使用域名的nginx的配置文件

worker_processes  1;

events {
    worker_connections  1024;
}


http {
    include       mime.types;
    default_type  application/octet-stream;

    sendfile        on;
    client_max_body_size 100m;

    keepalive_timeout  65;

        upstream tomcat_server_pool{
        server 127.0.0.1:3000 weight=10;

    }


    server {
         #SSL 访问端口号为 443
         listen 443 ssl;
                 #填写绑定证书的域名
                        server_name yourheart.live;
                 #证书文件名称
                        ssl_certificate yourheart.live_bundle.crt;
                 #私钥文件名称
                        ssl_certificate_key yourheart.live.key;
                        ssl_session_timeout 5m;
                 #请按照以下协议配置
                        ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
                 #请按照以下套件配置，配置加密套件，写法遵循 openssl 标准。
                        ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;
                ssl_prefer_server_ciphers on;

        location / {

                    proxy_pass http://tomcat_server_pool;
               proxy_set_header X-Real-IP $remote_addr;
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
            proxy_set_header Host $http_host;
            root   html;
            index  index.html index.htm;
        }
    }
        server {
                listen 80;
                #填写绑定证书的域名
                server_name yourheart.live;
                #把http的域名请求转成https
                return 301 https://$host$request_uri;

          }
}