Merge pull request #57 from SEJeff/nginx-proxy-updates

Nginx proxy config cleanup

Author: Jeff Schroeder

doc/nginx-configs/blockdaemon-virt-server-config.conf

@@ -16,29 +16,34 @@ server {
         try_files /nonexistent-used-for-try-testing @$http_upgrade;
     }
 
+    # These need to be manually edited to your specific config.
+    set $upstream_host YOUR_SERVER;
+    set $auth_token REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+
     location @websocket {
         # Cheat a little to make sure we don't have a trailing slash on the
         # path or we get a 405 response (method not allowed)
-        proxy_pass https://YOUR_SERVER-solana-01.bdnodes.net/$http_upgrade;
+        proxy_pass https://$upstream_host/$http_upgrade;
         proxy_http_version 1.1;
         proxy_set_header Host $proxy_host;
         # websocket requirements
         proxy_set_header Upgrade $http_upgrade;
         proxy_set_header Connection "Upgrade";
         # Blockdaemon specific authentication requirement
-        proxy_set_header Authorization "Bearer REPLACE_ME_WITH_YOUR_AUTH_TOKEN";
+        proxy_set_header Authorization "Bearer $auth_token";
         proxy_redirect https://$proxy_host http://$server_name:$server_port;
         proxy_redirect https:// http://;
     }
 
     location @ {
-        proxy_pass https://YOUR_SERVER-solana-01.bdnodes.net$request_uri;
+        # Example: companyname-solana-09.bdnodes.net
+        proxy_pass https://$upstream_host$request_uri;
         proxy_http_version 1.1;
         proxy_set_header Host $proxy_host;
         # HTTP v.1.1 keepalive requirements
         proxy_set_header Connection "";
         # Blockdaemon specific authentication requirement
-        proxy_set_header Authorization "Bearer REPLACE_ME_WITH_YOUR_AUTH_TOKEN";
+        proxy_set_header Authorization "Bearer $auth_token";
         proxy_redirect https://$proxy_host http://$server_name:$server_port;
         proxy_redirect https:// http://;
     }
@@ -53,15 +58,18 @@ server {
 server {
     listen 7800;
 
+    set $upstream_host YOUR_SERVER;
+    set $auth_token REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+
     location / {
-        proxy_pass https://YOUR_SERVER-solana-01.bdnodes.net/websocket;
+        proxy_pass https://$upstream_host/websocket;
         proxy_http_version 1.1;
         proxy_set_header Host $proxy_host;
         # websocket requirements
         proxy_set_header Upgrade $http_upgrade;
         proxy_set_header Connection "Upgrade";
         # Blockdaemon specific authentication requirement
-        proxy_set_header Authorization "Bearer REPLACE_ME_WITH_YOUR_AUTH_TOKEN";
+        proxy_set_header Authorization "Bearer $auth_token";
         proxy_redirect https://$proxy_host http://$server_name:$server_port;
         proxy_redirect https:// http://;
     }

doc/nginx-configs/figment-virt-server-config.conf

@@ -12,6 +12,8 @@
 server {
     listen 7901;
 
+    set $auth_token REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+
     location / {
         try_files /nonexistent-used-for-try-testing @$http_upgrade;
     }
@@ -24,7 +26,7 @@ server {
         proxy_set_header Upgrade $http_upgrade;
         proxy_set_header Connection "Upgrade";
         # Figment specific authentication requirement
-        proxy_set_header Authorization REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+        proxy_set_header Authorization "$auth_token";
         proxy_redirect https://$proxy_host http://$server_name:$server_port;
         proxy_redirect https:// http://;
     }
@@ -35,7 +37,7 @@ server {
         proxy_set_header Host $proxy_host;
         proxy_set_header Connection "";
         # Figment specific authentication requirement
-        proxy_set_header Authorization REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+        proxy_set_header Authorization "$auth_token";
         proxy_redirect https://$proxy_host http://$server_name:$server_port;
         proxy_redirect https:// http://;
     }

doc/nginx-configs/triton-one-virt-server-config.conf

@@ -12,13 +12,17 @@
 server {
     listen 7902;
 
+    # e.g: companyname1.rpcpool.com
+    set $upstream_host YOUR_SERVER;
+    set $auth_token REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+
     location / {
         try_files /nonexistent-used-for-try-testing @$http_upgrade;
     }
 
     location @websocket {
         # With authentication
-        proxy_pass https://YOUR_SERVER.rpcpool.com/REPLACE_ME_WITH_YOUR_AUTH_TOKEN$request_uri;
+        proxy_pass https://$upstream_host/$auth_token$request_uri;
 
         # Without authentication, i.e. IP allow listed
         #proxy_pass https://YOUR_SERVER.rpcpool.com$request_uri;
@@ -33,10 +37,10 @@ server {
 
     location @ {
         # With authentication
-        proxy_pass https://YOUR_SERVER.rpcpool.com/REPLACE_ME_WITH_YOUR_AUTH_TOKEN$request_uri;
+        proxy_pass https://$upstream_host/$auth_token$request_uri;
 
         # Without authentication, i.e. IP allow listed
-        #proxy_pass https://YOUR_SERVER.rpcpool.com$request_uri;
+        #proxy_pass https://$upstream_host$request_uri;
         proxy_http_version 1.1;
         proxy_set_header Host $proxy_host;
         proxy_set_header Connection "";
@@ -54,12 +58,16 @@ server {
 server {
     listen 7802;
 
+    # e.g: companyname1.rpcpool.com
+    set $upstream_host YOUR_SERVER;
+    set $auth_token REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+
     location / {
         # With authentication
-        proxy_pass https://YOUR_SERVER.rpcpool.com/REPLACE_ME_WITH_YOUR_AUTH_TOKEN;
+        proxy_pass https://$upstream_host/$auth_token;
 
         # Without authentication, i.e. IP allow listed
-        #proxy_pass https://YOUR_SERVER.rpcpool.com;
+        #proxy_pass https://$upstream_host;
         proxy_http_version 1.1;
         proxy_set_header Host $proxy_host;
         # websocket requirements