# {{ ansible_managed }}

upstream forgejo {
        server 127.0.0.1:{{ forgejo_http_port }};
}

server {
    listen 443 ssl http2; # managed by Certbot
    listen [::]:443 ssl http2; # managed by Certbot

    include ssl.conf;
    server_name {{ forgejo_subdomain }}.{{ host_fqdn }};

    location ~ / {
        include proxy.conf;
        proxy_pass http://forgejo;
    }
}