upstream php-handler {
    server localhost:9000;
}

server {
    listen 443      ssl http2;
    listen [::]:443 ssl http2;
    server_name {{ tpl .Values.fqdn . }};

    # Use Mozilla's guidelines for SSL/TLS settings
    # https://mozilla.github.io/server-side-tls/ssl-config-generator/
    ssl_certificate      /etc/letsencrypt/live/{{ tpl .Values.fqdn . }}/fullchain.pem;
    ssl_certificate_key  /etc/letsencrypt/live/{{ tpl .Values.fqdn . }}/privkey.pem;

    location = /robots.txt {
        allow all;
        log_not_found off;
        access_log off;
    }

    location / {
        proxy_pass http://{{ .Release.Name }}-front.{{ .Release.Namespace }}.svc.{{ .Values.clusterDomain }};
    }
}