Update pocketid.subdomain.conf.sample

id4vip · web-flow · commit 182365824818 · 2025-12-19T12:55:34.000-07:00
diff --git a/pocketid.subdomain.conf.sample b/pocketid.subdomain.conf.sample
@@ -4,9 +4,9 @@
 
 server {
     listen 443 ssl;
-#    listen 443 quic;
+    listen 443 quic;
     listen [::]:443 ssl;
-#    listen [::]:443 quic;
+    listen [::]:443 quic;
 
     server_name pocketid.*;
 
@@ -28,10 +28,7 @@ server {
 
     if ($lan-ip = yes) { set $geo-whitelist yes; }
     if ($geo-whitelist = no) { return 404; }
-
-
-
-    location / {
+   location / {
         # enable the next two lines for http auth
         #auth_basic "Restricted";
         #auth_basic_user_file /config/nginx/.htpasswd;
@@ -48,20 +45,58 @@ server {
         # enable for Tinyauth (requires tinyauth-server.conf in the server block)
         #include /config/nginx/tinyauth-location.conf;
 
-        include /config/nginx/proxy.conf;
+#        include /config/nginx/proxy.conf;
         include /config/nginx/resolver.conf;
         set $upstream_app pocketid;
         set $upstream_port 1411;
         set $upstream_proto http;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
-#        proxy_set_header X-Forwarded-Host $http_host;
-#        proxy_set_header X-Scheme $scheme;
-
-#        proxy_buffer_size 256k;
-#        proxy_buffers 4 512k;
-#        proxy_busy_buffers_size 512k;
+## Version 2023/02/09 - Changelog: https://github.com/linuxserver/docker-swag/commits/master/root/defaults/nginx/proxy.conf.sample
+
+# Timeout if the real server is dead
+        proxy_next_upstream error timeout invalid_header http_500 http_502 http_503;
+
+# Proxy Connection Settings
+####        proxy_buffers 32 4k;
+        proxy_connect_timeout 240;
+        proxy_headers_hash_bucket_size 128;
+        proxy_headers_hash_max_size 1024;
+        proxy_http_version 1.1;
+        proxy_read_timeout 240;
+        proxy_redirect http:// $scheme://;
+        proxy_send_timeout 240;
+
+# Proxy Cache and Cookie Settings
+        proxy_cache_bypass $cookie_session;
+#proxy_cookie_path / "/; Secure"; # enable at your own risk, may break certain apps
+        proxy_no_cache $cookie_session;
+# Proxy Header Settings
+        proxy_set_header Connection $connection_upgrade;
+        proxy_set_header Early-Data $ssl_early_data;
+        proxy_set_header Host $host;
+        proxy_set_header Proxy "";
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Host $host;
+        proxy_set_header X-Forwarded-Method $request_method;
+        proxy_set_header X-Forwarded-Port $server_port;
+        proxy_set_header X-Forwarded-Proto $scheme;
+        proxy_set_header X-Forwarded-Server $host;
+        proxy_set_header X-Forwarded-Ssl on;
+        proxy_set_header X-Forwarded-Uri $request_uri;
+        proxy_set_header X-Original-Method $request_method;
+        proxy_set_header X-Original-URL $scheme://$http_host$request_uri;
+        proxy_set_header X-Real-IP $remote_addr;
+
+        proxy_buffer_size 256k;
+        proxy_buffers 4 512k;
+        proxy_busy_buffers_size 512k;
 
 
     }
 }
+
+
+
+
