7x31/nginxconfig.io
1
0
Fork 0
mirror of https://github.com/digitalocean/nginxconfig.io.git synced 2025-08-10 04:45:29 +08:00
Code Issues Packages Projects Releases Wiki Activity

Mozilla SSL profiles (with TLSv1.3)

Browse Source
This commit is contained in:
Bálint Szekeres
2019-06-17 14:20:54 +02:00
parent 69a3d77cd2
commit c737e92ab0
5 changed files with 132 additions and 47 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
public/templates/conf/nginx.conf.html
View File

@@ -52,7 +52,7 @@ http {<!--
# SSL
ssl_session_timeout 1d;
ssl_session_cache shared:SSL:50m;
ssl_session_cache shared:SSL:10m;
ssl_session_tickets off;<!--
✔ SSL DH required --><span ng-if="isSSLDHRequired()">
@@ -61,9 +61,11 @@ http {<!--
ssl_dhparam {{ data.directory_nginx }}dhparam.pem;</span>
# {{ sslProfiles[ data.ssl_profile ].name }} configuration
ssl_protocols {{ sslProfiles[ data.ssl_profile ].protocols }};
ssl_ciphers {{ sslProfiles[ data.ssl_profile ].ciphers }};
ssl_prefer_server_ciphers on;
ssl_protocols {{ sslProfiles[ data.ssl_profile ].protocols.join(' ') }};
ssl_ciphers {{ sslProfiles[ data.ssl_profile ].ciphers.join(':') }};<!--
✔ SSL server preferred order --><span ng-if="sslProfiles[ data.ssl_profile ].server_preferred_order">
ssl_prefer_server_ciphers on;</span>
# OCSP Stapling
ssl_stapling on;