From 8409e19fac8df17eb719da45aa695181cc808946 Mon Sep 17 00:00:00 2001
From: isscbta <53144593+isscbta@users.noreply.github.com>
Date: Mon, 30 Jan 2023 13:42:03 +0100
Subject: [PATCH] Added install-rocket-nginx.sh and the following nginx
 templates

---
 .../tools/install-rocket-nginx.sh             | 23 +++++++++++
 .../wprocket-force-htpps.stpl                 | 41 +++++++++++++++++++
 .../wprocket-force-htpps.tpl                  |  9 ++++
 .../wprocket-hosting.stpl                     | 39 ++++++++++++++++++
 .../wprocket-hosting.tpl                      | 36 ++++++++++++++++
 5 files changed, 148 insertions(+)
 create mode 100644 src/deb/for-download/tools/install-rocket-nginx.sh
 create mode 100644 src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.stpl
 create mode 100644 src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.tpl
 create mode 100644 src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.stpl
 create mode 100644 src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.tpl

diff --git a/src/deb/for-download/tools/install-rocket-nginx.sh b/src/deb/for-download/tools/install-rocket-nginx.sh
new file mode 100644
index 000000000..0fb5d86d0
--- /dev/null
+++ b/src/deb/for-download/tools/install-rocket-nginx.sh
@@ -0,0 +1,23 @@
+#!/bin/bash
+
+echo "Updating apt, please wait..."
+apt-get update > /dev/null 2>&1
+
+apt-get -y install git > /dev/null 2>&1
+
+if [ ! -d "/etc/nginx/rocket-nginx" ]; then
+    cd /etc/nginx
+    git clone https://github.com/satellitewp/rocket-nginx.git
+else
+    cd /etc/nginx/rocket-nginx
+    git pull
+    cd ..
+fi
+
+cd rocket-nginx
+cp rocket-nginx.ini.disabled rocket-nginx.ini
+php rocket-parser.php
+wget -nv -O /usr/local/vesta/data/templates/web/nginx/wprocket-force-htpps.tpl https://c.myvestacp.com/tools/rocket-nginx-templates/wprocket-force-htpps.tpl
+wget -nv -O /usr/local/vesta/data/templates/web/nginx/wprocket-force-htpps.stpl https://c.myvestacp.com/tools/rocket-nginx-templates/wprocket-force-htpps.stpl
+wget -nv -O /usr/local/vesta/data/templates/web/nginx/wprocket-hosting.tpl https://c.myvestacp.com/tools/rocket-nginx-templates/wprocket-hosting.tpl
+wget -nv -O /usr/local/vesta/data/templates/web/nginx/wprocket-hosting.stpl https://c.myvestacp.com/tools/rocket-nginx-templates/wprocket-hosting.stpl
diff --git a/src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.stpl b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.stpl
new file mode 100644
index 000000000..05ba994a2
--- /dev/null
+++ b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.stpl
@@ -0,0 +1,41 @@
+server {
+    listen      %ip%:%proxy_ssl_port% ssl http2;
+    server_name %domain_idn% %alias_idn%;
+
+    ssl_certificate      %ssl_pem%;
+    ssl_certificate_key  %ssl_key%;
+    error_log  /var/log/%web_system%/domains/%domain%.error.log error;
+
+
+    location / {
+        proxy_pass      https://%ip%:%web_ssl_port%;
+        location ~* ^.+\.(%proxy_extentions%)$ {
+            root           %sdocroot%;
+            access_log     /var/log/%web_system%/domains/%domain%.log combined;
+            access_log     /var/log/%web_system%/domains/%domain%.bytes bytes;
+            expires        max;
+            # try_files      $uri @fallback;
+        }
+    }
+
+    location /error/ {
+        alias   %home%/%user%/web/%domain%/document_errors/;
+    }
+
+    location @fallback {
+        proxy_pass      https://%ip%:%web_ssl_port%;
+    }
+
+    location ~ /\.ht    {return 404;}
+    location ~ /\.env   {return 404;}
+    location ~ /\.svn/  {return 404;}
+    location ~ /\.git/  {return 404;}
+    location ~ /\.hg/   {return 404;}
+    location ~ /\.bzr/  {return 404;}
+
+    disable_symlinks if_not_owner from=%docroot%;
+
+    include %home%/%user%/conf/web/*nginx.%domain_idn%.conf_letsencrypt;
+    include %home%/%user%/conf/web/s%proxy_system%.%domain%.conf*;
+    include rocket-nginx/conf.d/default.conf;
+}
diff --git a/src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.tpl b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.tpl
new file mode 100644
index 000000000..0c8776329
--- /dev/null
+++ b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-force-htpps.tpl
@@ -0,0 +1,9 @@
+server {
+    listen      %ip%:%proxy_port%;
+    server_name %domain_idn% %alias_idn%;
+    location / {
+        rewrite ^(.*) https://%domain_idn%$1 permanent;
+    }
+include %home%/%user%/conf/web/*nginx.%domain_idn%.conf_letsencrypt;
+include rocket-nginx/conf.d/default.conf;
+}
diff --git a/src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.stpl b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.stpl
new file mode 100644
index 000000000..2610efc44
--- /dev/null
+++ b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.stpl
@@ -0,0 +1,39 @@
+server {
+    listen      %ip%:%proxy_ssl_port% ssl http2;
+    server_name %domain_idn% %alias_idn%;
+
+    ssl_certificate      %ssl_pem%;
+    ssl_certificate_key  %ssl_key%;
+    error_log  /var/log/%web_system%/domains/%domain%.error.log error;
+
+    location / {
+        proxy_pass      https://%ip%:%web_ssl_port%;
+        location ~* ^.+\.(%proxy_extentions%)$ {
+            root           %sdocroot%;
+            access_log     /var/log/%web_system%/domains/%domain%.log combined;
+            access_log     /var/log/%web_system%/domains/%domain%.bytes bytes;
+            expires        max;
+            # try_files      $uri @fallback;
+        }
+    }
+
+    location /error/ {
+        alias   %home%/%user%/web/%domain%/document_errors/;
+    }
+
+    location @fallback {
+        proxy_pass      https://%ip%:%web_ssl_port%;
+    }
+
+    location ~ /\.ht    {return 404;}
+    location ~ /\.env   {return 404;}
+    location ~ /\.svn/  {return 404;}
+    location ~ /\.git/  {return 404;}
+    location ~ /\.hg/   {return 404;}
+    location ~ /\.bzr/  {return 404;}
+
+    disable_symlinks if_not_owner from=%docroot%;
+
+    include %home%/%user%/conf/web/snginx.%domain%.conf*;
+    include rocket-nginx/conf.d/default.conf;
+}
diff --git a/src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.tpl b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.tpl
new file mode 100644
index 000000000..521348ae2
--- /dev/null
+++ b/src/deb/for-download/tools/rocket-nginx-templates/wprocket-hosting.tpl
@@ -0,0 +1,36 @@
+server {
+    listen      %ip%:%proxy_port%;
+    server_name %domain_idn% %alias_idn%;
+    error_log  /var/log/%web_system%/domains/%domain%.error.log error;
+
+    location / {
+        proxy_pass      http://%ip%:%web_port%;
+        location ~* ^.+\.(%proxy_extentions%)$ {
+            root           %docroot%;
+            access_log     /var/log/%web_system%/domains/%domain%.log combined;
+            access_log     /var/log/%web_system%/domains/%domain%.bytes bytes;
+            expires        max;
+            # try_files      $uri @fallback;
+        }
+    }
+
+    location /error/ {
+        alias   %home%/%user%/web/%domain%/document_errors/;
+    }
+
+    location @fallback {
+        proxy_pass      http://%ip%:%web_port%;
+    }
+
+    location ~ /\.ht    {return 404;}
+    location ~ /\.env   {return 404;}
+    location ~ /\.svn/  {return 404;}
+    location ~ /\.git/  {return 404;}
+    location ~ /\.hg/   {return 404;}
+    location ~ /\.bzr/  {return 404;}
+
+    disable_symlinks if_not_owner from=%docroot%;
+
+    include %home%/%user%/conf/web/nginx.%domain%.conf*;
+    include rocket-nginx/conf.d/default.conf;
+}