в настройках чисто nginx 1.17 выбран
location / { # Force index.php routing (if not found) # try_files $uri $uri/ /index.php?$query_string; # Force index.php routing (all requests) # rewrite ^/(.*)$ /index.php?/$1 last; location /mp3 { rewrite ^/mp3\/(.+)\/(.+)\/([^/]+)\.mp3$ /download.php?vkid=$1&link=$2&fn=$3&stream=1; # error_page 403 /disabled/index.html; deny all; } location /mp3r { proxy_pass $arg_url; proxy_buffering off; # add_header Content-Length $arg_size; add_header Content-Disposition "attachment; filename*=UTF-8''${arg_cd}.mp3"; add_header Content-Type audio/mpeg; add_header Accept-Ranges bytes; add_header Content-Description "File Transfer"; add_header Content-Transfer-Encoding binary; if ($arg_range !~* "-1") { #add_header Content-Range "bytes ${arg_range}"; #header("HTTP/1.1 206 Partial Content"); #header("Content-Range: bytes $start-$end/$size"); } } location ~ \.php$ { try_files $fastcgi_script_name =404; # limit_conn addr 16; # limit_req zone=flood burst=32 nodelay; # add_header X-Frame-Options 'SAMEORIGIN' always; # add_header Referrer-Policy 'no-referrer-when-downgrade' always; # CSP syntax: <host-source> <scheme-source>(http: https: data: mediastream: blob: filesystem:) 'self' 'unsafe-inline' 'unsafe-eval' 'none' # Content-Security-Policy-Report-Only (report-uri https://site.com/csp/) # add_header Content-Security-Policy "default-src 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; object-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; base-uri 'none'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests" always; fastcgi_pass backend; include '%sprogdir%/userdata/config/nginx_fastcgi_params.txt'; } }