refactor: nginx.conf is source of truth, drop generate script and template

nginx/nginx.conf is symlinked directly into system nginx config. No need for a per-domain generate script or template — edit the file, run nginx -t && systemctl reload nginx. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-13 14:08:11 +03:00
parent ff32812b61
commit ddc3dc0a97
3 changed files with 0 additions and 92 deletions
--- a/nginx/nginx.conf
+++ b/nginx/nginx.conf
@@ -1,7 +1,3 @@
-# Generated from nginx.conf.template — do not edit directly.
-# Regenerate per domain: sudo ./scripts/generate-nginx-conf.sh <domain>
-# This file is kept as a reference only; production uses sites-available/*.conf
-
 upstream web {
    server 127.0.0.1:8080;
 }
--- a/nginx/nginx.conf.template
+++ b/nginx/nginx.conf.template
@@ -1,36 +0,0 @@
-upstream web {
-    server 127.0.0.1:8080;
-}
-
-server {
-    listen 80;
-    server_name ${DOMAIN} www.${DOMAIN};
-
-    location /.well-known/acme-challenge/ {
-        root /var/www/certbot;
-    }
-
-    location / {
-        return 301 https://$host$request_uri;
-    }
-}
-
-server {
-    listen 443 ssl;
-    server_name ${DOMAIN} www.${DOMAIN};
-
-    ssl_certificate /etc/letsencrypt/live/${DOMAIN}/fullchain.pem;
-    ssl_certificate_key /etc/letsencrypt/live/${DOMAIN}/privkey.pem;
-
-    ssl_protocols TLSv1.2 TLSv1.3;
-    ssl_ciphers HIGH:!aNULL:!MD5;
-    ssl_prefer_server_ciphers on;
-
-    location / {
-        proxy_pass http://web;
-        proxy_set_header Host $host;
-        proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-        proxy_set_header X-Forwarded-Proto $scheme;
-    }
-}