Nginx configuration for Pydio with SSL

Update 2014-07-19:
Adjusted the order of the statement to fix public downloads.
Update 2014-07-02:
Corrected permission. thanks to Koen Vermeer and Maruprez for reporting the issue.

As interest for nginx is growing, I thought it way it time to update my Pydio tutorial with the nginx configuration.

Generate a self-signed SSL certificate:

On Debian:

Adjust the permissions:

Create configuration file:

/etc/nginx/sites-available/pydio.conf

My root is /usr/share/ajaxplorer/ but it may not be the case on a new install! Be careful to replace this path with your installation path.
You will also need to replace c.domain.com with your domain.

Activate the configuration:

 

9 Comments

  1. Koen Vermeer May 15, 2014 5:55 pm  Reply

    With this setup, I get the ‘security breach’ error saying that the data folder is not correctly protected. Am I right to conclude that that check is simply wrong, given that you have the deny all statement for /data/?

  2. Maruprez July 1, 2014 10:57 pm  Reply

    I get the same warning while running Pydio Diagnostic Tool

    “it seems that your data/ folder is not correctly protected….”

    Please could you confirm, that it’s not a configuration issue?

    Thanks

    • Martin DENIZET July 1, 2014 11:33 pm  Reply

      Thank you for notifying me. I didn’t have the problem at the time I wrote this article. I’ll have a look.

      • Martin DENIZET July 2, 2014 12:30 am  Reply

        There is indeed a problem with the configuration.
        The check tool /usr/share/pydio/core/tests/startup.phtml tests that the location data/cache/index.html return a code 200. which it does.
        I’ll be looking for a fix in the configuration.

    • Martin DENIZET July 2, 2014 2:51 am  Reply

      Indeed, the configuration I taken from http://pyd.io/nginx/ is wrong. I updated the configuration file and now it passes the tests.
      I’ll run other tests to make sure everything behaves as expected.
      Thanks again for reporting the issue.

  3. Alexey November 16, 2014 8:10 pm  Reply

    What’s about nginx rewrite rules for webdav???
    I wasn’t lucky to get it working – always get sabredav message – “Not authenticated!”

    • Martin DENIZET November 19, 2014 5:23 pm  Reply

      Sorry Alexey, I didn’t configure Pydio with webdav so I’m not aware of the configuration requirements for it.
      If you know the changes to be made, I’ll be looking forward hear about it 😀
      Cheers,

  4. dorset November 19, 2014 11:59 am  Reply

    Thanks for your article.
    It solved my problem.The ‘security breach’ error disappear.
    But there is a little error in the following conf.

    location ~ ^/(conf|data|plugins) {deny all;}

    The plugins dir must be accessible by web.

    • Martin DENIZET November 19, 2014 5:19 pm  Reply

      Hello,
      Thank you for pointing that out :)! I updated the article.
      Cheers,

Leave a Reply