Syntax: http2_max_requests number; Default: http2_max_requests 1000; Context: http, server, location This directive appeared in version 1.11.6. Sets the maximum number of requests that can be served through one HTTP/2 connection, after which the connection is closed and the client should use a new connection.

Syntax: deny address | CIDR | unix: | all; Default: — Context: stream, server Denies access for the specified network or address. If the special value unix: is specified, denies access for all UNIX-domain sockets.

Syntax: ssl_verify_client on | off | optional | optional_no_ca; Default: ssl_verify_client off; Context: http, server Enables verification of client certificates. The verification result is stored in the $ssl_client_verify variable. The optional parameter (0.8.7+) requests the client certificate and verifies it if the certificate is present. The optional_no_ca parameter (1.3.8, 1.2.5) requests the client certificate but does not require it to be signed by a trusted CA

Syntax: satisfy all | any; Default: satisfy all; Context: http, server, location Allows access if all (all) or at least one (any) of the ngx_http_access_module, ngx_http_auth_basic_module, ngx_http_auth_request_module, or ngx_http_auth_jwt_module modules allow access. Example: location / { satisfy any; allow 192.168.1.0/32; deny all; auth_basic "closed site"; auth_basic_user_file conf/htpasswd; }

Syntax: ssl_client_certificate file; Default: — Context: stream, server This directive appeared in version 1.11.8. Specifies a file with trusted CA certificates in the PEM format used to verify client certificates. The list of certificates will be sent to clients. If this is not desired, the ssl_trusted_certificate directive can be used.

Syntax: least_time header | last_byte; Default: — Context: upstream This directive appeared in version 1.7.10. Specifies that a group should use a load balancing method where a request is passed to the server with the least average response time and least number of active connections, taking into account weights of servers. If there are several such servers, they are tried in turn using a weighted round-robin balancing method. If the header parameter is specified, time to receiv

Syntax: userid on | v1 | log | off; Default: userid off; Context: http, server, location Enables or disables setting cookies and logging the received cookies: on enables the setting of version 2 cookies and logging of the received cookies; v1 enables the setting of version 1 cookies and logging of the received cookies; log disables the setting of cookies, but enables logging of the received cookies; off disables the setting of cookies and logging of the rec

Syntax: http2_max_concurrent_streams number; Default: http2_max_concurrent_streams 128; Context: http, server Sets the maximum number of concurrent HTTP/2 streams in a connection.

Syntax: dav_access users:permissions ...; Default: dav_access user:rw; Context: http, server, location Sets access permissions for newly created files and directories, e.g.: dav_access user:rw group:rw all:r; If any group or all access permissions are specified then user permissions may be omitted: dav_access group:rw all:r;

Syntax: log_format name [escape=default|json] string ...; Default: log_format combined "..."; Context: http Specifies log format. The escape parameter (1.11.8) allows setting json or default characters escaping in variables, by default, default escaping is used. The log format can contain common variables, and variables that exist only at the time of a log write: $bytes_sent the number of bytes sent to a client $connection connection serial number $connection