nginx.conf

events {
    worker_connections  1024;
}

http {
    client_max_body_size 500M;

    upstream elasticsearch {
        server 127.0.0.1:9200;
        keepalive 15;
    }
    upstream kibana {
	    server 127.0.0.1:5601;
	    keepalive 15;
    }

    upstream fulfill {
	    server 127.0.0.1:8000;
	    keepalive 15;
    }

    upstream debug {
        server 127.0.0.1:1234;
        keepalive 15;
    }


    #ssl on;
    auth_basic                "Elasticsearch auth";
   auth_basic_user_file      "/etc/nginx/elasticsearch.passwd";

    ssl_certificate /etc/letsencrypt/live/utext.club/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/utext.club/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

    server {
	    listen 443 ssl;
	    server_name utext.club www.utext.club es.utext.club;
	 
    	location / {
        	proxy_pass http://elasticsearch;
        	proxy_http_version 1.1;
        	proxy_set_header Upgrade $http_upgrade;
        	proxy_set_header Connection 'upgrade';
        	proxy_set_header Host $host;
        	proxy_cache_bypass $http_upgrade;
	    }
    
    ssl_certificate /etc/letsencrypt/live/utext.club/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/utext.club/privkey.pem; # managed by Certbot


    }

    server {
	    listen 443 ssl;
	    server_name kb.utext.club;
	 
    	location / {
        	proxy_pass http://kibana;
        	proxy_http_version 1.1;
        	proxy_set_header Upgrade $http_upgrade;
        	proxy_set_header Connection 'upgrade';
        	proxy_set_header Host $host;
        	proxy_cache_bypass $http_upgrade;
	    }
    
    ssl_certificate /etc/letsencrypt/live/utext.club/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/utext.club/privkey.pem; # managed by Certbot
}

    server {
	    listen 443 ssl;
	    server_name fulfill.utext.club;
	 
    	location / {
        	proxy_pass http://fulfill;
        	proxy_http_version 1.1;
        	proxy_set_header Upgrade $http_upgrade;
        	proxy_set_header Connection 'upgrade';
        	proxy_set_header Host $host;
        	proxy_cache_bypass $http_upgrade;
	    }
    
    ssl_certificate /etc/letsencrypt/live/utext.club/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/utext.club/privkey.pem; # managed by Certbot
}


    server {
	    listen 443 ssl;
	    server_name debug.utext.club;
	 
    	location / {
        	proxy_pass http://debug;
        	proxy_http_version 1.1;
        	proxy_set_header Upgrade $http_upgrade;
        	proxy_set_header Connection 'upgrade';
        	proxy_set_header Host $host;
        	proxy_cache_bypass $http_upgrade;
	    }
    
    ssl_certificate /etc/letsencrypt/live/utext.club/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/utext.club/privkey.pem; # managed by Certbot
}

    server {
    if ($host = debug.utext.club) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


    if ($host = fulfill.utext.club) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


    if ($host = kb.utext.club) {
        return 301 https://$host$request_uri;
    } # managed by Certbot


    if ($host = es.utext.club) {
        return 301 https://$host$request_uri;
    } # managed by Certbot

    if ($host = utext.club) {
        return 301 http://$host$request_uri;
    }

    if ($host = www.utext.club) {
        return 301 https://$host$request_uri;
    }

    if ($host = demo.utext.club) {
        return 301 https://bot.dialogflow.com/utext;
    }

    listen 80 ;
    server_name www.utext.club utext.club kb.utext.club es.utext.club debug.utext.club fulfill.utext.club demo.utext.club;
    return 404; # managed by Certbot
    
    #listen 443 ssl; # managed by Certbot
    ssl_certificate /etc/letsencrypt/live/utext.club/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/utext.club/privkey.pem; # managed by Certbot
    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot

}
}