Laravel Türkiye Discord Kanalı Forumda kod paylaşılırken dikkat edilmesi gerekenler!Birlikte proje geliştirmek ister misiniz?

nginx-a lets encrypt kurulu, herhangi http url acmak

sapdevm

merhabalar,
akradaslar vps-te nginx-e lets encrypt kurdum, tum http istekler https adresine gonderiyor.
1) yapmak istedigim sadece /exchange.php adresini https adresine gondermesin, nasil yapabilirim?
2) tavsiye veya duzeltme olursa soylermisiniz, tesekkurler
mevcut nginx dosyasi soyle:

# For more information on configuration, see:
#   * Official English Documentation: http://nginx.org/en/docs/
#   * Official Russian Documentation: http://nginx.org/ru/docs/

user nginx;
worker_processes auto;
error_log /var/log/nginx/error.log;
pid /run/nginx.pid;

# Load dynamic modules. See /usr/share/doc/nginx/README.dynamic.
include /usr/share/nginx/modules/*.conf;

events {
    worker_connections 1024;
}

http {
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile            on;
    tcp_nopush          on;
    tcp_nodelay         on;
    keepalive_timeout   65;
    types_hash_max_size 4096;

    include             /etc/nginx/mime.types;
    default_type        application/octet-stream;

    # Load modular configuration files from the /etc/nginx/conf.d directory.
    # See http://nginx.org/en/docs/ngx_core_module.html#include
    # for more information.
    include /etc/nginx/conf.d/*.conf;

    server {        
		server_name my-site.com www.my-site.com;
		root /var/www/mysite/public;
		index index.html index.htm index.php;

		# Load configuration files for the default server block.
		include /etc/nginx/default.d/*.conf;

		gzip on;
		gzip_min_length 100;
		gzip_comp_level 3;
		gzip_types text/plain;
		gzip_types text/css;
		gzip_types text/javascript;
		gzip_types application/javascript;
		gzip_types application/json;
		gzip_types text/xml;
		gzip_types application/xml;
		gzip_types image/svg+xml;
		gzip_types image/jpg;
		gzip_disable "msie6";	

		access_log /var/www/s-access.log;
		error_log /var/www/s-error.log;
		

		add_header X-Frame-Options "SAMEORIGIN";
		add_header X-XSS-Protection "1; mode=block";
		add_header X-Content-Type-Options "nosniff";

		charset utf-8;
		client_max_body_size 120m;

		location / {
			try_files $uri $uri/ /index.php?$query_string;
		}

		error_page 404 /index.php;

		location ~ \.php$ {
			fastcgi_split_path_info ^(.+\.php)(/.+)$;
			fastcgi_pass 127.0.0.1:9000;
			fastcgi_index index.php;
			fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
			include fastcgi_params;
		}

		location ~ /\.ht {
			deny all;
		}
		
		location ~ /\.(?!well-known).* {
			deny all;
		}

		location ~* .(jpg|jpeg|gif|png|css|js|ico|svg|xml)$ {
			access_log off;
			add_header Cache-Control public;
			add_header Pragma public;
			add_header Vary Accept-Encoding;
			log_not_found off;
			expires 1M;
		}
		
		listen [::]:443 ssl http2 ipv6only=on; # managed by Certbot
		listen 443 ssl http2; # managed by Certbot
		ssl_certificate /etc/letsencrypt/live/my-site.com/fullchain.pem; # managed by Certbot
		ssl_certificate_key /etc/letsencrypt/live/my-site.com/privkey.pem; # managed by Certbot
		include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
		ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
	}

# Settings for a TLS enabled server.
#
#    server {
#        listen       443 ssl http2;
#        listen       [::]:443 ssl http2;
#        server_name  _;
#        root         /usr/share/nginx/html;
#
#        ssl_certificate "/etc/pki/nginx/server.crt";
#        ssl_certificate_key "/etc/pki/nginx/private/server.key";
#        ssl_session_cache shared:SSL:1m;
#        ssl_session_timeout  10m;
#        ssl_ciphers HIGH:!aNULL:!MD5;
#        ssl_prefer_server_ciphers on;
#
#        # Load configuration files for the default server block.
#        include /etc/nginx/default.d/*.conf;
#
#        error_page 404 /404.html;
#            location = /40x.html {
#        }
#
#        error_page 500 502 503 504 /50x.html;
#            location = /50x.html {
#        }
#    }


    server {
		if ($host = www.my-site.com) {
			return 301 https://$host$request_uri;
		} # managed by Certbot


		if ($host = my-site.com) {
			return 301 https://$host$request_uri;
		} # managed by Certbot


		listen       80;
		listen       [::]:80;
		
		server_name my-site.com www.my-site.com;
		return 404; # managed by Certbot
	}
}

mgsmus

sapdevm Cevabı bilmiyorum ama istediğiniz şey bana yanlış ve yapılmaması gereken bir şey gibi gözüktü. Neden böyle bir şey istiyorsunuz?

sapdevm

hocam 1c programina entegrasyon icin, https olunca yapamiyor. http adresine 2 tane xml dosya gonderiyor. kendi dokumantasyonundada http olmasi gerektigi yaziyor

sapdevm

cozumu surada yapmam gerekiyor, 80. port dinlyor ve gelen requestleri https-e yonlendiriyor

server {
		if ($host = www.my-site.com) {
			return 301 https://$host$request_uri;
		} # managed by Certbot


		if ($host = my-site.com) {
			return 301 https://$host$request_uri;
		} # managed by Certbot


		listen       80;
		listen       [::]:80;
		
		server_name my-site.com www.my-site.com;
		return 404; # managed by Certbot
	}