config for production

docker-compose.yml

@@ -76,12 +76,12 @@ services:
     container_name: fusero-nginx
     ports:
       - '14001:80'
-      - '14443:443'
+      - '14443:14443'
     volumes:
-      - ./nginx/nginx.conf.prod:/etc/nginx/conf.d/default.conf:ro
+      - ./nginx/nginx.conf:/etc/nginx/conf.d/default.conf:ro
       - ./nginx/certs:/etc/nginx/certs:ro
     depends_on:
-      - fusero-app-frontend
+      - fusero-app-frontend-dev
       - fusero-app-backend
     networks:
       - fusero-network

frontend/nginx.conf

@@ -1,19 +1,25 @@
 server {
-    listen 80;
+    listen 14443 ssl;
     server_name _;
 
-    root /usr/share/nginx/html;
+    ssl_certificate /etc/nginx/certs/fusero-selfsigned.crt;
-    index index.html;
+    ssl_certificate_key /etc/nginx/certs/fusero-selfsigned.key;
+
+    location ^~ /api/ {
+        proxy_pass http://fusero-app-backend:14000/;
+        proxy_http_version 1.1;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $remote_addr;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
 
     location / {
-        try_files $uri $uri/ /index.html;
+        proxy_pass http://host.docker.internal:8080;
+        proxy_http_version 1.1;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $remote_addr;
+        proxy_set_header X-Forwarded-Proto $scheme;
     }
-
-    location /favicon/ {
-        alias /usr/share/nginx/html/dist/favicon/;
-        access_log off;
-        expires max;
-    }
-
-    # DO NOT proxy /api here — let the global Nginx handle it
 }

nginx/nginx.conf

@@ -1,38 +1,22 @@
-# Nginx SSL reverse proxy config
-
-# Redirect HTTP to HTTPS
 server {
     listen 80;
     server_name _;
-    return 301 https://$host$request_uri;
+
+    location ^~ /api/ {
+        proxy_pass http://fusero-app-backend:14000/;
+        proxy_http_version 1.1;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $remote_addr;
+        proxy_set_header X-Forwarded-Proto $scheme;
     }
 
-# HTTPS server
-server {
-    listen 443 ssl;
-    server_name _;
-
-    ssl_certificate /etc/nginx/certs/fusero-selfsigned.crt;
-    ssl_certificate_key /etc/nginx/certs/fusero-selfsigned.key;
-
-    ssl_protocols TLSv1.2 TLSv1.3;
-    ssl_ciphers HIGH:!aNULL:!MD5;
-
-    # Proxy frontend
     location / {
-        proxy_pass http://fusero-frontend:80;
+        proxy_pass http://host.docker.internal:8080;
+        proxy_http_version 1.1;
         proxy_set_header Host $host;
         proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-For $remote_addr;
-        proxy_set_header X-Forwarded-Proto $scheme;
-    }
-
-    # Proxy API (backend)
-    location /api/ {
-        proxy_pass http://fusero-app-boilerplate:14000/api/;
-        proxy_set_header Host $host;
-        proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
         proxy_set_header X-Forwarded-Proto $scheme;
     }
 }