nginx.conf

user  nginx;
worker_processes  1;

error_log  /var/log/nginx/error.log warn;
pid        /var/run/nginx.pid;

events {
    worker_connections  1024;
}

http {
    include       /etc/nginx/mime.types;
    default_type  application/octet-stream;

    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
                      '"$http_user_agent" "$http_x_forwarded_for"';

    access_log  /var/log/nginx/access.log  main;

    sendfile        on;
    #tcp_nopush     on;

    keepalive_timeout  65;

    #gzip  on;

    server_tokens off;

    server {
        listen       80;
        server_name  localhost;

        #charset koi8-r;
        #access_log  /var/log/nginx/host.access.log  main;

        location / {
            root   /usr/share/nginx/html;
            index  index.html index.htm;

            add_header Access-Control-Allow-Origin "https://api.ipa.ucdavis.edu" always;
            add_header Cache-Control "no-cache";
            add_header Content-Security-Policy "default-src 'self'; connect-src https://api.ipa.ucdavis.edu https://dw.dss.ucdavis.edu; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; frame-src 'self' https://www.youtube.com;";
            add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";
            add_header X-Content-Type-Options "nosniff";

            rewrite ^/admin(.*)(?<!\.html)$ /admin.html last;
            rewrite ^/workgroups(.*)(?<!\.html)$ /workgroup.html last;
            rewrite ^/summary(.*)(?<!\.html)$ /summary.html last;
            rewrite ^/courses(.*)(?<!\.html)$ /course.html last;
            rewrite ^/assignments(.*)(?<!\.html)$ /assignment.html last;
            rewrite ^/teachingCalls(.*)(?<!\.html)$ /teachingCall.html last;
            rewrite ^/scheduling(.*)(?<!\.html)$ /scheduling.html last;
            rewrite ^/supportAssignments(.*)(?<!\.html)$ /supportAssignment.html last;
            rewrite ^/supportCalls(.*)(?<!\.html)$ /supportCall.html last;
            rewrite ^/budget(.*)(?<!\.html)$ /budget.html last;
            rewrite ^/registrarReconciliationReport(.*)(?<!\.html)$ /registrarReconciliationReport.html last;
            rewrite ^/scheduleSummaryReport(.*)(?<!\.html)$ /scheduleSummaryReport.html last;
            rewrite ^/teachingCallResponseReport(.*)(?<!\.html)$ /teachingCallResponseReport.html last;
            rewrite ^/workloadSummaryReport(.*)(?<!\.html)$ /workloadSummaryReport.html last;
            rewrite ^/supportCallResponseReport(.*)(?<!\.html)$ /supportCallResponseReport.html last;
            rewrite ^/reports(.*)(?<!\.html)$ /reports.html last;
            rewrite ^/instructionalSupport(.*)(?<!\.html)$ /instructionalSupport.html last;
        }

        #error_page  404              /404.html;

        # redirect server error pages to the static page /50x.html
        #
        error_page   500 502 503 504  /50x.html;
        location = /50x.html {
            root   /usr/share/nginx/html;
        }

        # proxy the PHP scripts to Apache listening on 127.0.0.1:80
        #
        #location ~ \.php$ {
        #    proxy_pass   http://127.0.0.1;
        #}

        # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
        #
        #location ~ \.php$ {
        #    root           html;
        #    fastcgi_pass   127.0.0.1:9000;
        #    fastcgi_index  index.php;
        #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
        #    include        fastcgi_params;
        #}

        # deny access to .htaccess files, if Apache's document root
        # concurs with nginx's one
        #
        #location ~ /\.ht {
        #    deny  all;
        #}
    }
}