user  nginx nginx;
worker_processes  1;

error_log  /www/log/error-ssl.log;
pid        /var/run/nginx-ssl.pid;

events {
    worker_connections  16;
    }

http {

    include       mime.types;
    default_type  application/octet-stream;

    log_format  main '"$host" "$request" "[$time_local]" "$bytes_sent"';
    access_log  /www/log/access-ssl.log  main;

    ## General Options
    ignore_invalid_headers   on;
    sendfile                 on;
    server_tokens           off;

    gzip  on;
    keepalive_timeout  65;

 server {
        listen       443;
        server_name  linux-sysadmin.org;
        ssl on;
        ssl_certificate /www/ssl/linux-sysadmin.org.crt;
        ssl_certificate_key /www/ssl/linux-sysadmin.org.key.unsecure;
        ssl_client_certificate /opt/nginx/conf/ssl/ca.crt;
        ssl_verify_client       on;

        access_log  /www/log/linux-sysadmin.access-ssl.log  main;

        location / {
                fastcgi_pass unix:/www/app/web/run/serviceMgmt.socket;
                # necessary parameter
                fastcgi_param PATH_INFO $fastcgi_script_name;
                # to deal with POST requests
                fastcgi_param REQUEST_METHOD $request_method;
                fastcgi_param CONTENT_TYPE $content_type;
                fastcgi_param CONTENT_LENGTH $content_length;
                # necessary parameter for https
                fastcgi_param  HTTPS              on;

        
        }

        location /media {
        root /www/app/web; 

        }

    }
  }