server {
  listen 80;
  server_name _;

  root /usr/share/nginx/html;
  index index.html;
  server_tokens off;
  charset utf-8;

  gzip on;
  gzip_vary on;
  gzip_proxied any;
  gzip_min_length 1024;
  gzip_comp_level 5;
  gzip_types
    text/plain
    text/css
    text/xml
    text/javascript
    application/javascript
    application/json
    application/xml
    application/xml+rss
    application/manifest+json
    image/svg+xml;

  add_header X-Content-Type-Options "nosniff" always;
  add_header X-Frame-Options "SAMEORIGIN" always;
  add_header Referrer-Policy "strict-origin-when-cross-origin" always;
  add_header Permissions-Policy "camera=(), geolocation=(), microphone=()" always;

  location = /healthz {
    access_log off;
    add_header Content-Type text/plain;
    add_header Cache-Control "no-store";
    return 200 'ok';
  }

  location = /runtime-config.js {
    add_header Cache-Control "no-store";
    try_files $uri =404;
  }

  location = /index.html {
    add_header Cache-Control "no-store";
    try_files $uri =404;
  }

  location /assets/ {
    add_header Cache-Control "public, max-age=31536000, immutable";
    try_files $uri =404;
  }

  location / {
    try_files $uri $uri/ /index.html;
  }

  error_page 500 502 503 504 /50x.html;

  location = /50x.html {
    root /usr/share/nginx/html;
  }
}