This appendix lists the configuration directives used throughout the book. There are also some directives that did not appear in the book, but are listed here for completeness. The entries have been expanded to show under which context each directive may be used. If a directive has a default value, it has been listed as well. These directives are current as of NGINX version 1.9.11. The most up-to-date list can be found at http://nginx.org/en/docs/dirindex.html.
Directive |
Explanation |
Context / default value |
---|---|---|
|
Serializes the |
Valid context: Default value: |
|
The maximum time a worker process will wait to accept new connections if another worker is already doing this. |
Valid context: Default value: |
|
Describes where and how are to be written. The first parameter is a path to the file where the logs are to be stored. Variables may be used in constructing the path. The special value, |
Valid contexts: Default value: |
|
Adds the result of processing a subrequest after the response body. |
Valid contexts: Default value: |
|
Adds the result of processing a subrequest before the response body. |
Valid contexts: Default value: |
|
Adds fields to a header present in responses with the HTTP codes |
Valid contexts: Default value: |
|
Lists the MIME types of a response in addition to |
Valid contexts: Default value: |
|
Enables the use of asynchronous file I/O. It is available on all modern versions of FreeBSD and distributions of Linux. On FreeBSD, |
Valid contexts: Default value: |
|
Defines another name for the location, as found on the filesystem. If the location is specified with a regular expression, the |
Valid context: Default value: |
|
Valid contexts: Default value: | |
|
One or more strings, which if found in the |
Valid contexts: Default value: |
|
The value to which the |
Valid contexts: Default value: |
|
Enables authentication using HTTP Basic Authentication. The |
Valid contexts: Default value: |
|
The location of a file of the |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Sets an additional header (first parameter) to the specified value (second parameter). |
Valid contexts: Default value: |
|
Specifies whether to pass the PEM-encoded client certificate as the |
Valid contexts: Default value: |
|
The maximum amount of time NGINX will wait when communicating with an authentication server. |
Valid contexts: Default value: |
|
The URI to which an authorization subrequest should be sent. |
Valid contexts: Default value: |
|
The given variable to the value, which may contain variables from the authorization request. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Indicates whether the file sizes in a directory listing page should be listed in bytes or rounded to kilobytes, megabytes, and gigabytes. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Sets the file modification time in a directory listing page to either local time ( |
Valid contexts: Default value: |
|
Ends the processing of the |
Valid contexts: Default value: |
|
Adds the character set specified to the |
Valid contexts: Default value: |
|
Sets up a conversion table from one character set to another. Each character code is specified in hexadecimal. The files |
Valid context: Default value: |
|
Lists the MIME types of a response in addition to |
Valid contexts: Default values: |
|
Allows disabling the standard HTTP/1.1 chunked transfer encoding in responses to clients. |
Valid contexts: Default value: |
|
Used to set a buffer size for the client request body larger than the default two memory pages, in order to prevent temporary files from being written to disk. |
Valid contexts: Default value: |
|
Used for debugging or further processing of the client request body; this directive can be set to |
Valid contexts: Default value: |
|
This directive will force NGINX to save the entire client request body in a single buffer, to reduce copy operations. |
Valid contexts: Default value: |
|
Defines a directory path for saving the client request body. If a second, third, or fourth parameter is given, these specify a subdirectory hierarchy with the parameter value as the number of characters in the subdirectory name. |
Valid contexts: Default value: |
|
Specifies the length of time between successive |
Valid contexts: Default value: |
|
Used for specifying a buffer size for the client request header, when this needs to be larger than the default 1 KB. |
Valid contexts: Default value: |
|
Specifies the length of time for reading the entire client header. If reached, the client receives a |
Valid contexts: Default value: |
|
Defines the largest allowable client request body, before a |
Valid contexts: Default value: |
|
Valid contexts: Default values: | |
|
Valid contexts: Default value: | |
|
Valid context: Default value: | |
|
Sets filesystem access permissions for newly-created files and directories. If |
Valid contexts: Default value: |
|
Allows the specified HTTP and WebDAV methods. When |
Valid contexts: Default value: |
|
Enables debug logging for any client matching the value of this directive. It may be specified multiple times. To debug UNIX-domain sockets, use |
Valid context: Default value: |
|
When debugging, the process will either create a core file ( |
Valid context: Default value: |
|
Sets the default MIME type of a response. This comes into play if the MIME type of the file cannot be matched to one of those specified by the |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Enables the operating system-specific flag or function for serving files larger than the parameter given. This directive is required when using |
Valid contexts: Default value: |
|
Sets the alignment for |
Valid contexts: Default value: |
|
For more information on this directive, refer to the table (The HTTP file path directives) given in the Finding files section in Chapter 6, The NGINX HTTP Server. |
Valid contexts: Default value: |
|
Causes a 1x1 pixel transparent GIF to be emitted for that location. |
Valid context: Default value: |
|
Sets the environment variables for use in the following ways:
|
Valid context: Default value: |
|
The |
Valid contexts: Default value: |
|
Defines a URI to be served when an error level response code is encountered. Adding an |
Valid contexts: Default value: |
|
Disables automatically generating the |
Valid contexts: Default value: |
|
Defines a new context in which connection-processing directives are specified. |
Valid context: Default value: |
|
For more information on this directive, refer to the table (Header modifying directives) given in the Caching in the filesystem section in Chapter 7, NGINX for the Application Developer. |
Valid contexts: Default value: |
|
Specifies the address that should be used for outgoing connections to a FastCGI server. |
Valid contexts: Default value: |
|
The size of the buffer used for the first part of the response from the FastCGI server, in which the response headers are found. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
The number and size of buffers used for the response from a FastCGI server, for a single connection. |
Valid contexts: Default value: |
|
The total size of the buffer space allocated to sending the response to the client while still being read from the FastCGI server. This is typically set to two |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
One or more string variables, which when nonempty or nonzero, will cause the response to be taken from the FastCGI server instead of the cache. |
Valid contexts: Default value: |
|
A string used as the key for storing and retrieving cache values. |
Valid contexts: Default value: |
|
Enabling this directive will prevent multiple requests from making an entry into the same cache key. |
Valid contexts: Default value: |
|
The time for an entry to appear in the cache or one final request will be made. |
Valid contexts: Default value: |
|
The length of time a request will wait for an entry to appear in the cache or for the |
Valid contexts: Default value: |
|
This directive specifies the methods that are present in the client request in order for it to be cached. |
Valid contexts: Default value: |
|
The number of requests for a certain key needed before a response is cached. |
Valid contexts: Default value: |
|
For more information on this directive, refer to the table (FastCGI directives) given in the Using NGINX with PHP-FPM section in Chapter 6, The NGINX HTTP Server. |
Valid context: Default value: |
|
Whether the |
Valid contexts: Default value: |
|
The cases under which it is acceptable to serve stale cached data when an error occurs while accessing the FastCGI server. The |
Valid contexts: Default value: |
|
Indicates the length of time for which a cached response with response code |
Valid contexts: Default value: |
|
The maximum amount of time NGINX will wait for its connection to be accepted when making a request to a FastCGI server. |
Valid contexts: Default value: |
|
Forces byte-range support, irrespective of the value of the |
Valid contexts: Default value: |
|
A list of header fields that should not be passed on to the client. |
Valid contexts: Default value: |
|
If set to |
Valid contexts: Default value: |
|
Sets which headers may be disregarded when processing the response from the FastCGI server. |
Valid contexts: Default value: |
|
Sets the name of a file to be appended to |
Valid contexts: Default value: |
|
If enabled, NGINX will display a configured |
Valid contexts: Default value: |
|
Enables the |
Valid contexts: Default value: |
|
If |
Valid contexts: Default value: |
|
The maximum size of the overflow file; this directive is written when the response doesn't fit into the memory buffers. |
Valid contexts: Default value: |
|
For more information on this directive, refer to the table (FastCGI directives) given in the Using NGINX with PHP-FPM section in Chapter 6, The NGINX HTTP Server. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
The number of tries before the request is passed to the next server. |
Valid contexts: Default value: |
|
One or more string variables, which when nonempty or nonzero will instruct NGINX not to save the response from the FastCGI server in the cache. |
Valid contexts: Default value: |
|
Sets a parameter and its value to be passed to the FastCGI server. If the parameter should only be passed when the value is nonempty, the additional |
Valid contexts: Default value: |
|
Specifies the FastCGI server to which the request is passed, either as an |
Valid contexts: Default value: |
|
Overrides the disabled headers set in |
Valid contexts: Default value: |
|
Whether or not the original request body will be passed to the FastCGI server. |
Valid contexts: Default value: |
|
Specifies whether or not the headers of the original request will be passed to the FastCGI server. |
Valid contexts: Default value: |
|
Specifies the length of time that needs to elapse between two successive |
Valid contexts: Default value: |
|
Whether or not the complete client request body will be buffered before sending the request to the FastCGI server. |
Valid contexts: Default value: |
|
This is a FreeBSD directive. When nonzero, it will tell NGINX to use either the |
Valid contexts: Default value: |
|
The length of time that needs to elapse between two successive |
Valid contexts: Default value: |
|
Defines a regular expression with two captures. The first capture will be the value of the |
Valid context: Default value: |
|
Enables storing responses retrieved from a FastCGI server as files on the disk. The |
Valid contexts: Default value: |
|
Sets file access permissions for the newly-created
|
Valid contexts: Default value: |
|
Limits the amount of data buffered to a temporary file at one time so that NGINX will not be blocked for too long on a single request. |
Valid contexts: Default value: |
|
In this directory, temporary files may be buffered as they are proxied from the FastCGI server, optionally multilevel deep. If a second, third, or fourth parameter is given, these parameters specify a subdirectory hierarchy with the parameter value as the number of characters in the subdirectory name. |
Valid contexts: Default value: |
|
Valid context: Default value: | |
|
Defines a new context, in which a variable is set to a specified value, dependent on the IP address found in another variable. If no other variable is specified,
The following parameters are recognized within the context:
|
Valid context: Default value: |
|
The path to a GeoIP database file containing IP address-to-city mappings. The following variables then become available:
|
Valid context: Default value: |
|
The path to a GeoIP database file containing the IP address-to-country mappings. The following variables then become available:
|
Valid context: Default value: |
|
The path to a GeoIP database file containing the IP address-to-organization mappings. The following variable then becomes available:
|
Valid context: Default value: |
|
Defines an address or network of a direct connection from which the IP address will be taken from the |
Valid context: Default value: |
|
Works with |
Valid context: Default value: |
|
Enables the decompression of the |
Valid contexts: Default value: |
|
Specifies the number and size of buffers used for decompressing a response. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Specifies the number and size of buffers used for compressing a response. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
A regular expression of user-agents that shouldn't receive a compressed response. The special value, |
Valid contexts: Default value: |
|
The minimum HTTP version of a request before compression is considered. |
Valid contexts: Default value: |
|
The minimum length of a response before compression is considered, determined by the |
Valid contexts: Default value: |
|
Refer to the table (The |
Valid contexts: Default value: |
|
Enables checking for precompressed files to be delivered directly to clients that support the |
Valid contexts: Default value: |
|
The MIME types that should be compressed with
|
Valid contexts: Default value: |
|
Enables or disables the response header, |
Valid contexts: Default value: |
|
The key that is used to map to the upstream server for each request. To use the ketama consistent hashing algorithm instead of rehashing when servers are added or removed, specify the consistent parameter. |
Valid context: Default value: |
|
Sets up a configuration context in which the HTTP server directives are specified. |
Valid context: Default value: |
|
Valid contexts: Default value: | |
|
The amount of time with no activity after which the connection is closed. |
Valid contexts: Default value: |
|
Sets the number of HTTP/2 streams that may be active in a single connection. |
Valid contexts: Default value: |
|
Sets the maximum size of the compressed request header field. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Valid context: Default value: | |
|
The amount of time a client has to send data before the connection is closed. |
Valid contexts: Default value: |
|
Refer to the table (The |
Valid contexts: Default value: |
|
Controls how the modification time of a response is compared to the value of the
|
Valid contexts: Default value: |
|
Disables ignoring headers with invalid names. A valid name is composed of ASCII letters, numbers, the hyphen, and possibly the underscore (controlled by the |
Valid contexts: Default value: |
|
Refer to the table (The image filter directives) given in the Generating images section in Chapter 7, NGINX for the Application Developer. |
Valid context: Default value: |
|
The size of the buffer used to process images. If more memory is needed, the server will return a |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
The quality of the resulting JPEG image, after processing. The value is not recommended to exceed |
Valid contexts: Default value: |
|
Increases the sharpness of a processed image by this percentage. |
Valid contexts: Default value: |
|
Disables preserving the transparency of the transformed GIF and PNG images. The default value, |
Valid contexts: Default value: |
|
Sets the supported client authentication mechanism. It can be one or more of |
Valid contexts: Default value: |
|
The IMAP4 capabilities that are supported by the backend server. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
The path to a file containing additional configuration directives. It may be specified as |
Valid context: Default value: |
|
Defines the file that will be served to the client when a URI ending with |
Valid contexts: Default value: |
|
Specifies a location that can only be used for internal requests (redirects defined in other directives, the |
Valid context: Default value: |
|
Ensures the distribution of clients evenly over all server contexts by hashing the IP address, keying on its class C network. |
Valid context: Default value: |
|
The number of connections to the upstream servers that are cached per worker process. When used with the HTTP connections, |
Valid context: Default value: |
|
Valid contexts: Default value: | |
|
Defines how many requests may be made over one |
Valid contexts: Default value: |
|
Specifies how long a |
Valid contexts: Default value: |
|
Defines the maximum number and size of a large client request header. |
Valid contexts: Default value: |
|
Activates the load-balancing algorithm where the server with the least number of active connections is chosen for the next new connection. |
Valid context: Default value: |
|
Specifies a shared memory zone (configured with |
Valid contexts: Default value: |
|
When NGINX limits a connection due to the |
Valid contexts: Default value: |
|
Which response code to send to the client when the request is rejected. |
Valid contexts: Default value: |
|
Specifies the key to be limited in |
Valid context: Default value: |
|
Will limit a location to the specified HTTP verb(s) ( |
Valid context: Default value: |
|
Limits the rate (in bytes per second) at which clients can download content. The rate limit works on a connection level, meaning that a single client could increase their throughput by opening multiple connections. |
Valid context: Default value: |
|
Starts the |
Valid contexts: Default value: |
|
Sets a limit with bursting capability on the number of requests for a specific key in a shared memory store (configured with
|
Valid context: Default value: |
|
When NGINX limits the number of requests due to the |
Valid contexts: Default value: |
|
Which response code to send to the client when the request is rejected. |
Valid contexts: Default value: |
|
Specifies the key to be limited in |
Valid context: Default value: |
|
Valid context: Default value: | |
|
This directive specifies how a client connection will be kept open for more data. |
Valid contexts: Default value: |
|
In connection with the |
Valid contexts: Default value: |
|
Also in conjunction with |
Valid contexts: default value: |
|
Refer to the table (the |
Valid context: Default value: |
|
The listen directive uniquely identifies a socket binding under NGINX. It takes the following parameter:
|
Valid context: Default value: |
|
Valid contexts: Default value: | |
|
The prefix name for the |
Valid context: Default value: |
|
Specifies which fields should appear in the log file and what format they should take. |
Valid context: Default value: combined |
|
Valid contexts: Default value: | |
|
Valid contexts: Default value: | |
|
Sets up a configuration context in which the |
Valid context: Default value: |
|
Defines a new context, in which a variable is set to a specified value, dependent on the value of a source variable. The format of the context definition is as follows:
The string or strings to be mapped may also be regular expressions. The following parameters are recognized within the context:
|
Valid context: Default value: |
|
Valid context: Default value: | |
|
Valid context: Default value: | |
|
Valid context: Default value: | |
|
Sets the maximum number of ranges allowed in a byte-range request. Specifying |
Valid contexts: Default value: |
|
Specifies which address should be used for outgoing connections to a |
Valid contexts: Default value: |
|
The size of the buffer for the response from |
Valid contexts: Default value: |
|
The maximum length of time NGINX will wait for its connection to be accepted when making a request to a |
Valid contexts: Default value: |
|
Specifies a value, when found in the response from a |
Valid contexts: Default value: |
|
Refer to the table (The |
Valid contexts: Default value: |
|
How much time can pass before the request is passed to the next server. (The default value is |
Valid contexts: Default value: |
|
How many tries are made before the request is passed to the next server. (The default value is |
Valid contexts: Default value: |
|
Specifies the name or address of a |
Valid contexts: Default value: |
|
This directive specifies the length of time that needs to elapse between two successive |
Valid contexts: Default value: |
|
The length of time that needs to elapse between two successive |
Valid contexts: Default value: |
|
Disables the removal of multiple slashes. The default value of |
Valid contexts: Default value: |
|
Allows the |
Valid contexts: Default value: |
|
Specifies a |
Valid contexts: Default value: |
|
The value to which the |
Valid contexts: Default value: |
|
Valid context: Default value: | |
|
Valid contexts: Default value: | |
|
Sets the maximum size of the buffer used to process the MP4 metadata. |
Valid contexts: Default value: |
|
Enables the disabling of adding comments to responses with a status greater than |
Valid contexts: Default value: |
|
This directive enables the sending of a refresh instead of a redirect for the MSIE clients. |
Valid contexts: Default value: |
|
Instructs a worker process to accept all new connections at once. This directive is disregarded if the |
Valid context: Default value: |
|
Configures a cache that can store open file descriptors, directory lookups, and file lookup errors. |
Valid contexts: Default value: |
|
Enables the caching of the file lookup errors by the |
Valid contexts: Default value: |
|
Configures the minimum number of uses for a file within the inactive parameter to |
Valid contexts: Default value: |
|
Specifies the time interval between the validity checks for the items in the |
Valid contexts: Default value: |
|
For more information on this directive, refer to the table (HTTP logging directives) given in the Logging in NGINX section in Chapter 6, The NGINX HTTP Server. |
Valid contexts: Default value: |
|
Indicates whether the charset specified in the |
Valid contexts: Default value: |
|
Enables just-in-time compilation of |
Valid context: Default value: |
|
Activates a Perl handler for this location. The argument is the name of the handler or a string describing a full subroutine. |
Valid contexts: Default value: |
|
Valid context: Default value: | |
|
Indicates a Perl module that will be loaded at each NGINX reconfiguration. It may be specified multiple times for separate modules. |
Valid context: Default value: |
|
Installs a Perl handler to set the value of a variable. The argument is the name of the handler or a string, describing a full subroutine. |
Valid context: Default value: |
|
The file where the process ID of the main process will be written, overwriting the compiled-in default. |
Valid context: Default value: |
|
Sets the supported client authentication mechanism. It can be one or more of plain, |
Valid contexts: Default value: |
|
Indicates the POP3 capabilities that are supported by the backend server. |
Valid contexts: Default value: |
|
Determines whether or not the port will be specified in a redirect method issued by NGINX. |
Valid contexts: Default value: |
|
Specifies the minimum size of data for NGINX to send to the client. If possible, no data will be sent until this value is reached. |
Valid contexts: Default value: |
|
Indicates the protocol that is supported by this |
Valid context: Default value: |
|
Valid context: Default value: | |
|
Specifies the address that should be used for outgoing connections to a proxied server. |
Valid contexts: Default value: |
|
Allows setting the size of the buffer used for the |
Valid contexts: Default value: |
|
The size of the buffer used for the first part of the response from the upstream server, in which the response headers are found. |
Valid contexts: Default value: |
|
Activates the buffering of proxied content; when switched off, responses are sent synchronously to the client as soon as they are received. |
Valid contexts: Default value: |
|
The number and size of buffers used for responses from upstream servers. |
Valid contexts: Default value: |
|
The total size of buffer space allocated to sending the response to the client while still being read from the upstream server. This is typically set to two |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
One or more string variables, which when nonempty or nonzero, will cause the response to be taken from the upstream server instead of the cache. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
A string used as the key for storing and retrieving cache values. |
Valid contexts: Default value: |
|
Enabling this directive will prevent multiple requests from making an entry into the same cache key. |
Valid contexts: Default value: |
|
How long to wait for the |
Valid contexts: Default value: |
|
The length of time a request will wait for an entry to appear in the cache or for the |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
The number of requests for a certain key needed before a response is cached. |
Valid contexts: Default value: |
|
For more information on this directive, to the table (Proxy module caching directives) given in the Caching data section in Chapter 5, Reverse Proxy Advanced Topics. |
Valid context: Default value: |
|
Enables revalidation, depending on the values of the |
Valid contexts: Default value: |
|
The cases under which it is acceptable
to serve stale cached data when an error occurs accessing the upstream server. The |
Valid contexts: Default value: |
|
Indicates the length of time for which a cached response with the response code, |
Valid contexts: Default value: |
|
The maximum amount of time NGINX will wait for its connection to be accepted when making a request to an upstream server. |
Valid contexts: Default value: |
|
Replaces the domain attribute of the |
Valid contexts: Default value: |
|
Replaces the path attribute of the |
Valid contexts: Default value: |
|
Forces byte-range support irrespective of the value of the |
Valid contexts: Default value: |
|
The bucket size used to hold proxy header names (one name cannot be longer than the value of this directive). |
Valid contexts: Default value: |
|
The total size of headers received from the upstream server. |
Valid contexts: Default value: |
|
A list of header fields that should not be passed on to the client. |
Valid contexts: Default value: |
|
The HTTP protocol version used to communicate with upstream servers (use |
Valid contexts: Default value: |
|
If set to |
Valid contexts: Default value: |
|
Sets the headers that may be disregarded when processing the response from the upstream server. |
Valid contexts: Default value: |
|
If enabled, NGINX will display a configured |
Valid contexts: Default value: |
|
If buffering is enabled, the bytes/s at which the response from the upstream server will be read. |
Valid contexts: Default value: |
|
The maximum size of the overflow file, written when the response doesn't fit into memory buffers. |
Valid contexts: Default value: |
|
The HTTP method to substitute when proxying to the upstream server. |
Valid contexts: Default value: |
|
Indicates the conditions under which the next upstream server will be selected for the response. This won't be used if the client has already been sent something. The conditions are specified using the following parameters:
|
Valid contexts: Default value: |
|
The number of seconds that pass before giving the request to the next server. |
Valid contexts: Default value: |
|
The number of tries before passing the request to the next server. |
Valid contexts: Default value: |
|
Defines the conditions under which the response will not be saved to the cache. The parameters are string variables, which evaluate to something nonempty and nonzero to not cache. |
Valid contexts: Default value: |
|
Specifies the upstream server to which the request is passed, in the form of a URL. |
Valid contexts: Default value: |
|
Useful in situations where the backend authentication process emits a useful error message to the client. |
Valid contexts: Default value: |
|
Overrides the disabled headers set in |
Valid contexts: Default value: |
|
Prevents sending the body of the request to the upstream server if set to |
Valid contexts: Default value: |
|
Prevents sending the
headers of the request to the upstream server if set to |
Valid contexts: Default value: |
|
Specifies the length of time that needs to elapse between the two successive |
Valid contexts: Default value: |
|
Rewrites the |
Valid contexts: Default value: |
|
Whether or not the complete client request body will be buffered before sending the request to the upstream server. |
Valid contexts: Default value: |
|
If non-zero, NGINX will try to minimize the number of send operations on outgoing connections to a proxied. It is ignored in Linux, Solaris, and Windows. |
Valid contexts: Default value: |
|
The length of time that needs to elapse between two successive |
Valid contexts: Default value: 60s |
|
The body of a request sent to an upstream server may be altered by setting this directive. |
Valid contexts: Default value: |
|
Rewrites the contents of the headers sent to an upstream server; this directive may also be used to not send certain headers by setting its value to the empty string. |
Valid contexts: Default value: |
|
The path to a PEM-encoded file of the certificate to use for authenticating with an HTTPS upstream server. |
Valid contexts: Default value: |
|
The path to a PEM-encoded file of the secret key to use to use for authenticating with an HTTPS upstream server. |
Valid contexts: Default value: |
|
Sets whether or not SSL sessions may be reused when proxying. |
Valid contexts: Default value: |
|
Enables storing responses retrieved from an upstream server as files on disk. The |
Valid contexts: Default value: |
|
Sets file access permissions for the newly-created |
Valid contexts: Default value: |
|
Limits the amount of data buffered to a temporary file at one time so that NGINX will not be blocked for too long on a single request. |
Valid contexts: Default value: |
|
A directory where temporary files may be buffered as they are proxied from the upstream server, optionally multilevel deep. If a second, third, or fourth parameter is given, these specify a subdirectory hierarchy with the parameter value as the number of characters in the subdirectory name. |
Valid contexts: Default value: |
|
If a timeout beyond the default of 24 hours is required, this directive can be used. |
Valid contexts: Default value: |
|
Activates randomly choosing a file to be served to the client when a URI ending with |
Valid context: Default value: |
|
If possible, the |
Valid contexts: Default value: |
|
Sets the header whose value is used as the client IP address when |
Valid contexts: Default value: |
|
Works with |
Valid contexts: Default value: |
|
Enables doing more than one redirect using the |
Valid contexts: Default value: |
|
The bucket size of the valid referers hash tables. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Valid contexts: Default value: | |
|
With this directive enabled, connections that have been timed out will immediately be reset, freeing all associated memory. The default value is to leave the socket in the |
Valid contexts: Default value: |
|
Configures one or more |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Stops processing and returns the specified code to the client. The nonstandard code, |
Valid contexts: Default value: |
|
For more information on this directive, refer to the table (The |
Valid contexts: Default value: |
|
Activates notice level logging of rewrites to the |
Valid contexts: Default value: |
|
Sets the path to the document root. Files are found by appending the URI to the value of this directive. |
Valid contexts: Default value: |
|
Allows access if all or any of the |
Valid contexts: Default value: |
|
This is deprecated. Use the |
Valid contexts: Default value: |
|
Valid context: Default value: | |
|
If non-zero, NGINX will try to minimize the number of |
Valid contexts: Default value: |
|
This directive sets a timeout between two successive |
Valid contexts: Default value: |
|
Enables using |
Valid contexts: Default value: |
|
Sets the maximum size of data to copy in one |
Valid contexts: Default value: |
|
Creates a new configuration context, defining a virtual host. The |
Valid context: Default value: |
|
For more information on this directive, refer to the table (The |
Valid context: Default value: |
|
Creates a new configuration context, defining a |
Valid context: Default value: |
|
Valid context: Default value: | |
|
Sets the name of the server, which is used in the following ways:
|
Valid contexts: Default value: |
|
Activates using the first value of the
|
Valid contexts: Default value: |
|
Valid context: Default value: | |
|
Valid context: Default value: | |
|
Disables sending the NGINX version string in error messages and the |
Valid contexts: Default value: |
|
Valid context: Default value: | |
|
Defines the connecting address(es) from which the client IP will be extracted from the |
Valid contexts: Default value: |
|
The size of the slice to use when splitting a request into smaller, cacheable subrequests. |
Valid contexts: Default value: |
|
Sets the supported SASL client authentication mechanism. It can be one or more of |
Valid contexts: Default values: |
|
Indicates the SMTP capabilities that are supported by the backend server. |
Valid contexts: Default value: |
|
Sets the TCP |
Valid contexts: Default value: |
|
Defines the charset of a response. If it is different from the defined charset, a conversion is performed. |
Valid contexts: Default value: |
|
Creates a context in which variables appropriate to A/B (or split) testing are set. The string specified in the first parameter is hashed using |
Valid context: default value: |
|
Valid contexts: Default value: | |
|
Sets the minimum size of a file above which it should be sent using |
Valid contexts: Default value: |
|
Suppresses the error message normally output when an error occurs during SSI processing. |
Valid contexts: Default value: |
|
Lists the MIME types of a response in addition to |
Valid contexts: Default value: |
|
Sets the maximum length of values for parameters used in Server Side Includes. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Indicates if this context should support the SSL/TLS transactions. |
Valid contexts: Default value: |
|
The size of the buffer to use for sending data. Set |
Valid contexts: Default value: |
|
The path to the file containing the SSL certificate for this |
Valid contexts: Default value: |
|
The path to the PEM-encoded SSL certificate(s) for this virtual server. |
Valid contexts: Default value: |
|
This directive specifies the path to the file containing the SSL certificate's secret key. |
Valid contexts: Default value: |
|
The path to the PEM-encoded SSL secret key for this virtual server. |
Valid contexts: Default value: |
|
The ciphers that should be supported in this virtual server context (OpenSSL format). |
Valid contexts: Default value: |
|
The path to the file containing the PEM-encoded public CA certificate(s) of the certificate authorities used to sign client certificates. |
Valid contexts: Default value: |
|
The path to the file containing the PEM-encoded certificate revocation list (CRL) for the client certificates that are to be verified. |
Valid contexts: Default value: |
|
The path to a file containing the DH parameters, used for the EDH ciphers. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Valid context: Default value: | |
|
The path to a file, which contains passphrases for the secret keys used, one per line. |
Valid contexts: Default value: |
|
Indicates that the server's ciphers are to be preferred over the client's ciphers when using the SSLv3 and TLS protocols. |
Valid contexts: Default value: |
|
Indicates that SSLv3 and TLSv1 server ciphers are preferred over the client's ciphers. |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Valid contexts: Default value: | |
|
Sets the type and size of the SSL cache to store the session parameters. A cache can be one of the following types:
|
Valid contexts: Default value: |
|
Sets the type and size of the SSL cache to store session parameters. A cache can be one of the following types:
|
Valid contexts: Default value: |
|
This directive specifies how long the client can use the same SSL parameters, provided they are stored in the cache. |
Valid contexts: Default value: |
|
This directive specifies how long the client can use the same SSL parameters, provided they are stored in the cache. |
Valid contexts: Default value: |
|
This directive enables the stapling of OCSP responses. The CA certificate of the server's issuer should be contained in the file specified by |
Valid contexts: Default value: |
|
This directive specifies the path to a DER-formatted file containing the stapled OCSP response. |
Valid contexts: Default value: |
|
This directive specifies a URL specifying the OCSP responder. Only URLs beginning with |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
This directive specifies the path to a file containing PEM-formatted SSL certificates of the CA's signing client certificates and OCSP responses when |
Valid contexts: Default value: |
|
Enables the verification of SSL client certificates. If the optional parameter is specified, a client certificate will be requested and, if present, verified. If the |
Valid contexts: Default value: |
|
Sets how many signers will be checked before declaring the certificate invalid. |
Valid contexts: Default value: |
|
Indicates whether or not
|
Valid contexts: Default value: |
|
The string to be matched without regards to case and the string to be substituted into that match. The substitution string may contain variables. |
Valid contexts: Default value: |
|
Setting this directive to |
Valid contexts: Default value: |
|
Lists the MIME types of a response in addition to |
Valid contexts: Default value: |
|
Enables or disables the
|
Valid contexts: Default value: |
|
This directive is relevant only when the |
Valid contexts: Default value: |
|
A named thread pool used for file I/O, so worker processes don't block. |
Valid context: Default value: |
|
The amount of time NGINX will wait before a connection to the backend server is finalized. |
Valid contexts: Default value: |
|
Specifies how often |
Valid context: Default value: |
|
Tests the existence of files given as parameters. If none of the previous files are found, the last entry is used as a fallback, so ensure that this path or named location exists. |
Valid contexts: Default value: |
|
Sets up a map of MIME types to filename extensions. NGINX ships with a |
Valid contexts: Default value: This value is as follows:
|
|
Valid contexts: Default value: | |
|
Valid contexts: Default value: 1024 | |
|
Enables the use of the underscore character in client request headers. If left at the default value |
Valid contexts: Default value: |
|
Controls whether or not warnings about uninitialized variables are logged. |
Valid contexts: Default value: |
|
Sets up a named context in which a group of servers is defined. |
Valid context: Default value: |
|
The |
Valid context: Default value: |
|
The user and group under which the worker processes will run is configured using this parameter. If the group is omitted, a group name equal to that of the user will be used. |
Valid context: Default value: |
|
Activates the module, according to the following parameters:
|
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Sets the age of the cookie. If the keyword |
Valid contexts: Default value: |
|
Sets the first character of the tail of the |
Valid contexts: Default value: |
|
Valid contexts: Default value: | |
|
Valid contexts: Default value: | |
|
Valid contexts: Default value: | |
|
Identity of the service that set the cookie. For example, the default value for Version 2 cookies is the IP address of the server that set the cookie. |
Valid contexts: Default value: The IP address of the server |
|
Defines the values of the
|
Valid context: Default value: |
|
Valid context: Default value: | |
|
The maximum size of the hash that holds the remaining variables. |
Valid context: Default value: |
|
The number of open asynchronous I/O operations for a single worker process when using |
Valid context: Default value: |
|
This directive configures the maximum number of simultaneous connections that a worker process may have open. This includes, but is not limited to, the client connections and connections to upstream servers. |
Valid context: Default value: |
|
Binds worker processes to CPU sets, as specified by a bitmask. This directive is only available on FreeBSD and Linux. |
Valid context: Default value: |
|
Sets the scheduling priority for worker processes. This directive works like the |
Valid context: Default value: |
|
This is the number of worker processes that will be started. These processes will handle all connections made by clients. Choosing the right number is a complex process; a good rule of thumb is to set this equal to the number of CPU cores. |
Valid context: Default value: |
|
Valid context: Default value: | |
|
Changes the limit on the number of open files of a running process. |
Valid context: Default value: |
|
Changes the limit on the number of pending signals of a running process when using the |
Valid context: Default value: |
|
The current working directory for worker processes. It should be writable by the worker to produce core files. |
Valid context: Default value: |
|
The SMTP protocol allows checking based on the |
Valid contexts: Default value: |
|
The path to the DTD that declares the character entities referenced in the XML to be processed. |
Valid contexts: default value: |
|
Whether or not to preserve the |
Valid contexts: Default value: |
|
Parameters passed to the stylesheets, whose values are the |
Valid contexts: Default value: |
|
Parameters passed to the stylesheets, whose values are strings. |
Valid contexts: Default value: |
|
The path to an XSLT stylesheet used to transform an XML response. Parameters may be passed as a series of key/value pairs. |
Valid context: Default value: |
|
Lists the MIME types of a response in addition to |
Valid contexts: Default value: |