fix: ajouter un fichier default.conf minimal et le retirer du gitignore

nanoninja · nanoninja · commit 9015c24ea29e · 2025-03-21T13:14:42.000+01:00
diff --git a/.gitignore b/.gitignore
@@ -18,19 +18,12 @@ web/app/composer.lock
 web/app/vendor/
 web/app/doc/
 web/app/report/
-data/
 .phpdoc/
 
 # Framework directories
 /web/symfony-app/
 /web/laravel-app/
 
-# Generated files
-etc/nginx/default.conf
-
-# Docker volumes
-mysql_data/
-
 # SSL Certificates
 etc/ssl/
 
diff --git a/etc/nginx/default.conf b/etc/nginx/default.conf
@@ -0,0 +1,106 @@
+# Nginx configuration
+
+# HTTP Server
+server {
+    listen 80 default_server;
+    listen [::]:80 default_server;
+    server_name localhost;
+
+    # Logging
+    access_log /var/log/nginx/access.log;
+    error_log /var/log/nginx/error.log;
+
+    # Root directory and index files
+    root /var/www/html/app/public;
+    index index.php index.html;
+
+    # Framework specific configuration
+    include /etc/nginx/conf.d/framework/default.conf;
+
+    # PHP-FPM Configuration
+    location ~ \.php$ {
+        try_files $uri =404;
+        fastcgi_split_path_info ^(.+\.php)(/.+)$;
+        fastcgi_pass php:9000;
+        fastcgi_index index.php;
+        include fastcgi_params;
+        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
+        fastcgi_param PATH_INFO $fastcgi_path_info;
+    }
+
+    # Deny access to hidden files
+    location ~ /\. {
+        deny all;
+    }
+
+    # Deny access to specific directories
+    location ~ ^/(vendor|tests|src|app)/ {
+        deny all;
+        return 404;
+    }
+
+    # Optimize static file serving
+    location ~* \.(jpg|jpeg|png|gif|ico|css|js|svg|woff|woff2|ttf|eot)$ {
+        expires 30d;
+        add_header Cache-Control "public, no-transform";
+    }
+}
+
+# HTTPS Server (uncomment to enable SSL)
+# server {
+#     listen 443 ssl http2;
+#     listen [::]:443 ssl http2;
+#     server_name localhost;
+#
+#     # SSL Configuration
+#     ssl_certificate /etc/ssl/server.crt;
+#     ssl_certificate_key /etc/ssl/server.key;
+#     
+#     # Modern SSL settings
+#     ssl_protocols TLSv1.2 TLSv1.3;
+#     ssl_prefer_server_ciphers on;
+#     ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
+#     ssl_session_cache shared:SSL:10m;
+#     ssl_session_timeout 1d;
+#     ssl_session_tickets off;
+#
+#     # Root directory and index files
+#     root /var/www/html/app/public;
+#     index index.php index.html;
+#
+#     # Logging
+#     access_log /var/log/nginx/access.log;
+#     error_log /var/log/nginx/error.log;
+#
+#     # Framework specific configuration
+#     include /etc/nginx/framework/default.conf;
+#
+#     # PHP-FPM Configuration
+#     location ~ \.php$ {
+#         try_files $uri =404;
+#         fastcgi_split_path_info ^(.+\.php)(/.+)$;
+#         fastcgi_pass php:9000;
+#         fastcgi_index index.php;
+#         include fastcgi_params;
+#         fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
+#         fastcgi_param PATH_INFO $fastcgi_path_info;
+#         fastcgi_param HTTPS on;
+#     }
+#
+#     # Deny access to hidden files
+#     location ~ /\. {
+#         deny all;
+#     }
+#
+#     # Deny access to specific directories
+#     location ~ ^/(vendor|tests|src|app)/ {
+#         deny all;
+#         return 404;
+#     }
+#
+#     # Optimize static file serving
+#     location ~* \.(jpg|jpeg|png|gif|ico|css|js|svg|woff|woff2|ttf|eot)$ {
+#         expires 30d;
+#         add_header Cache-Control "public, no-transform";
+#     }
+# }
