Hi,
Im not sure wether its something about permission, but Plone icons isnt working, I leave HTTPS directives below + general configs, thank you for helping to me..!
IMAGE:
CONFIGS NGINX:
add_header X-Frame-Options "SAMEORIGIN";
add_header Strict-Transport-Security "max-age=15768000; includeSubDomains";
add_header X-XSS-Protection "1; mode=block";
add_header X-Content-Type-Options "nosniff";
add_header Content-Security-Policy "default-src 'self'; img-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'";
add_header Content-Security-Policy-Report-Only "default-src 'self'; img-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'";
upstream plone {
server 127.0.0.1:8080;
}
server {
listen 443 ssl;
listen [::]:443 ssl;
server_name 0Hxff.ca, www.0Hxff.ca;
access_log /var/log/nginx/0Hxff.ca_access.log;
error_log /var/log/nginx/0Hxff.ca_error.log;
location / {
proxy_pass http://plone/VirtualHostBase/https/0hxff.ca:443/blog/VirtualHostRoot/;
}
ssl_certificate /etc/letsencrypt/live/0hxff.ca/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/0hxff.ca/privkey.pem;
ssl_protocols TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
#ssl_ciphers AES256+EECDH:AES256+EDH:!aNULL;
ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
ssl_session_cache shared:SSL:10m;
}
server {
listen 80;
listen [::]:80;
server_name 0Hxff.ca;
return 301 https://$server_name$request_uri;
rewrite ^(.*)(/login_|/require_login|/failsafe_login_form)(.*) https://$server_name$1$2$3 redirect;
if ($http_cookie ~* "__ac=([^;]+)(?:;|$)" ) {
rewrite ^(.*) https://$host/$1 redirect;
}
}