nginx built with OpenSSL 1.1.1 (TLSv1.3 support) and LDAP support

WIP - Still need templating of LDAP configuration

Features

• Uses Alpine Linux as base
• PCRE with JIT enabled
• HTTP/2.0 (+NPN) support
• Async I/O using threads support
• Cloudflare Dynamic TLS records patch
• Brotli compression support
• ngx_headers_more module from OpenResty
• Cloudlare's HPACK patch for full HPACK header compression support.
• nginx-auth-ldap - LDAP Authentication module for nginx

Usage

docker run --rm --name nginx -v ./htdocs:/var/www -p 80:80 -p 443:443 -d ajoergensen/nginx-libressl:tag

Available tags are stable and mainline

Environment

• PUID: Change the uid of the user running nginx
• PGID: Change the gid of the user running nginx
• CHOWN_WWWDIR: Enable/disable the change of ownership of /var/www to $PUID:$PGID, defaults to TRUE. Note, if /var/www read only this variable will always be FALSE
• WORKER_PROCESSES: Change the value of nginx worker_processes, defaults to auto.
• NGINX_CLIENT_MAX_BODY_SIZE: Set client_max_body_size, default is 50M.
• SERVER_TOKENS: Controls server_tokens. Set to on or off. Default is off
• CUSTOM_SERVER: Sets the Server: header to a custom value. Default is undefined.

Other

Though not defined as a volume, I recommend mapping a folder to /etc/nginx/conf.d to store your vhost definitions.

This image works great with docker-gen and docker-letsencrypt-nginx-proxy-companion (as a drop-in replacement for the nginx-proxy image)

---

Originally based on the official nginx Dockerfile & Wonderfall/boring-nginx - Forked from denji/nginx-libressl