From e08e8dd6806e9687a6cf9553d2252dc8fffcc641 Mon Sep 17 00:00:00 2001
From: Ajdin Lokvancic <ajdin.lokvancic@vlaanderen.be>
Date: Wed, 20 Jul 2022 10:53:56 +0200
Subject: [PATCH] Add WHMCS

---
 v2/WHMCS/WHMCS | 69 ++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 69 insertions(+)
 create mode 100644 v2/WHMCS/WHMCS

diff --git a/v2/WHMCS/WHMCS b/v2/WHMCS/WHMCS
new file mode 100644
index 0000000..9139961
--- /dev/null
+++ b/v2/WHMCS/WHMCS
@@ -0,0 +1,69 @@
+#{"rootDirectory":"","phpVersion":"7.4"}
+server {
+  listen 80;
+  listen [::]:80;
+  listen 443 ssl http2;
+  listen [::]:443 ssl http2;
+  {{ssl_certificate_key}}
+  {{ssl_certificate}}
+  {{server_name}}
+  {{root}}
+
+  {{nginx_access_log}}
+  {{nginx_error_log}}
+
+  if ($scheme != "https") {
+    rewrite ^ https://$host$uri permanent;
+  }
+
+  location ~ /.well-known {
+    auth_basic off;
+    allow all;
+  }
+
+  {{settings}}
+
+  try_files $uri $uri/ /index.php?$args;
+  index index.php index.html;
+
+  location / {
+    error_page 404 /index.php?$query_string;
+    try_files $uri $uri/ /index.php?$query_string;
+  }
+  location ~ /admin/(client!\.php|search|apps|billing|setup|user|services|addons|domains|utilities|help!\.php|help/license|image/(recent|upload))/?(.*)$ {
+		rewrite ^/(.*)$ /admin/index.php?rp=/admin/$1/$2;
+	}
+
+	location ~ /(login|password|account|store|download|knowledgebase|announcements|clientarea/ssl-certificates|user/(profile|password|security)|cart/(domain/renew)|images/kb)/?(.*)$ {
+    rewrite ^/(.*)$ /index.php?rp=/$1/$2;
+	}
+
+  ## WHMCS Security Advisory 2020-01-28 (https://docs.whmcs.com/Security_Advisory_2020-01-28)
+  location ^~ /vendor/ {
+    deny all;
+    return 403;
+  } 
+
+  location ~ \.php$ {
+    include fastcgi_params;
+    fastcgi_intercept_errors on;
+    fastcgi_index index.php;
+    fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
+    try_files $uri =404;
+    fastcgi_read_timeout 3600;
+    fastcgi_send_timeout 3600;
+    fastcgi_param HTTPS $fastcgi_https;
+    fastcgi_pass 127.0.0.1:{{php_fpm_port}};
+    fastcgi_param PHP_VALUE "{{php_settings}}";
+  }
+
+  location ~* ^.+\.(css|js|jpg|jpeg|gif|png|ico|gz|svg|svgz|ttf|otf|woff|woff2|eot|mp4|ogg|ogv|webm|webp|zip|swf)$ {
+    add_header Access-Control-Allow-Origin "*";
+    expires max;
+    access_log off;
+  }
+
+  if (-f $request_filename) {
+    break;
+  }
+}
\ No newline at end of file