server {
  listen 8080;
  client_max_body_size 100M;
  resolver VPC_NAMESERVER;
  set $csp_header CSP_HEADER;

  add_header Content-Security-Policy $csp_header;
  add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";

  gzip on;
  gzip_comp_level 4;
  gzip_types text/css application/javascript;

  location ~ ^/events$ {
    proxy_ssl_server_name on;

    if ($request_method = OPTIONS) {
      add_header Access-Control-Allow-Origin $http_origin;
      add_header Access-Control-Allow-Methods 'DELETE, GET, OPTIONS, PATCH, POST, PUT';
      add_header 'Access-Control-Allow-Headers' 'DNT,X-Realm-Id,X-Session-Token, X-Channel, Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
      add_header 'Access-Control-Max-Age' 1728000;
      add_header Content-Type text/plain;
      add_header Content-Length 0;
      return 204;
    }

    add_header Access-Control-Allow-Origin $http_origin;
    add_header Access-Control-Allow-Methods 'DELETE, GET, OPTIONS, PATCH, POST, PUT';
    add_header 'Access-Control-Allow-Headers' 'DNT,X-Realm-Id,X-Session-Token, X-Channel, Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';

    set $config_service_base_url JANUS_API_URL;
    proxy_read_timeout 120;
    proxy_next_upstream error;
    proxy_pass $config_service_base_url/events/json;
  }

  location / {
    root   /usr/share/nginx/html;
    index  index.html index.htm;
    try_files $uri $uri/ /index.html;
  }

  error_page   500 502 503 504  /50x.html;
  location = /50x.html {
    root   /usr/share/nginx/html;
  }
}