cutemeli/server
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial

Browse Source
This commit is contained in:
cutemeli
2025-12-22 10:35:30 +00:00
parent 0bfc6c8425
commit 5ce7ca2c5d
38927 changed files with 0 additions and 4594700 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
opt/psa/admin/conf/templates/default/domain/PCI_compliance.php
View File

@@ -1,7 +0,0 @@
<?php if ($VAR->server->webserver->apache->traceEnableCompliance): ?>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_METHOD} ^TRACE
RewriteRule .* - [F]
</IfModule>
<?php endif; ?>

380
opt/psa/admin/conf/templates/default/domain/domainVirtualHost.php
View File

@@ -1,380 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($OPT['ssl']): ?>
<IfModule mod_ssl.c>
<?php endif; ?>
<VirtualHost <?php echo $OPT['ipAddress']->escapedAddress ?>:<?php echo $OPT['ssl'] ? $VAR->server->webserver->httpsPort : $VAR->server->webserver->httpPort ?> <?php echo ($VAR->server->webserver->proxyActive && $OPT['ipAddress']->isIpV6()) ? "127.0.0.1:" . ($OPT['ssl'] ? $VAR->server->webserver->httpsPort : $VAR->server->webserver->httpPort) : ''; ?>>
ServerName "<?php echo $VAR->domain->asciiName ?>"
<?php if ($VAR->domain->isWildcard): ?>
ServerAlias "<?php echo $VAR->domain->wildcardName ?>"
<?php else: ?>
ServerAlias "www.<?php echo $VAR->domain->asciiName ?>"
<?php endif; ?>
<?php if ($VAR->server->webserver->listenLocalhost): ?>
<?php if ($VAR->domain->physicalHosting->hasIpV6()): ?>
ServerAlias "ipv6.<?php echo $VAR->domain->asciiName ?>"
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->hasIpV4()): ?>
ServerAlias "ipv4.<?php echo $VAR->domain->asciiName ?>"
<?php endif; ?>
<?php else: ?>
<?php if ($OPT['ipAddress']->isIpV6()): ?>
ServerAlias "ipv6.<?php echo $VAR->domain->asciiName ?>"
<?php elseif ($OPT['ipAddress']->isIpV4()): ?>
ServerAlias "ipv4.<?php echo $VAR->domain->asciiName ?>"
<?php endif; ?>
<?php endif; ?>
<?php foreach ($VAR->domain->webAliases AS $alias): ?>
ServerAlias "<?php echo $alias->asciiName ?>"
ServerAlias "www.<?php echo $alias->asciiName ?>"
<?php if ($VAR->server->webserver->listenLocalhost): ?>
<?php if ($VAR->domain->physicalHosting->hasIpV6()): ?>
ServerAlias "ipv6.<?php echo $alias->asciiName ?>"
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->hasIpV4()): ?>
ServerAlias "ipv4.<?php echo $alias->asciiName ?>"
<?php endif; ?>
<?php else: ?>
<?php if ($OPT['ipAddress']->isIpV6()): ?>
ServerAlias "ipv6.<?php echo $alias->asciiName ?>"
<?php elseif ($OPT['ipAddress']->isIpV4()): ?>
ServerAlias "ipv4.<?php echo $alias->asciiName ?>"
<?php endif; ?>
<?php endif; ?>
<?php endforeach; ?>
<?php if ($VAR->domain->previewDomainName): ?>
ServerAlias "<?php echo $VAR->domain->previewDomainName ?>"
<?php endif; ?>
<?php if ($VAR->server->webserver->listenLocalhost): ?>
<?php foreach ($VAR->domain->physicalHosting->ipAddresses as $ip): ?>
<?php if ($ip->defaultDomainId === $VAR->domain->id): ?>
ServerAlias "<?php echo $ip->defaultServerName ?>"
<?php endif; ?>
<?php endforeach; ?>
<?php endif; ?>
UseCanonicalName Off
<?php if (!$VAR->server->webserver->apache->pipelogEnabled): ?>
CustomLog <?php echo $VAR->domain->physicalHosting->logsDir ?>/<?php echo $OPT['ssl'] ? 'access_ssl_log' : 'access_log' ?> plesklog
<?php endif; ?>
ErrorLog "<?php echo $VAR->domain->physicalHosting->logsDir ?>/error_log"
<?php if ($VAR->domain->isMailAutodiscoveryEnabled): ?>
<?php echo $VAR->includeTemplate('domain/service/mailAutoConfig.php') ?>
<?php endif ?>
<?php if (!$OPT['ssl'] && $VAR->domain->physicalHosting->sslRedirect): ?>
<?php if (is_file($VAR->domain->physicalHosting->customConfigFile)): ?>
Include "<?php echo $VAR->domain->physicalHosting->customConfigFile ?>"
<?php endif; ?>
<?php echo $VAR->includeTemplate('domain/service/seoSafeRedirects.php', array('ssl' => true)); ?>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L,QSA]
</IfModule>
</VirtualHost>
<?php return; ?>
<?php endif; ?>
DocumentRoot "<?php echo $OPT['ssl'] ? $VAR->domain->physicalHosting->httpsDir : $VAR->domain->physicalHosting->httpDir ?>"
<IfModule mod_suexec.c>
SuexecUserGroup "<?php echo $VAR->domain->physicalHosting->login ?>" "<?php echo $VAR->server->webserver->clientGroup ?>"
</IfModule>
<?php echo $VAR->includeTemplate('domain/PCI_compliance.php') ?>
<IfModule mod_userdir.c>
<?php if (count($VAR->domain->physicalHosting->webusers)): ?>
<?php foreach (array_chunk($VAR->domain->physicalHosting->webusers, 50) AS $chunk): ?>
UserDir enabled <?php echo implode(" ", array_map(function($webuser) { return $webuser->login;}, $chunk)) ?>
<?php endforeach; ?>
<?php endif; ?>
UserDir "<?php echo $VAR->domain->physicalHosting->webUsersDir ?>/*"
</IfModule>
<?php if ($VAR->domain->physicalHosting->vhostId): ?>
<IfModule mod_sysenv.c>
SetSysEnv PP_VHOST_ID "<?php echo $VAR->domain->physicalHosting->vhostId ?>"
</IfModule>
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->cgi && !$VAR->domain->physicalHosting->rootApplication): ?>
ScriptAlias "/cgi-bin/" "<?php echo $VAR->domain->physicalHosting->cgiBinDir ?>/"
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->hasWebstat):?>
<?php if ($OPT['ssl'] || !$VAR->domain->physicalHosting->ssl): ?>
Alias "/plesk-stat" "<?php echo $VAR->domain->physicalHosting->statisticsDir ?>"
<Location /plesk-stat/>
Options +Indexes
</Location>
<Location /plesk-stat/logs/>
Require valid-user
</Location>
Alias /webstat <?php echo $VAR->domain->physicalHosting->statisticsDir ?>/webstat
Alias /webstat-ssl <?php echo $VAR->domain->physicalHosting->statisticsDir ?>/webstat-ssl
Alias /ftpstat <?php echo $VAR->domain->physicalHosting->statisticsDir ?>/ftpstat
Alias /anon_ftpstat <?php echo $VAR->domain->physicalHosting->statisticsDir ?>/anon_ftpstat
Alias /awstats-icon <?php echo $VAR->server->awstats->iconsDir ?>
<?php else: ?>
Redirect permanent /plesk-stat https://<?php echo $VAR->domain->urlName ?>/plesk-stat
Redirect permanent /webstat https://<?php echo $VAR->domain->urlName ?>/webstat
Redirect permanent /webstat-ssl https://<?php echo $VAR->domain->urlName ?>/webstat-ssl
Redirect permanent /ftpstat https://<?php echo $VAR->domain->urlName ?>/ftpstat
Redirect permanent /anon_ftpstat https://<?php echo $VAR->domain->urlName ?>/anon_ftpstat
Redirect permanent /awstats-icon https://<?php echo $VAR->domain->urlName ?>/awstats-icon
<?php endif; ?>
<?php endif; ?>
<?php if ($OPT['ssl']): ?>
<?php $sslCertificate = $VAR->server->sni && $VAR->domain->physicalHosting->sslCertificate ?
$VAR->domain->physicalHosting->sslCertificate :
$OPT['ipAddress']->sslCertificate; ?>
<?php if ($sslCertificate->ceFilePath): ?>
SSLEngine on
SSLVerifyClient none
SSLCertificateFile <?php echo $sslCertificate->ceFilePath ?>
<?php if ($sslCertificate->caFilePath): ?>
SSLCACertificateFile <?php echo $sslCertificate->caFilePath ?>
<?php endif; ?>
<?php endif; ?>
<?php else: ?>
<IfModule mod_ssl.c>
SSLEngine off
</IfModule>
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->php && $VAR->domain->physicalHosting->phpHandlerType == 'cgi'): ?>
SetEnv PP_CUSTOM_PHP_INI <?php echo $VAR->domain->physicalHosting->vhostSystemDir ?>/etc/php.ini
SetEnv PP_CUSTOM_PHP_CGI_INDEX <?php echo $VAR->domain->physicalHosting->phpHandlerId ?>
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->php && $VAR->domain->physicalHosting->phpHandlerType == 'fastcgi'): ?>
<IfModule mod_fcgid.c>
FcgidInitialEnv PP_CUSTOM_PHP_INI <?php echo $VAR->domain->physicalHosting->vhostSystemDir ?>/etc/php.ini
FcgidInitialEnv PP_CUSTOM_PHP_CGI_INDEX <?php echo $VAR->domain->physicalHosting->phpHandlerId ?>
FcgidMaxRequestLen 134217728
<?php if ($VAR->domain->physicalHosting->scriptTimeout): ?>
FcgidIOTimeout <?php echo $VAR->domain->physicalHosting->scriptTimeout; ?>
<?php endif; ?>
</IfModule>
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->scriptTimeout): ?>
TimeOut <?php echo $VAR->domain->physicalHosting->scriptTimeout; ?>
<?php endif; ?>
<Directory <?php echo $OPT['ssl'] ? $VAR->domain->physicalHosting->httpsDir : $VAR->domain->physicalHosting->httpDir ?>>
<?php
if ($VAR->domain->physicalHosting->perl) {
echo $VAR->includeTemplate('service/mod_perl.php');
}
if (
!$VAR->domain->physicalHosting->php ||
!in_array($VAR->domain->physicalHosting->phpHandlerType, array('cgi', 'fastcgi', 'fpm'))
) {
echo $VAR->includeTemplate('service/php.php', array(
'enabled' => $VAR->domain->physicalHosting->php,
'safe_mode' => $VAR->domain->physicalHosting->phpSafeMode,
'dir' => $OPT['ssl'] ? $VAR->domain->physicalHosting->httpsDir : $VAR->domain->physicalHosting->httpDir,
'settings' => $VAR->domain->physicalHosting->phpSettings,
));
}
if ($VAR->domain->physicalHosting->python) {
echo $VAR->includeTemplate('service/mod_python.php');
}
if ($VAR->domain->physicalHosting->fastcgi) {
echo $VAR->includeTemplate('service/mod_fastcgi.php');
}
if ($VAR->domain->physicalHosting->php && 'cgi' == $VAR->domain->physicalHosting->phpHandlerType) {
echo $VAR->includeTemplate('service/php_over_cgi.php');
}
if ($VAR->domain->physicalHosting->php && 'fastcgi' == $VAR->domain->physicalHosting->phpHandlerType) {
echo $VAR->includeTemplate('service/php_over_fastcgi.php');
}
if ($VAR->domain->physicalHosting->php && 'fpm' == $VAR->domain->physicalHosting->phpHandlerType) {
echo $VAR->includeTemplate('service/php_over_fpm.php');
}
?>
<?php if ($OPT['ssl']): ?>
SSLRequireSSL
<?php endif; ?>
Options <?php echo $VAR->domain->physicalHosting->ssi ? '+' : '-' ?>Includes <?php echo $VAR->domain->physicalHosting->cgi ? '+' : '-' ?>ExecCGI
</Directory>
<?php if ($VAR->domain->physicalHosting->webusersScriptingEnabled): ?>
<?php foreach ($VAR->domain->physicalHosting->webusers as $webuser): ?>
<Directory <?php echo $webuser->dir ?>>
Options <?php echo $VAR->domain->physicalHosting->ssi && $webuser->ssi ? '+' : '-' ?>Includes <?php echo $VAR->domain->physicalHosting->cgi && $webuser->cgi ? '+' : '-' ?>ExecCGI
<?php if ($VAR->domain->physicalHosting->cgi && $webuser->cgi): ?>
AddHandler cgi-script .cgi
<?php endif; ?>
<?php
if ($VAR->domain->physicalHosting->perl && $webuser->perl) {
echo $VAR->includeTemplate('service/mod_perl.php');
}
if (
!$VAR->domain->physicalHosting->php ||
!in_array($VAR->domain->physicalHosting->phpHandlerType, array('cgi', 'fastcgi', 'fpm'))
) {
echo $VAR->includeTemplate('service/php.php', array(
'enabled' => $VAR->domain->physicalHosting->php && $webuser->php,
'safe_mode' => $VAR->domain->physicalHosting->phpSafeMode,
'dir' => $webuser->dir,
'settings' => $webuser->phpSettings,
));
}
if ($VAR->domain->physicalHosting->php && $webuser->php && 'cgi' == $VAR->domain->physicalHosting->phpHandlerType) {
echo $VAR->includeTemplate('service/php_over_cgi.php');
}
if ($VAR->domain->physicalHosting->php && $webuser->php && 'fastcgi' == $VAR->domain->physicalHosting->phpHandlerType) {
echo $VAR->includeTemplate('service/php_over_fastcgi.php');
}
if ($VAR->domain->physicalHosting->php && $webuser->php && 'fpm' == $VAR->domain->physicalHosting->phpHandlerType) {
echo $VAR->includeTemplate('service/php_over_fpm.php');
}
if ($VAR->domain->physicalHosting->python && $webuser->python) {
echo $VAR->includeTemplate('service/mod_python.php');
}
if ($VAR->domain->physicalHosting->fastcgi && $webuser->fastcgi) {
echo $VAR->includeTemplate('service/mod_fastcgi.php');
}
?>
</Directory>
<?php endforeach; ?>
<?php else: ?>
<Directory <?php echo $VAR->domain->physicalHosting->webUsersDir ?>>
<?php echo $VAR->includeTemplate('service/php.php', array(
'enabled' => false,
'safe_mode' => true,
'dir' => $VAR->domain->physicalHosting->webUsersDir,
'settings' => $VAR->domain->physicalHosting->phpSettings,
)); ?>
</Directory>
<?php endif; ?>
<?php if (!$VAR->domain->physicalHosting->isMainDomain): ?>
<Directory <?php echo $VAR->domain->physicalHosting->vhostDir ?>>
Options +FollowSymLinks
</Directory>
<?php endif ?>
<?php
echo $VAR->includeTemplate('domain/service/protectedDirectories.php', $OPT) . "\n";
if ($VAR->domain->physicalHosting->errordocs) {
echo $VAR->includeTemplate('domain/service/errordocs.php') . "\n";
}
?>
<?php if (is_dir($OPT['ssl'] ? $VAR->domain->physicalHosting->siteAppsSslConfigDir : $VAR->domain->physicalHosting->siteAppsConfigDir)): ?>
<?php echo $VAR->server->webserver->includeOptionalConfig(($OPT['ssl'] ? $VAR->domain->physicalHosting->siteAppsSslConfigDir : $VAR->domain->physicalHosting->siteAppsConfigDir) . '/*.conf') ?>
<?php endif; ?>
<?php echo $VAR->domain->physicalHosting->apacheSettings ?>
<?php if ($VAR->domain->physicalHosting->directoryIndex): ?>
DirectoryIndex <?=$VAR->quote($VAR->domain->physicalHosting->directoryIndex)?>
<?php endif ?>
<?php echo $VAR->includeTemplate('domain/service/seoSafeRedirects.php', array('ssl' => $OPT['ssl'])); ?>
<?php if ($VAR->domain->suspended): ?>
<?php echo $VAR->includeTemplate('domain/service/suspend.php'); ?>
<?php endif; ?>
<?php if (is_file($OPT['ssl'] ? $VAR->domain->physicalHosting->customSslConfigFile : $VAR->domain->physicalHosting->customConfigFile)): ?>
Include "<?php echo $OPT['ssl'] ? $VAR->domain->physicalHosting->customSslConfigFile : $VAR->domain->physicalHosting->customConfigFile ?>"
<?php endif; ?>
<?php if ($VAR->domain->physicalHosting->apacheWebAppFirewallSettings): ?>
<IfModule mod_security2.c>
<?php echo $VAR->domain->physicalHosting->apacheWebAppFirewallSettings ?>
</IfModule>
<?php endif ?>
<Directory <?php echo $VAR->webspace->vhostDir ?>>
<?php if ($VAR->domain->physicalHosting->restrictFollowSymLinks): ?>
Options -FollowSymLinks
<?php endif ?>
<?php
$allowOverrideOptions = ['Indexes', 'SymLinksIfOwnerMatch', 'MultiViews'];
if (!$VAR->domain->physicalHosting->restrictFollowSymLinks) {
$allowOverrideOptions[] = 'FollowSymLinks';
}
if ($VAR->domain->physicalHosting->cgi || $VAR->server->webserver->apache->allowOverrideExecCGI) {
$allowOverrideOptions[] = 'ExecCGI';
}
if ($VAR->domain->physicalHosting->ssi || $VAR->server->webserver->apache->allowOverrideIncludes) {
$allowOverrideOptions[] = 'Includes';
$allowOverrideOptions[] = 'IncludesNOEXEC';
}
?>
AllowOverride AuthConfig FileInfo Indexes Limit Options=<?=implode(',', $allowOverrideOptions)?>
</Directory>
<?php if (!$VAR->server->webserver->proxyActive): ?>
<?php if ($VAR->domain->physicalHosting->expires): ?>
<IfModule mod_expires.c>
ExpiresActive On
ExpiresDefault "access plus <?=$VAR->escape($VAR->domain->physicalHosting->expires)?> seconds"
</IfModule>
<?php endif ?>
<IfModule mod_headers.c>
<?php foreach ((array)$VAR->domain->physicalHosting->headers as list($name, $value)): ?>
Header add <?=$VAR->quote([$name, $value])?>
<?php endforeach ?>
</IfModule>
<?php endif ?>
<?=$VAR->domain->physicalHosting->extensionsConfigs?>
</VirtualHost>
<?php if ($OPT['ssl']): ?>
</IfModule>
<?php endif ?>

79
opt/psa/admin/conf/templates/default/domain/frameForwarding.php
View File

@@ -1,79 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($OPT['ssl']): ?>
<IfModule mod_ssl.c>
<?php endif; ?>
<VirtualHost <?php echo $OPT['ipAddress']->escapedAddress?>:<?php echo $OPT['ssl'] ? $VAR->server->webserver->httpsPort : $VAR->server->webserver->httpPort ?> <?php echo ($VAR->server->webserver->proxyActive && $OPT['ipAddress']->address !== '127.0.0.1') ? "127.0.0.1:" . ($OPT['ssl'] ? $VAR->server->webserver->httpsPort : $VAR->server->webserver->httpPort) : ''; ?>>
ServerName "<?php echo $VAR->domain->asciiName ?>"
<?php if ($VAR->domain->isWildcard): ?>
ServerAlias "<?php echo $VAR->domain->wildcardName ?>"
<?php else: ?>
ServerAlias "www.<?php echo $VAR->domain->asciiName ?>"
<?php if ($OPT['ipAddress']->isIpV6()): ?>
ServerAlias "ipv6.<?php echo $VAR->domain->asciiName ?>"
<?php else: ?>
ServerAlias "ipv4.<?php echo $VAR->domain->asciiName ?>"
<?php endif; ?>
<?php endif; ?>
<?php foreach ($VAR->domain->webAliases as $alias): ?>
ServerAlias "<?php echo $alias->asciiName ?>"
ServerAlias "www.<?php echo $alias->asciiName ?>"
<?php if ($OPT['ipAddress']->isIpV6()): ?>
ServerAlias "ipv6.<?php echo $alias->asciiName ?>"
<?php else: ?>
ServerAlias "ipv4.<?php echo $alias->asciiName ?>"
<?php endif; ?>
<?php endforeach; ?>
<?php if ($VAR->server->webserver->listenLocalhost): ?>
<?php foreach ($VAR->domain->forwarding->ipAddresses as $ip): ?>
<?php if ($ip->defaultDomainId === $VAR->domain->id): ?>
ServerAlias "<?php echo $ip->defaultServerName ?>"
<?php endif; ?>
<?php endforeach; ?>
<?php endif; ?>
<?php if (!$OPT['ssl'] && $VAR->domain->forwarding->sslRedirect): ?>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L,QSA]
</IfModule>
</VirtualHost>
<?php return; ?>
<?php endif; ?>
<?php echo $VAR->includeTemplate('domain/PCI_compliance.php') ?>
DocumentRoot "<?php echo $VAR->domain->forwarding->vhostDir ?>/httpdocs"
<?php if ($OPT['ssl']): ?>
<?php $sslCertificate = $VAR->server->sni && $VAR->domain->forwarding->sslCertificate ?
$VAR->domain->forwarding->sslCertificate :
$OPT['ipAddress']->sslCertificate; ?>
<?php if ($sslCertificate->ceFilePath): ?>
SSLEngine on
SSLVerifyClient none
SSLCertificateFile <?php echo $sslCertificate->ceFilePath ?>
<?php if ($sslCertificate->caFilePath): ?>
SSLCACertificateFile <?php echo $sslCertificate->caFilePath ?>
<?php endif; ?>
<?php endif; ?>
<?php else: ?>
<IfModule mod_ssl.c>
SSLEngine off
</IfModule>
<?php endif; ?>
<?php echo $VAR->domain->forwarding->extensionsConfigs ?>
</VirtualHost>
<?php if ($OPT['ssl']): ?>
</IfModule>
<?php endif ?>

259
opt/psa/admin/conf/templates/default/domain/nginxDomainVirtualHost.php
View File

@@ -1,259 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($VAR->domain->isSeoRedirectToLanding || $VAR->domain->isSeoRedirectToWww || $VAR->domain->isAliasRedirected): ?>
server {
<?php if ($OPT['ssl'] && $OPT['http3']) : ?>
listen <?php echo $OPT['ipAddress']->escapedAddress . ':' . $OPT['frontendPort'] ?> quic;
add_header Alt-Svc <?php echo '\'h3=":' . $OPT['frontendPort'] . '"; ma=86400\'' ?>;
<?php endif; ?>
listen <?php echo $OPT['ipAddress']->escapedAddress . ':' . $OPT['frontendPort'] . ($OPT['ssl'] ? ' ssl' : '') ?>;
<?php if ($OPT['ssl'] && $OPT['http2']) : ?>
http2 on;
<?php endif; ?>
<?php if ($OPT['ssl']): ?>
<?php $sslCertificate = $VAR->server->sni && $VAR->domain->physicalHosting->sslCertificate ?
$VAR->domain->physicalHosting->sslCertificate :
$OPT['ipAddress']->sslCertificate; ?>
<?php if ($sslCertificate->ceFilePath): ?>
ssl_certificate <?php echo $sslCertificate->ceFilePath ?>;
ssl_certificate_key <?php echo $sslCertificate->ceFilePath ?>;
<?php endif ?>
<?php endif ?>
<?php if ($VAR->domain->isSeoRedirectToLanding) : ?>
server_name www.<?= $VAR->domain->asciiName; ?>;
<?php elseif ($VAR->domain->isSeoRedirectToWww): ?>
server_name <?= $VAR->domain->asciiName; ?>;
<?php endif; ?>
<?php if ($VAR->domain->isAliasRedirected): ?>
<?php foreach ($VAR->domain->webAliases AS $alias): ?>
<?php if ($alias->isSeoRedirect) : ?>
server_name <?= $alias->asciiName; ?>;
server_name www.<?= $alias->asciiName; ?>;
<?php endif; ?>
<?php endforeach; ?>
<?php endif; ?>
location / {
return 301 <?= ($OPT['ssl'] || $VAR->domain->physicalHosting->sslRedirect) ? 'https' : 'http'; ?>://<?php echo $VAR->domain->targetName; ?>$request_uri;
}
<?php if ($VAR->domain->isMailAutodiscoveryEnabled): ?>
<?php echo $VAR->includeTemplate('domain/service/nginxMailAutoConfig.php') ?>
<?php endif ?>
}
<?php endif; ?>
server {
<?php if ($OPT['ssl'] && $OPT['http3']) : ?>
listen <?php echo $OPT['ipAddress']->escapedAddress . ':' . $OPT['frontendPort'] . ' quic' ?>;
add_header Alt-Svc <?php echo '\'h3=":' . $OPT['frontendPort'] . '"; ma=86400\'' ?>;
<?php endif; ?>
listen <?php echo $OPT['ipAddress']->escapedAddress . ':' . $OPT['frontendPort'] .
($OPT['default'] ? ' default_server' : '') . ($OPT['ssl'] ? ' ssl' : '') ?>;
<?php if ($OPT['ssl'] && $OPT['http2']) : ?>
http2 on;
<?php endif; ?>
<?php if (!$VAR->domain->isSeoRedirectToWww): ?>
server_name <?php echo $VAR->domain->asciiName ?>;
<?php endif; ?>
<?php if ($VAR->domain->isWildcard): ?>
server_name ~^<?php echo $VAR->domain->pcreName ?>$;
<?php else: ?>
<?php if (!$VAR->domain->isSeoRedirectToLanding) : ?>
server_name www.<?php echo $VAR->domain->asciiName ?>;
<?php endif; ?>
<?php if ($OPT['ipAddress']->isIpV6()): ?>
server_name ipv6.<?php echo $VAR->domain->asciiName ?>;
<?php else: ?>
server_name ipv4.<?php echo $VAR->domain->asciiName ?>;
<?php endif ?>
<?php endif ?>
<?php if ($VAR->domain->webAliases): ?>
<?php foreach ($VAR->domain->webAliases as $alias): ?>
<?php if (!$alias->isSeoRedirect): ?>
server_name <?php echo $alias->asciiName ?>;
server_name www.<?php echo $alias->asciiName ?>;
<?php endif;?>
<?php endforeach ?>
<?php endif ?>
<?php if ($VAR->domain->previewDomainName): ?>
server_name "<?php echo $VAR->domain->previewDomainName ?>";
<?php endif ?>
<?php if ($OPT['ssl']): ?>
<?php $sslCertificate = $VAR->server->sni && $VAR->domain->physicalHosting->sslCertificate ?
$VAR->domain->physicalHosting->sslCertificate :
$OPT['ipAddress']->sslCertificate; ?>
<?php if ($sslCertificate->ceFilePath): ?>
ssl_certificate <?php echo $sslCertificate->ceFilePath ?>;
ssl_certificate_key <?php echo $sslCertificate->ceFilePath ?>;
<?php endif ?>
<?php endif ?>
<?php if ($VAR->domain->physicalHosting->nginxWebAppFirewallSettings) : ?>
modsecurity_rules_file "<?php echo $VAR->domain->physicalHosting->nginxWebAppFirewallSettingsFile ?>";
<?php endif ?>
<?php if (!$VAR->domain->physicalHosting->proxySettings['nginxProxyMode'] && $VAR->domain->suspended): ?>
location / {
return 503;
}
<?php if ($VAR->domain->physicalHosting->errordocs && !$VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
<?= $VAR->includeTemplate('domain/service/nginxErrordocs.php'); ?>
<?php endif ?>
}
<?php return ?>
<?php endif ?>
<?php if (!empty($VAR->domain->physicalHosting->proxySettings['nginxClientMaxBodySize'])): ?>
client_max_body_size <?php echo $VAR->domain->physicalHosting->proxySettings['nginxClientMaxBodySize'] ?>;
<?php endif ?>
<?php if ($VAR->domain->isMailAutodiscoveryEnabled): ?>
<?php echo $VAR->includeTemplate('domain/service/nginxMailAutoConfig.php') ?>
<?php endif ?>
access_log "<?php echo $VAR->domain->physicalHosting->logsDir . '/' . ($OPT['ssl'] ? 'proxy_access_ssl_log' : 'proxy_access_log') ?>";
error_log "<?php echo $VAR->domain->physicalHosting->logsDir . '/proxy_error_log' ?>";
<?php if (!$OPT['ssl'] && $VAR->domain->physicalHosting->sslRedirect): ?>
location / {
return 301 https://$host$request_uri;
}
}
<?php return ?>
<?php endif ?>
root "<?php echo $OPT['ssl'] ? $VAR->domain->physicalHosting->httpsDir : $VAR->domain->physicalHosting->httpDir ?>";
<?php if ($OPT['default']): ?>
<?php echo $VAR->includeTemplate('service/nginxSitePreview.php') ?>
<?php endif ?>
<?php echo $VAR->domain->physicalHosting->proxySettings['allowDeny'] ?>
<?=$VAR->includeTemplate('domain/service/nginxCache.php', $OPT)?>
<?php echo $VAR->domain->physicalHosting->nginxExtensionsConfigs ?>
<?php if ($VAR->domain->physicalHosting->errordocs && (!$VAR->domain->physicalHosting->proxySettings['nginxProxyMode'] || ($VAR->domain->active && $VAR->domain->physicalHosting->php && $VAR->domain->physicalHosting->proxySettings['nginxServePhp']))): ?>
<?= $VAR->includeTemplate('domain/service/nginxErrordocs.php'); ?>
<?php endif; ?>
<?php if (!$VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
location ~ /\.ht {
deny all;
}
<?php endif ?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
location / {
<?php if ($VAR->domain->physicalHosting->scriptTimeout): ?>
proxy_read_timeout <?php echo min($VAR->domain->physicalHosting->scriptTimeout, 2147483) ?>;
<?php endif ?>
<?php echo $VAR->includeTemplate('domain/service/proxy.php', $OPT) ?>
}
<?php if (!$VAR->domain->physicalHosting->proxySettings['nginxTransparentMode'] && !$VAR->domain->physicalHosting->proxySettings['nginxServeStatic']): ?>
location ^~ /internal-nginx-static-location/ {
alias <?php echo $OPT['documentRoot'] ?>/;
internal;
<?php if ($VAR->domain->physicalHosting->expires && $VAR->domain->physicalHosting->expiresStaticOnly): ?>
expires <?=$VAR->quote($VAR->domain->physicalHosting->expires)?>;
<?php endif ?>
}
<?php endif ?>
<?php endif ?>
<?php if ($VAR->domain->active && $VAR->domain->physicalHosting->hasWebstat): ?>
<?php echo $VAR->includeTemplate('domain/service/nginxWebstatDirectories.php', $OPT) ?>
<?php endif ?>
<?php if ($VAR->domain->active): ?>
<?php if (!$VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
<?php echo $VAR->includeTemplate('domain/service/nginxProtectedDirectories.php', $OPT) ?>
<?php else: ?>
<?php echo $VAR->includeTemplate('domain/service/nginxProtectedDirectoriesProxy.php', $OPT) ?>
<?php endif ?>
<?php endif ?>
<?php if ($VAR->domain->active && $VAR->domain->physicalHosting->proxySettings['nginxServeStatic']): ?>
location @fallback {
<?php if ($VAR->domain->physicalHosting->scriptTimeout): ?>
proxy_read_timeout <?php echo min($VAR->domain->physicalHosting->scriptTimeout, 2147483) ?>;
<?php endif ?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
<?php echo $VAR->includeTemplate('domain/service/proxy.php', $OPT) ?>
<?php else: ?>
return 404;
<?php endif ?>
}
location ~ ^/(.*\.(<?php echo $VAR->domain->physicalHosting->proxySettings['nginxStaticExtensions'] ?>))$ {
try_files $uri @fallback;
<?php if ($VAR->domain->physicalHosting->expires && $VAR->domain->physicalHosting->expiresStaticOnly): ?>
expires <?=$VAR->quote($VAR->domain->physicalHosting->expires)?>;
<?php endif ?>
}
<?php endif ?>
<?php if ($VAR->domain->active && $VAR->domain->physicalHosting->php && $VAR->domain->physicalHosting->proxySettings['nginxServePhp']): ?>
location ~ ^/~(.+?)(/.*?\.php)(/.*)?$ {
<?php if ($VAR->domain->physicalHosting->scriptTimeout): ?>
fastcgi_read_timeout <?php echo min($VAR->domain->physicalHosting->scriptTimeout, 2147483) ?>;
<?php endif ?>
alias <?php echo $VAR->domain->physicalHosting->webUsersDir ?>/$1/$2;
<?php echo $VAR->includeTemplate('domain/service/fpm.php', $OPT) ?>
}
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
location ~ ^/~(.+?)(/.*)?$ {
<?php if ($VAR->domain->physicalHosting->scriptTimeout): ?>
proxy_read_timeout <?php echo min($VAR->domain->physicalHosting->scriptTimeout, 2147483) ?>;
<?php endif ?>
<?php echo $VAR->includeTemplate('domain/service/proxy.php', $OPT) ?>
}
<?php endif ?>
location ~ \.php(/.*)?$ {
<?php if ($VAR->domain->physicalHosting->scriptTimeout): ?>
fastcgi_read_timeout <?php echo min($VAR->domain->physicalHosting->scriptTimeout, 2147483) ?>;
<?php endif ?>
<?php echo $VAR->includeTemplate('domain/service/fpm.php', $OPT) ?>
}
<?php if ($VAR->domain->physicalHosting->directoryIndex && !$VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
index <?=$VAR->quote($VAR->domain->physicalHosting->directoryIndex)?>;
<?php endif ?>
<?php endif ?>
<?php if ($VAR->domain->physicalHosting->restrictFollowSymLinks && $VAR->server->nginx->safeSymlinks): ?>
disable_symlinks if_not_owner "from=<?=$VAR->escape($VAR->domain->physicalHosting->vhostDir)?>";
<?php elseif ($VAR->domain->physicalHosting->restrictFollowSymLinks): ?>
disable_symlinks if_not_owner from=$document_root;
<?php endif ?>
<?php if ($VAR->domain->physicalHosting->expires && !$VAR->domain->physicalHosting->expiresStaticOnly): ?>
expires <?=$VAR->quote($VAR->domain->physicalHosting->expires)?>;
<?php endif ?>
<?php foreach ((array)$VAR->domain->physicalHosting->headers as list($name, $value)): ?>
add_header <?=$VAR->quote([$name, $value])?>;
<?php endforeach ?>
<?php if ($VAR->server->xPoweredByHeader) : ?>
add_header X-Powered-By PleskLin;
<?php endif ?>
<?php if (is_file($VAR->domain->physicalHosting->customNginxConfigFile)) : ?>
include "<?php echo $VAR->domain->physicalHosting->customNginxConfigFile ?>";
<?php endif ?>
}

94
opt/psa/admin/conf/templates/default/domain/nginxForwarding.php
View File

@@ -1,94 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
server {
<?php if ($OPT['ssl'] && $OPT['http3']) : ?>
listen <?php echo $OPT['ipAddress']->escapedAddress . ':' . $OPT['frontendPort'] ?> quic;
add_header Alt-Svc <?php echo '\'h3=":' . $OPT['frontendPort'] . '"; ma=86400\'' ?>;
<?php endif; ?>
listen <?php echo $OPT['ipAddress']->escapedAddress . ':' . $OPT['frontendPort'] .
($OPT['default'] ? ' default_server' : '') . ($OPT['ssl'] ? ' ssl' : '') ?>;
<?php if ($OPT['ssl'] && $OPT['http2']) : ?>
http2 on;
<?php endif; ?>
server_name <?php echo $VAR->domain->asciiName ?>;
<?php if ($VAR->domain->isWildcard): ?>
server_name <?php echo $VAR->domain->wildcardName ?>;
<?php else: ?>
server_name www.<?php echo $VAR->domain->asciiName ?>;
<?php endif ?>
<?php if (!$VAR->domain->isWildcard): ?>
<?php if ($OPT['ipAddress']->isIpV6()): ?>
server_name ipv6.<?php echo $VAR->domain->asciiName ?>;
<?php else: ?>
server_name ipv4.<?php echo $VAR->domain->asciiName ?>;
<?php endif ?>
<?php endif ?>
<?php foreach ($VAR->domain->webAliases as $alias): ?>
server_name <?php echo $alias->asciiName ?>;
server_name www.<?php echo $alias->asciiName ?>;
<?php if ($OPT['ipAddress']->isIpV6()): ?>
server_name ipv6.<?php echo $alias->asciiName ?>;
<?php else: ?>
server_name ipv4.<?php echo $alias->asciiName ?>;
<?php endif ?>
<?php endforeach ?>
<?php if ($OPT['ssl']): ?>
<?php $sslCertificate = $VAR->server->sni && $VAR->domain->forwarding->sslCertificate ?
$VAR->domain->forwarding->sslCertificate :
$OPT['ipAddress']->sslCertificate; ?>
<?php if ($sslCertificate->ceFilePath): ?>
ssl_certificate <?php echo $sslCertificate->ceFilePath ?>;
ssl_certificate_key <?php echo $sslCertificate->ceFilePath ?>;
<?php endif ?>
<?php endif ?>
<?php if (!$OPT['ssl'] && $VAR->domain->forwarding->sslRedirect): ?>
location / {
return 301 https://$host$request_uri;
}
}
<?php return ?>
<?php endif ?>
<?php if ($OPT['default']): ?>
<?php echo $VAR->includeTemplate('service/nginxSitePreview.php') ?>
<?php endif ?>
<?php echo $VAR->domain->forwarding->nginxExtensionsConfigs ?>
location / {
<?php if ($OPT['ssl']): ?>
proxy_pass https://127.0.0.1:<?php echo $OPT['backendPort'] ?>;
proxy_hide_header upgrade;
proxy_ssl_server_name on;
<?php if ($VAR->server->webserver->listenLocalhost && ($OPT['default'] ?? false)): ?>
proxy_ssl_name $ip_default_host;
<?php else: ?>
proxy_ssl_name $host;
<?php endif ?>
proxy_ssl_session_reuse off;
<?php else: ?>
proxy_pass http://127.0.0.1:<?php echo $OPT['backendPort'] ?>;
<?php endif ?>
<?php if ($VAR->server->webserver->listenLocalhost && ($OPT['default'] ?? false)): ?>
proxy_set_header Host $ip_default_host;
<?php else: ?>
proxy_set_header Host $host;
<?php endif ?>
proxy_set_header X-Forwarded-Http-Host $host:$server_port;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
access_log off;
}
<?php if ($VAR->server->xPoweredByHeader) : ?>
add_header X-Powered-By PleskLin;
<?php endif ?>
}

12
opt/psa/admin/conf/templates/default/domain/service/errordocs.php
View File

@@ -1,12 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
Alias /error_docs <?php echo $VAR->webspace->vhostDir . '/' . $VAR->domain->physicalHosting->errorDocsDir ?>
<?php foreach ($VAR->domain->physicalHosting->errorDocsByCodes as $errCode => $errFile): ?>
ErrorDocument <?php echo $errCode?> /<?php echo $VAR->domain->physicalHosting->errorDocsDir . '/' . $errFile ?>
<?php endforeach; ?>

18
opt/psa/admin/conf/templates/default/domain/service/fpm.php
View File

@@ -1,18 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
fastcgi_split_path_info ^((?U).+\.php)(/?.+)$;
try_files $uri $fastcgi_script_name =404;
fastcgi_param PATH_INFO $fastcgi_path_info;
fastcgi_pass "<?php echo $VAR->domain->physicalHosting->fpmSocket ?>";
include /etc/nginx/fastcgi.conf;
<?php if (($OPT['ssl'] ?? false) && ($OPT['http3'] ?? false)): ?>
fastcgi_param HTTP_HOST $host;
<?php endif ?>
<?php if ($OPT['nginxCacheEnabled'] ?? true): ?>
<?=$VAR->includeTemplate('domain/service/nginxCacheFastCgi.php', $OPT)?>
<?php endif ?>

21
opt/psa/admin/conf/templates/default/domain/service/mailAutoConfig.php
View File

@@ -1,21 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
# mailconfig
<IfModule mod_proxy_http.c>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} ^/autodiscover/autodiscover\.xml$ [NC,OR]
RewriteCond %{REQUEST_URI} ^(/\.well-known/autoconfig)?/mail/config\-v1\.1\.xml$ [NC,OR]
RewriteCond %{REQUEST_URI} ^/email\.mobileconfig$ [NC]
RewriteRule ^(.*)$ <?= $VAR->panel->mailAutoConfigUrl ?>/mailconfig/ [P,QSA,L,E=REQUEST_URI:%{REQUEST_URI},E=HOST:%{HTTP_HOST}]
</IfModule>
<Proxy "<?= $VAR->panel->mailAutoConfigUrl ?>/mailconfig/">
RequestHeader set X-Host "%{HOST}e"
RequestHeader set X-Request-URI "%{REQUEST_URI}e"
</Proxy>
</IfModule>
# mailconfig

27
opt/psa/admin/conf/templates/default/domain/service/nginxCache.php
View File

@@ -1,27 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxCacheEnabled']): ?>
add_header X-Cache-Status $upstream_cache_status;
set $no_cache "";
<?php if (!empty($VAR->domain->physicalHosting->proxySettings['nginxCacheBypassLocations'])): ?>
if ($request_uri ~* <?=$VAR->pregQuote($VAR->domain->physicalHosting->proxySettings['nginxCacheBypassLocations'])?>) {
set $no_cache 1;
}
<?php endif ?>
set $cache_cookie $http_cookie;
<?php foreach ($VAR->domain->physicalHosting->proxySettings['nginxCacheCookies'] as $cookie): ?>
if ($cache_cookie ~ "(.*)(?:^|;)\s*<?=preg_quote($cookie)?>=[^;]+(?:$|;)(.*)") {
set $cache_cookie $1$2;
}
<?php endforeach ?>
if ($cache_cookie !~ "^\s*$") {
set $no_cache 1;
}
<?php endif ?>

33
opt/psa/admin/conf/templates/default/domain/service/nginxCacheFastCgi.php
View File

@@ -1,33 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxCacheEnabled']): ?>
fastcgi_cache_key <?=$VAR->quote($VAR->domain->physicalHosting->proxySettings['nginxCacheKey'])?>;
fastcgi_no_cache <?=join(' ', array_filter([
'$no_cache',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderNocache'] ? '$http_pragma' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderAuth'] ? '$http_authorization' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassGetNocache'] ? '$arg_nocache' : '',
]))?>;
fastcgi_cache_bypass <?=join(' ', array_filter([
'$no_cache',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderNocache'] ? '$http_pragma' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderAuth'] ? '$http_authorization' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassGetNocache'] ? '$arg_nocache' : '',
]))?>;
fastcgi_cache <?="{$VAR->domain->asciiName}_fastcgi"?>;
fastcgi_cache_valid <?=$VAR->quote($VAR->domain->physicalHosting->proxySettings['nginxCacheTimeout'])?>;
fastcgi_cache_use_stale <?=join(' ', array_merge(
$VAR->domain->physicalHosting->proxySettings['nginxCacheUseStale5xx'] ? ['http_500', 'http_503'] : [],
$VAR->domain->physicalHosting->proxySettings['nginxCacheUseStale4xx'] ? ['http_403', 'http_404'] : [],
$VAR->domain->physicalHosting->proxySettings['nginxCacheUseStaleUpdating'] ? ['updating'] : []
) ?: ['off'])?>;
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxCacheUseStaleUpdating']): ?>
fastcgi_cache_background_update on;
<?php endif ?>
<?php endif ?>

25
opt/psa/admin/conf/templates/default/domain/service/nginxCachePath.php
View File

@@ -1,25 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxCacheEnabled']): ?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
proxy_cache_path <?=(
"{$VAR->domain->physicalHosting->proxySettings['nginxCacheDir']}/{$VAR->domain->asciiName}_proxy" .
" levels=1:2" .
" keys_zone={$VAR->domain->asciiName}_proxy:5m" .
" max_size=" . $VAR->domain->physicalHosting->proxySettings['nginxCacheSize']
)?>;
<?php endif ?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxServePhp']): ?>
fastcgi_cache_path <?=(
"{$VAR->domain->physicalHosting->proxySettings['nginxCacheDir']}/{$VAR->domain->asciiName}_fastcgi" .
" levels=1:2" .
" keys_zone={$VAR->domain->asciiName}_fastcgi:5m" .
" max_size=" . $VAR->domain->physicalHosting->proxySettings['nginxCacheSize']
)?>;
<?php endif ?>
<?php endif ?>

33
opt/psa/admin/conf/templates/default/domain/service/nginxCacheProxy.php
View File

@@ -1,33 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxCacheEnabled']): ?>
proxy_cache_key <?=$VAR->quote($VAR->domain->physicalHosting->proxySettings['nginxCacheKey'])?>;
proxy_no_cache <?=join(' ', array_filter([
'$no_cache',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderNocache'] ? '$http_pragma' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderAuth'] ? '$http_authorization' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassGetNocache'] ? '$arg_nocache' : '',
]))?>;
proxy_cache_bypass <?=join(' ', array_filter([
'$no_cache',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderNocache'] ? '$http_pragma' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassHeaderAuth'] ? '$http_authorization' : '',
$VAR->domain->physicalHosting->proxySettings['nginxCacheBypassGetNocache'] ? '$arg_nocache' : '',
]))?>;
proxy_cache <?="{$VAR->domain->asciiName}_proxy"?>;
proxy_cache_valid <?=$VAR->quote($VAR->domain->physicalHosting->proxySettings['nginxCacheTimeout'])?>;
proxy_cache_use_stale <?=join(' ', array_merge(
$VAR->domain->physicalHosting->proxySettings['nginxCacheUseStale5xx'] ? ['http_500', 'http_502', 'http_503', 'http_504'] : [],
$VAR->domain->physicalHosting->proxySettings['nginxCacheUseStale4xx'] ? ['http_403', 'http_404'] : [],
$VAR->domain->physicalHosting->proxySettings['nginxCacheUseStaleUpdating'] ? ['updating'] : []
) ?: ['off'])?>;
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxCacheUseStaleUpdating']): ?>
proxy_cache_background_update on;
<?php endif ?>
<?php endif ?>

13
opt/psa/admin/conf/templates/default/domain/service/nginxErrordocs.php
View File

@@ -1,13 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php foreach ($VAR->domain->physicalHosting->errorDocsByCodes as $errCode => $errFile): ?>
error_page <?= $errCode; ?> <?= $VAR->quote('/' . $VAR->domain->physicalHosting->errorDocsDir . '/' . $errFile); ?>;
<?php endforeach; ?>
location ^~ /<?= $VAR->domain->physicalHosting->errorDocsDir; ?> {
root <?= $VAR->quote($VAR->domain->physicalHosting->vhostDir); ?>;
}

26
opt/psa/admin/conf/templates/default/domain/service/nginxMailAutoConfig.php
View File

@@ -1,26 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
# mailconfig
location ~* ^/autodiscover/autodiscover\.xml$ {
try_files $uri @mad;
}
location ~* ^(/\.well-known/autoconfig)?/mail/config\-v1\.1\.xml$ {
try_files $uri @mad;
}
location ~* ^/email\.mobileconfig$ {
try_files $uri @mad;
}
location @mad {
rewrite ^(.*)$ /mailconfig/ break;
proxy_pass <?= $VAR->panel->mailAutoConfigUrl ?>;
proxy_set_header X-Host $host;
proxy_set_header X-Request-URI $request_uri;
}
# mailconfig

30
opt/psa/admin/conf/templates/default/domain/service/nginxProtectedDirectories.php
View File

@@ -1,30 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php foreach(($OPT['ssl'] ? $VAR->domain->protectedDirectories->sslDirectories : $VAR->domain->protectedDirectories->nonSslDirectories) as $directory): ?>
<?php if ('plesk-stat' == $directory['relativePath']): ?>
<?php continue ?>
<?php endif ?>
<?php $dir = trim($directory['relativePath'], '/') ?>
location ~ <?=strlen($dir) > 0 ? $VAR->encodeDirective("^/" . $VAR->pregQuote($dir) . "($|/)") : "^/"?> {
auth_basic "<?php echo strlen($directory['realm']) > 0 ? $directory['realm'] : ' ' ?>";
auth_basic_user_file "<?php echo $directory['authFile'] ?>";
<?php if ($VAR->domain->physicalHosting->php && $VAR->domain->physicalHosting->proxySettings['nginxServePhp']): ?>
location ~ \.php(/.*)?$ {
<?php echo $VAR->includeTemplate('domain/service/fpm.php', $OPT) ?>
}
<?php if ($VAR->domain->physicalHosting->directoryIndex): ?>
location ~ /$ {
index <?=$VAR->quote($VAR->domain->physicalHosting->directoryIndex)?>;
}
<?php endif ?>
<?php endif ?>
}
<?php endforeach ?>

26
opt/psa/admin/conf/templates/default/domain/service/nginxProtectedDirectoriesProxy.php
View File

@@ -1,26 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php foreach (($OPT['ssl'] ? $VAR->domain->protectedDirectories->sslDirectories : $VAR->domain->protectedDirectories->nonSslDirectories) as $directory) : ?>
<?php if ('plesk-stat' == $directory['relativePath']) : ?>
<?php continue ?>
<?php endif ?>
<?php $dir = trim($directory['relativePath'], '/') ?>
location ~ <?=strlen($dir) > 0 ? $VAR->encodeDirective("^/" . $VAR->pregQuote($dir) . "($|/)") : "^/"?> {
auth_basic "<?php echo strlen($directory['realm']) > 0 ? $directory['realm'] : ' ' ?>";
auth_basic_user_file "<?php echo $directory['authFile'] ?>";
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxServeStatic']) : ?>
location ~ ^/(.*\.(<?php echo $VAR->domain->physicalHosting->proxySettings['nginxStaticExtensions'] ?>))$ {
try_files $uri @fallback;
<?php if ($VAR->domain->physicalHosting->expires && $VAR->domain->physicalHosting->expiresStaticOnly) : ?>
expires <?=$VAR->quote($VAR->domain->physicalHosting->expires)?>;
<?php endif ?>
}
<?php endif ?>
<?php echo $VAR->includeTemplate('domain/service/proxy.php', $OPT); ?>
}
<?php endforeach ?>

27
opt/psa/admin/conf/templates/default/domain/service/nginxSeoSafeRedirects.php
View File

@@ -1,27 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($VAR->domain->isSeoRedirectToLanding) : ?>
if ($host ~* ^www\.<?php echo str_replace('.', '\\.', $VAR->domain->asciiName) ?>$) {
rewrite ^(.*)$ <?php echo $OPT['ssl'] ? 'https' : 'http'; ?>://<?php echo $VAR->domain->asciiName ?>$1 permanent;
}
<?php elseif ($VAR->domain->isSeoRedirectToWww): ?>
if ($host ~* ^<?php echo str_replace('.', '\\.', $VAR->domain->asciiName) ?>$) {
rewrite ^(.*)$ <?php echo $OPT['ssl'] ? 'https' : 'http'; ?>://www.<?php echo $VAR->domain->asciiName ?>$1 permanent;
}
<?php endif; ?>
<?php if ($VAR->domain->isAliasRedirected): ?>
<?php foreach ($VAR->domain->webAliases AS $alias): ?>
<?php if ($alias->isSeoRedirect) : ?>
if ($host ~* ^<?php echo str_replace('.', '\\.', $alias->asciiName) ?>$) {
rewrite ^(.*)$ <?php echo $OPT['ssl'] ? 'https' : 'http'; ?>://<?php echo $VAR->domain->targetName; ?>$1 permanent;
}
if ($host ~* ^www\.<?php echo str_replace('.', '\\.', $alias->asciiName) ?>$) {
rewrite ^(.*)$ <?php echo $OPT['ssl'] ? 'https' : 'http'; ?>://<?php echo $VAR->domain->targetName; ?>$1 permanent;
}
<?php endif; ?>
<?php endforeach; ?>
<?php endif; ?>

39
opt/psa/admin/conf/templates/default/domain/service/nginxWebstatDirectories.php
View File

@@ -1,39 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
location ~ ^/(plesk-stat|awstats-icon|webstat|webstat-ssl|ftpstat|anon_ftpstat) {
<?php if ($VAR->domain->physicalHosting->proxySettings['nginxProxyMode']): ?>
<?=$VAR->includeTemplate('domain/service/proxy.php', $OPT + ['nginxCacheEnabled' => false])?>
<?php else: ?>
<?php if ($OPT['ssl']): ?>
<?php
$directories = array_filter($VAR->domain->protectedDirectories->sslDirectories, function($directory) {
return 'plesk-stat' == $directory['relativePath'];
});
$directory = reset($directories);
?>
<?php if ($directory): ?>
auth_basic "<?php echo strlen($directory['realm']) > 0 ? $directory['realm'] : ' ' ?>";
auth_basic_user_file "<?php echo $directory['authFile'] ?>";
<?php endif ?>
autoindex on;
location ~ ^/plesk-stat(.*) {
alias <?php echo $VAR->domain->physicalHosting->statisticsDir ?>/$1;
}
location ~ ^/awstats-icon(.*) {
alias <?php echo $VAR->server->awstats->iconsDir ?>/$1;
}
location ~ ^/(.*) {
alias <?php echo $VAR->domain->physicalHosting->statisticsDir ?>/$1;
}
<?php else: ?>
return 301 https://$host$request_uri;
<?php endif ?>
<?php endif ?>
}

8
opt/psa/admin/conf/templates/default/domain/service/protectedDirectories.php
View File

@@ -1,8 +0,0 @@
<?php foreach(($OPT['ssl'] ? $VAR->domain->protectedDirectories->sslDirectories : $VAR->domain->protectedDirectories->nonSslDirectories) as $directory): ?>
<Directory "<?php echo $directory['directory'] ?>">
AuthType Basic
AuthName "<?php echo 0 < strlen($directory['realm']) ? $directory['realm'] : ' '?>"
AuthUserFile "<?php echo $directory['authFile'] ?>"
require valid-user
</Directory>
<?php endforeach; ?>

34
opt/psa/admin/conf/templates/default/domain/service/proxy.php
View File

@@ -1,34 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($OPT['ssl']): ?>
proxy_pass https://<?php echo $OPT['ipAddress']->proxyEscapedAddress . ':' . $OPT['backendPort'] ?>;
proxy_hide_header upgrade;
proxy_ssl_server_name on;
<?php if ($VAR->server->webserver->listenLocalhost && ($OPT['default'] ?? false)): ?>
proxy_ssl_name $ip_default_host;
<?php else: ?>
proxy_ssl_name $host;
<?php endif ?>
proxy_ssl_session_reuse off;
<?php else: ?>
proxy_pass http://<?php echo $OPT['ipAddress']->proxyEscapedAddress . ':' . $OPT['backendPort'] ?>;
<?php endif ?>
<?php if ($VAR->server->webserver->listenLocalhost && ($OPT['default'] ?? false)): ?>
proxy_set_header Host $ip_default_host;
<?php else: ?>
proxy_set_header Host $host;
<?php endif ?>
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
<?php if (!$VAR->domain->physicalHosting->proxySettings['nginxTransparentMode'] && !$VAR->domain->physicalHosting->proxySettings['nginxServeStatic']): ?>
proxy_set_header X-Accel-Internal /internal-nginx-static-location;
<?php endif ?>
access_log off;
<?php if ($OPT['nginxCacheEnabled'] ?? true): ?>
<?=$VAR->includeTemplate('domain/service/nginxCacheProxy.php', $OPT)?>
<?php endif ?>

31
opt/psa/admin/conf/templates/default/domain/service/seoSafeRedirects.php
View File

@@ -1,31 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($VAR->domain->isSeoRedirectToLanding) : ?>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTP_HOST} ^www\.<?php echo str_replace('.', '\\.', $VAR->domain->asciiName) ?>$ [NC]
RewriteRule ^(.*)$ <?php echo $OPT['ssl'] ? 'https' : 'http'; ?>://<?php echo $VAR->domain->asciiName ?>$1 [L,R=301]
</IfModule>
<?php elseif ($VAR->domain->isSeoRedirectToWww): ?>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTP_HOST} ^<?php echo str_replace('.', '\\.', $VAR->domain->asciiName) ?>$ [NC]
RewriteRule ^(.*)$ <?php echo $OPT['ssl'] ? 'https' : 'http'; ?>://www.<?php echo $VAR->domain->asciiName ?>$1 [L,R=301]
</IfModule>
<?php endif; ?>
<?php if ($VAR->domain->isAliasRedirected): ?>
<IfModule mod_rewrite.c>
RewriteEngine On
<?php foreach ($VAR->domain->webAliases AS $alias): ?>
<?php if ($alias->isSeoRedirect) : ?>
RewriteCond %{HTTP_HOST} ^<?php echo str_replace('.', '\\.', $alias->asciiName) ?>$ [NC,OR]
RewriteCond %{HTTP_HOST} ^www\.<?php echo str_replace('.', '\\.', $alias->asciiName) ?>$ [NC]
RewriteRule ^(.*)$ <?php echo $OPT['ssl'] ? 'https' : 'http'; ?>://<?php echo $VAR->domain->targetName; ?>$1 [L,R=301]
<?php endif; ?>
<?php endforeach; ?>
</IfModule>
<?php endif; ?>

7
opt/psa/admin/conf/templates/default/domain/service/suspend.php
View File

@@ -1,7 +0,0 @@
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteCond %{ENV:REDIRECT_STATUS} !=503
RewriteCond %{REQUEST_URI} !\.(jpe?g?|png|gif|ico|svg|css)$ [NC]
RewriteCond %{REQUEST_URI} !robots\.txt$ [NC]
RewriteRule ^ - [L,R=503]
</IfModule>

73
opt/psa/admin/conf/templates/default/domain/standardForwarding.php
View File

@@ -1,73 +0,0 @@
<?php
/**
* @var Template_VariableAccessor $VAR
* @var array $OPT
*/
?>
<?php if ($OPT['ssl']): ?>
<IfModule mod_ssl.c>
<?php endif; ?>
<VirtualHost <?php echo $OPT['ipAddress']->escapedAddress?>:<?php echo $OPT['ssl'] ? $VAR->server->webserver->httpsPort : $VAR->server->webserver->httpPort ?> <?php echo ($VAR->server->webserver->proxyActive && $OPT['ipAddress']->address !== '127.0.0.1') ? "127.0.0.1:" . ($OPT['ssl'] ? $VAR->server->webserver->httpsPort : $VAR->server->webserver->httpPort) : ''; ?>>
ServerName "<?php echo $VAR->domain->asciiName ?>"
<?php if ($VAR->domain->isWildcard): ?>
ServerAlias "<?php echo $VAR->domain->wildcardName ?>"
<?php else: ?>
ServerAlias "www.<?php echo $VAR->domain->asciiName ?>"
<?php if ($OPT['ipAddress']->isIpV6()): ?>
ServerAlias "ipv6.<?php echo $VAR->domain->asciiName ?>"
<?php else: ?>
ServerAlias "ipv4.<?php echo $VAR->domain->asciiName ?>"
<?php endif; ?>
<?php endif; ?>
<?php foreach ($VAR->domain->webAliases as $alias): ?>
ServerAlias "<?php echo $alias->asciiName ?>"
ServerAlias "www.<?php echo $alias->asciiName ?>"
<?php if ($OPT['ipAddress']->isIpV6()): ?>
ServerAlias "ipv6.<?php echo $alias->asciiName ?>"
<?php else: ?>
ServerAlias "ipv4.<?php echo $alias->asciiName ?>"
<?php endif; ?>
<?php endforeach; ?>
<?php if ($VAR->server->webserver->listenLocalhost): ?>
<?php foreach ($VAR->domain->forwarding->ipAddresses as $ip): ?>
<?php if ($ip->defaultDomainId === $VAR->domain->id): ?>
ServerAlias "<?php echo $ip->defaultServerName ?>"
<?php endif; ?>
<?php endforeach; ?>
<?php endif; ?>
<?php echo $VAR->includeTemplate('domain/PCI_compliance.php') ?>
<?php if ($OPT['ssl']): ?>
<?php $sslCertificate = $VAR->server->sni && $VAR->domain->forwarding->sslCertificate ?
$VAR->domain->forwarding->sslCertificate :
$OPT['ipAddress']->sslCertificate; ?>
<?php if ($sslCertificate->ceFilePath): ?>
SSLEngine on
SSLVerifyClient none
SSLCertificateFile <?php echo $sslCertificate->ceFilePath ?>
<?php if ($sslCertificate->caFilePath): ?>
SSLCACertificateFile <?php echo $sslCertificate->caFilePath ?>
<?php endif; ?>
<?php endif; ?>
<?php else: ?>
<IfModule mod_ssl.c>
SSLEngine off
</IfModule>
<?php endif; ?>
<?php if (302 == $VAR->domain->forwarding->redirectHttpCode): ?>
RedirectTemp / "<?php echo $VAR->domain->forwarding->redirectUrl ?>"
<?php else: ?>
RedirectPermanent / "<?php echo $VAR->domain->forwarding->redirectUrl ?>"
<?php endif; ?>
<?php echo $VAR->domain->forwarding->extensionsConfigs ?>
</VirtualHost>
<?php if ($OPT['ssl']): ?>
</IfModule>
<?php endif ?>