Explore Flying Circus NixOS Options

Ciphers to choose from when negotiating TLS handshakes.

Whether to enable FC-customized nginx.

Whether to enable Global rate limiting.

Whether to ask Let's Encrypt to sign a certificate for this vhost. Alternately, you can use an existing certificate through {option}useACMEHost.

Name of this virtual host. Defaults to attribute name in virtualHosts.

Listen address.

These lines go to the end of the location verbatim.

Sets the maximum number of requests per second per client.

Adds proxy_pass directive and sets recommended proxy headers if recommendedProxySettings is enabled.

Adds try_files directive.

Whether to enable the HTTP/0.9 protocol negotiation used in QUIC interoperability tests. This requires using pkgs.nginxQuic package which can be achieved by setting services.nginx.package = pkgs.nginxQuic; and activate the QUIC transport protocol services.nginx.virtualHosts.<name>.quic = true;. Note that special application protocol support is experimental and not yet recommended for production. Read more at https://quic.nginx.org/

Additional names of virtual hosts served by this virtual host configuration.

Path to root SSL certificate for stapling and client certificates.

HTTP status used by globalRedirect and forceSSL. Possible usecases include temporary (302, 307) redirects, keeping the request method and body (307, 308), or explicitly resetting the method to GET (303). See https://developer.mozilla.org/en-US/docs/Web/HTTP/Redirections.

Whether to support proxying websocket connections with HTTP/1.1.