| # ***************************************************************************** |
| # |
| # Licensed to the Apache Software Foundation (ASF) under one |
| # or more contributor license agreements. See the NOTICE file |
| # distributed with this work for additional information |
| # regarding copyright ownership. The ASF licenses this file |
| # to you under the Apache License, Version 2.0 (the |
| # "License"); you may not use this file except in compliance |
| # with the License. You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, |
| # software distributed under the License is distributed on an |
| # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| # KIND, either express or implied. See the License for the |
| # specific language governing permissions and limitations |
| # under the License. |
| # |
| # ****************************************************************************** |
| user nginx; |
| worker_processes auto; |
| error_log /var/log/nginx/error.log; |
| pid /run/nginx.pid; |
| |
| include /usr/share/nginx/modules/*.conf; |
| |
| events { |
| worker_connections 1024; |
| } |
| |
| http { |
| log_format main '$remote_addr - $remote_user [$time_local] "$request" ' |
| '$status $body_bytes_sent "$http_referer" ' |
| '"$http_user_agent" "$http_x_forwarded_for"'; |
| |
| access_log /var/log/nginx/access.log main; |
| |
| sendfile on; |
| tcp_nopush on; |
| tcp_nodelay on; |
| keepalive_timeout 100; |
| types_hash_max_size 2048; |
| proxy_read_timeout 86400s; |
| proxy_send_timeout 86400s; |
| client_max_body_size 50M; |
| |
| include /etc/nginx/mime.types; |
| default_type application/octet-stream; |
| |
| auth_ldap_cache_enabled on; |
| auth_ldap_cache_expiration_time 10000; |
| auth_ldap_cache_size 1000; |
| |
| ldap_server ldap1 { |
| url ldap://LDAP_IP:389/LDAP_DN?uid,mail?sub?(&(objectClass=posixAccount)(uid=LDAP_USERNAME)); |
| binddn "LDAP_SERVICE_USERNAME,LDAP_DN"; |
| binddn_passwd "LDAP_SERVICE_PASSWORD"; |
| require valid_user; |
| request_timeout 30s; |
| } |
| |
| include /etc/nginx/conf.d/*.conf; |
| } |