $uri $uri/ $custom_subdir/index.php?$args;
  57. index index.html index.htm index.php;
  58. }
  66. #error_page 404 /404.html;
  67. # redirect server error pages to the static page /50x.html
  68. #
  69. error_page 500 502 503 504 /50x.html;
  70. location = /50x.html {
  71. root /usr/share/nginx/html;
  72. }
  74. location ~ \.php$ {
  75. try_files $uri =404;
  76. fastcgi_pass unix:/var/run/php-fpm.sock;
  77. fastcgi_index index.php;
  78. fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
  79. include fastcgi_params;
  80. }
  81. location ~* \.css$ {
  82. etag on;
  83. gzip_vary on;
  84. expires 30d;
  86. }
  87. location ~* \.js$ {
  88. etag on;
  89. gzip_vary on;
  90. expires 30d;
  92. }
  93. location ~* \.(ico|gif|jpe?g|png|svg|eot|otf|woff|woff2|ttf|ogg)$ {
  94. etag on;
  95. expires 30d;
  97. }
  99. location ~ /\.ht {
  100. deny all;
  101. }
  104. }