server {
#     https://serverfault.com/questions/798734/use-variable-for-server-name-in-nginx#
#     server_name $servername;
    server_name "ts.moicen.com";
    listen 443 ssl;
    listen 80;
    client_max_body_size 10M;

    # disable in local test env
     ssl_certificate /etc/letsencrypt/live/moicen.com/fullchain.pem; # managed by Certbot
     ssl_certificate_key /etc/letsencrypt/live/moicen.com/privkey.pem; # managed by Certbot

    set $huiwing_htyts_rust "127.0.0.1:3003"; # huiwing 仓库 htyts（Rust）
    set $htyuc "http://127.0.0.1:3000"; #htyuc host
    set $resty_loc "/usr/local/openresty";

    location /api/v1/ts/ {
        add_header Access-Control-Allow-Origin $http_origin always;
        add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS' always;
        add_header Access-Control-Allow-Headers 'Authorization,HtyAdminToken,HtySudoerToken,HtyHost,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type' always;
        add_header Access-Control-Allow-Credentials true always;
        add_header Access-Control-Max-Age 86400 always;
        if ($request_method = 'OPTIONS') {
            return 200;
        }
        proxy_pass http://$huiwing_htyts_rust/api/v1/ts/;
    }

    location /api/v2/ts/ {
        add_header Access-Control-Allow-Origin $http_origin always;
        add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS' always;
        add_header Access-Control-Allow-Headers 'Authorization,HtyAdminToken,HtySudoerToken,HtyHost,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type' always;
        add_header Access-Control-Allow-Credentials true always;
        add_header Access-Control-Max-Age 86400 always;
        if ($request_method = 'OPTIONS') {
            return 200;
        }
        proxy_pass http://$huiwing_htyts_rust/api/v1/ts/;
    }
}

# server {
#   listen 80;
#   server_name "ts.moicen.com";
#   location / {
#     return 301 https://$host$request_uri;
#   }
# }