в настройках чисто nginx 1.17 выбран
location / {
# Force index.php routing (if not found)
# try_files $uri $uri/ /index.php?$query_string;
# Force index.php routing (all requests)
# rewrite ^/(.*)$ /index.php?/$1 last;
location /mp3 {
rewrite ^/mp3\/(.+)\/(.+)\/([^/]+)\.mp3$ /download.php?vkid=$1&link=$2&fn=$3&stream=1;
# error_page 403 /disabled/index.html;
deny all;
}
location /mp3r {
proxy_pass $arg_url;
proxy_buffering off;
# add_header Content-Length $arg_size;
add_header Content-Disposition "attachment; filename*=UTF-8''${arg_cd}.mp3";
add_header Content-Type audio/mpeg;
add_header Accept-Ranges bytes;
add_header Content-Description "File Transfer";
add_header Content-Transfer-Encoding binary;
if ($arg_range !~* "-1") {
#add_header Content-Range "bytes ${arg_range}";
#header("HTTP/1.1 206 Partial Content");
#header("Content-Range: bytes $start-$end/$size");
}
}
location ~ \.php$ {
try_files $fastcgi_script_name =404;
# limit_conn addr 16;
# limit_req zone=flood burst=32 nodelay;
# add_header X-Frame-Options 'SAMEORIGIN' always;
# add_header Referrer-Policy 'no-referrer-when-downgrade' always;
# CSP syntax: <host-source> <scheme-source>(http: https: data: mediastream: blob: filesystem:) 'self' 'unsafe-inline' 'unsafe-eval' 'none'
# Content-Security-Policy-Report-Only (report-uri https://site.com/csp/)
# add_header Content-Security-Policy "default-src 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; object-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; base-uri 'none'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests" always;
fastcgi_pass backend;
include '%sprogdir%/userdata/config/nginx_fastcgi_params.txt';
}
}