NGINX SSL proxy


Setup an SSL proxy with NGINX and redirect port 80 to 443. Make sure you have generated a certificate before you start this add-on.

In the http section of the configuration.yaml file remove ssl_certificate and ssl_key and don’t enter the port in the base_url to avoid an HTTP 502 error.

{
  "domain": "home.example.com",
  "certfile": "fullchain.pem",
  "keyfile": "privkey.pem",
  "hsts": "max-age=31536000; includeSubDomains",
  "customize": {
    "active": false,
    "default": "nginx_proxy_default*.conf",
    "servers": "nginx_proxy/*.conf"
  }
}

Configuration variables:

  • domain (Required): Domain they will proxy run with it.
  • certfile (Required): Certificate file to use in the /ssl dir.
  • keyfile (Required): Private key file to use in the /ssl dir.
  • hsts (Optional): Value for the Strict-Transport-Security HTTP header to send. If empty or null, the header is not sent.
  • customize (Optional): If true, additional NGINX configuration files for the default server and additional servers are read from files in the /share dir specified by the default and servers variables.

It is possible to deactivate port 80 if you need this for things like emulate_hue. Remove the host port from Network option of this add-on.