Timmy_Foundation/the-nexus
16
1
Fork 2
Code Issues 102 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Serve the Nexus from the VPS — nginx config for the-nexus.alexanderwhitestone.com #211

New Issue
Closed
opened 2026-03-24 04:30:11 +00:00 by Timmy · 2 comments
Timmy commented 2026-03-24 04:30:11 +00:00
Owner
Copy Link

Create an nginx.conf that serves the Nexus static files. Handle: HTTPS redirect, gzip, cache headers for assets, WebSocket proxy for /ws. Include a deploy script that pulls latest main and restarts. Document the DNS setup needed.
Files: nginx.conf, deploy.sh

Create an nginx.conf that serves the Nexus static files. Handle: HTTPS redirect, gzip, cache headers for assets, WebSocket proxy for /ws. Include a deploy script that pulls latest main and restarts. Document the DNS setup needed. Files: nginx.conf, deploy.sh
Timmy added the p1-important3d-world labels 2026-03-24 04:30:11 +00:00
claude self-assigned this 2026-03-24 04:30:22 +00:00
claude commented 2026-03-24 04:32:39 +00:00
Member
Copy Link

PR created: http://143.198.27.163:3000/Timmy_Foundation/the-nexus/pulls/217

nginx.conf — serves the-nexus.alexanderwhitestone.com with HTTP→HTTPS redirect, TLS (Let's Encrypt), gzip, long-lived cache headers for hashed assets, no-cache on index.html, and /ws WebSocket proxy to localhost:8080. Static traffic proxies to the nexus-main Docker container on port 4200.

deploy.sh — updated to git reset --hard origin/main before rebuilding and restarting, then reloads nginx.

DNS needed: A record the-nexus.alexanderwhitestone.com → <VPS_IP>, then certbot certonly --nginx -d the-nexus.alexanderwhitestone.com.

PR created: http://143.198.27.163:3000/Timmy_Foundation/the-nexus/pulls/217 **nginx.conf** — serves `the-nexus.alexanderwhitestone.com` with HTTP→HTTPS redirect, TLS (Let's Encrypt), gzip, long-lived cache headers for hashed assets, `no-cache` on `index.html`, and `/ws` WebSocket proxy to `localhost:8080`. Static traffic proxies to the nexus-main Docker container on port 4200. **deploy.sh** — updated to `git reset --hard origin/main` before rebuilding and restarting, then reloads nginx. **DNS needed**: A record `the-nexus.alexanderwhitestone.com → <VPS_IP>`, then `certbot certonly --nginx -d the-nexus.alexanderwhitestone.com`.
Timmy closed this issue 2026-03-24 04:35:56 +00:00
claude commented 2026-03-24 04:36:06 +00:00
Member
Copy Link

PR ready: http://143.198.27.163:3000/Timmy_Foundation/the-nexus/pulls/217

nginx.conf — serves the-nexus.alexanderwhitestone.com via proxy to the nexus-main Docker container (port 4200):

  • HTTP → HTTPS redirect with ACME challenge passthrough
  • TLS via Let's Encrypt (Certbot), TLS 1.2/1.3
  • HSTS, X-Content-Type-Options, X-Frame-Options, Referrer-Policy headers
  • Gzip compression (JS, CSS, JSON, WASM, SVG, fonts)
  • WebSocket proxy for /ws127.0.0.1:8080 (24h timeout)
  • Long-lived cache (1 year, immutable) for JS/CSS/fonts/images
  • index.html always revalidated (no-cache)
  • DNS setup and install steps documented in header comments

deploy.sh — updated to git pull latest main, rebuild Docker container, and reload nginx (sudo nginx -t && sudo systemctl reload nginx). Supports main (default) and staging modes.

PR ready: http://143.198.27.163:3000/Timmy_Foundation/the-nexus/pulls/217 **nginx.conf** — serves `the-nexus.alexanderwhitestone.com` via proxy to the nexus-main Docker container (port 4200): - HTTP → HTTPS redirect with ACME challenge passthrough - TLS via Let's Encrypt (Certbot), TLS 1.2/1.3 - HSTS, X-Content-Type-Options, X-Frame-Options, Referrer-Policy headers - Gzip compression (JS, CSS, JSON, WASM, SVG, fonts) - WebSocket proxy for `/ws` → `127.0.0.1:8080` (24h timeout) - Long-lived cache (1 year, immutable) for JS/CSS/fonts/images - `index.html` always revalidated (no-cache) - DNS setup and install steps documented in header comments **deploy.sh** — updated to git pull latest main, rebuild Docker container, and reload nginx (`sudo nginx -t && sudo systemctl reload nginx`). Supports `main` (default) and `staging` modes.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
222-epic
3d-world
CI
Continuous integration, runners, workflow issues
 QA
Quality assurance, testing, and production audit
 actionable
agent-presence
aistudio-ready
assigned-aistudio
assigned-claude
assigned-claw-code
Queued for Code Claw (qwen/openrouter)
 assigned-gemini
assigned-groq
assigned-kimi
Dispatched to Kimi via OpenClaw
 assigned-kimi
assigned-perplexity
assigned-sonnet
blocked
Blocked by external dependency or merge conflict
 claude-ready
claw-code-done
Code Claw completed this task
 claw-code-in-progress
Code Claw is actively working
 deprioritized
duplicate
epic
Epic / umbrella issue
 gemini-api
Gemini API integration
 gemini-review
google-ai-ultra
Google AI Ultra integration work
 groq-ready
harness
identity
Timmy identity and branding
 infrastructure
kimi-done
Kimi completed this task
 kimi-in-progress
Kimi is actively working on this
 kimi-ready
lazzyPit
Lazarus Pit — automated agent resurrection and health recovery
 media-gen
AI media generation (image/video/audio)
 modularization
needs-design
nostr
p0-critical
p1-important
p2-backlog
performance
perplexity-ready
portal
research
Deep research and planning tasks
 security
Security hardening, vulnerability fixes, access control
 sonnet-ready
sovereignty
velocity-engine
Auto-generated by velocity engine
No Label 3d-world p1-important
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
KimiClaw Rockachopa Timmy allegro antigravity bezalel claude claw-code codex-agent ezra gemini google grok groq hermes kimi manus perplexity sonnet
No Assignees claude
2 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Timmy_Foundation/the-nexus#211
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?