server {
    server_name accounting.asolvo.de;
    location = /robots.txt {
        add_header Content-Type text/plain;
        return 200 "User-agent: *\nDisallow: /\n";
    }
    #SSL configuration
    listen 443 ssl http2;
    listen [::]:443 ssl http2;
    #include snippets/letsencrypt.conf;
    include snippets/ssl-params.conf;
    proxy_set_header X-Forwarded-For $remote_addr;
    fastcgi_buffers 16 32k;
    fastcgi_buffer_size 64k;
    client_max_body_size 48M;
    client_body_buffer_size 128k;
    client_header_buffer_size 5120k;
    large_client_header_buffers 32 5120k;
    proxy_max_temp_file_size 0;
    proxy_buffering off;
    #only works in nginx+
    #set_cookie_flag HttpOnly Secure;
    #proxy_cookie_path / "/; secure; HTTPOnly; SameSite=strict";
    location / {
        proxy_pass http://localhost:5001;
        proxy_intercept_errors on;
        error_page 404 502 503 504 = @fallback;
    }
    location @fallback {
        root /var/www/html;
        index maintenance.html;
    }
    ssl_certificate /etc/letsencrypt/live/accounting.asolvo.de/fullchain.pem; # managed by Certbot
    ssl_certificate_key /etc/letsencrypt/live/accounting.asolvo.de/privkey.pem; # managed by Certbot
}