#
# This file configures NGINX as a reverse proxy for AlwaysUp Web Service.
# There are two server sections -- one for HTTP and another for HTTPS.
# You will only need one or the other, not both.
#
events {}

http {
	# HTTP server.
	# Note: This section is used only when running AlwaysUp Web Service in HTTP mode (the default).
	# AlwaysUp Web Service will be accessible at: http://proxy-server/alwaysup/
	server {
		listen 80;
		location /alwaysup/ {
			proxy_set_header X-Base-URL /alwaysup/;
			proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
			proxy_pass http://10.10.0.1:8585/;
		}
	}
	# HTTPS server, configured to use the AlwaysUp Web Service self-signed certificate.
	# Note: This section is used only when running AlwaysUp Web Service in secure/HTTPS mode.
	# AlwaysUp Web Service will be accessible at: https://proxy-server/alwaysup-secure/
	server {
		listen 443 ssl;
		# Change these paths to identify your certificate files.
		# You can use the self-signed certificate files distributed with AlwaysUp Web Service (available
		# in the "certificates" subfolder of the installation directory).
		ssl_certificate     "C:\Program Files (x86)\AlwaysUpWebService\certificates\certificate.pem";
		ssl_certificate_key "C:\Program Files (x86)\AlwaysUpWebService\certificates\certificate-key.pem";
		ssl_protocols       TLSv1.2;
		location /alwaysup-secure/ {
			proxy_set_header X-Base-URL /alwaysup-secure/;
			proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
			proxy_pass https://10.10.0.1:8585/;
		}
	}
}