Move 'Force SSL' definitions to host root configuration

This fixes issues with these settings not applying to custom locations defined under hosts.
2024-08-30 18:22:48 +00:00 · 2021-04-13 19:59:49 +01:00 · 2021-04-13 19:59:49 +01:00 · f056b9dc7f
commit f056b9dc7f
parent ba5f0c212c
3 changed files with 3 additions and 3 deletions
--- a/backend/templates/dead_host.conf
+++ b/backend/templates/dead_host.conf
@ -5,6 +5,7 @@ server {
 {% include "_listen.conf" %}
 {% include "_certificates.conf" %}
 {% include "_hsts.conf" %}
+{% include "_forced_ssl.conf" %}

  access_log /data/logs/dead_host-{{ id }}.log standard;

@ -12,7 +13,6 @@ server {

 {% if use_default_location %}
  location / {
-{% include "_forced_ssl.conf" %}
 {% include "_hsts.conf" %}
    return 404;
  }
--- a/backend/templates/proxy_host.conf
+++ b/backend/templates/proxy_host.conf
@ -11,6 +11,7 @@ server {
 {% include "_assets.conf" %}
 {% include "_exploits.conf" %}
 {% include "_hsts.conf" %}
+{% include "_forced_ssl.conf" %}

  access_log /data/logs/proxy_host-{{ id }}.log proxy;

@ -43,7 +44,6 @@ server {

    {% endif %}

-{% include "_forced_ssl.conf" %}
 {% include "_hsts.conf" %}

    {% if allow_websocket_upgrade == 1 or allow_websocket_upgrade == true %}
--- a/backend/templates/redirection_host.conf
+++ b/backend/templates/redirection_host.conf
@ -7,6 +7,7 @@ server {
 {% include "_assets.conf" %}
 {% include "_exploits.conf" %}
 {% include "_hsts.conf" %}
+{% include "_forced_ssl.conf" %}

  access_log /data/logs/redirection_host-{{ id }}.log standard;

@ -14,7 +15,6 @@ server {

 {% if use_default_location %}
  location / {
-{% include "_forced_ssl.conf" %}
 {% include "_hsts.conf" %}

    {% if preserve_path == 1 or preserve_path == true %}