upstream quadcode2-svelte {
    ip_hash;
    server 127.0.0.1:3002;
}

server {
    server_name quadcode2.foach.site;

    gzip on;
    gzip_disable "msie6";
    gzip_vary on;
    gzip_proxied any;
    gzip_comp_level 6;
    gzip_buffers 16 8k;
    gzip_http_version 1.1;
    gzip_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript application/javascript;

    location / {
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-NginX-Proxy true;
      proxy_set_header X-Forwarded-Proto $scheme;
     
      proxy_http_version 1.1; 
      proxy_pass http://quadcode2-svelte;  
    }

    location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|ogg|ogv|webm|htc|js|css|woff)$ {
        expires 1y;
	access_log off;
	add_header Cache-Control "public";

      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-NginX-Proxy true;
      proxy_set_header X-Forwarded-Proto $scheme;

      proxy_http_version 1.1;
      proxy_pass http://quadcode2-svelte;
    }

    listen 443 ssl http2; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/quadcode2.foach.site/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/quadcode2.foach.site/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

}
server {
    if ($host = quadcode2.foach.site) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


    server_name quadcode2.foach.site;

    listen 80;
    return 404; # managed by Certbot


}