fastcgi_pass_header Authorization; # required if the Arsse is to perform its own HTTP authentication # Remove X-Powered-By, which is an information leak fastcgi_hide_header X-Powered-By; fastcgi_pass_request_body on; fastcgi_pass_request_headers on; fastcgi_intercept_errors off; fastcgi_buffering off; fastcgi_param REQUEST_METHOD $request_method; fastcgi_param CONTENT_TYPE $content_type; fastcgi_param CONTENT_LENGTH $content_length; fastcgi_param REQUEST_URI $uri; fastcgi_param QUERY_STRING $query_string; fastcgi_param HTTPS $https if_not_empty; fastcgi_param REMOTE_USER $remote_user; fastcgi_pass unix:/var/run/php/arsse.sock; fastcgi_param SCRIPT_FILENAME /app/arsse/arsse.php;