test: basic nginx smoke test (#1365)

* docs: split nginx configuration files to their own directory

Signed-off-by: Xe Iaso <me@xeiaso.net>

* test: add nginx config smoke test based on the config in the docs

Signed-off-by: Xe Iaso <me@xeiaso.net>

---------

Signed-off-by: Xe Iaso <me@xeiaso.net>

test/nginx/conf/nginx/conf.d/server-mimi-techaro-lol.conf

@@ -0,0 +1,29 @@
+# /etc/nginx/conf.d/server-mimi-techaro-lol.conf
+
+server {
+  # Listen on 443 with SSL
+  listen 443 ssl;
+  listen [::]:443 ssl;
+  http2 on;
+
+  # Slipstream via Anubis
+  include "conf-anubis.inc";
+
+  server_name mimi.techaro.lol;
+
+  ssl_certificate /techaro/pki/mimi.techaro.lol/cert.pem;
+  ssl_certificate_key /techaro/pki/mimi.techaro.lol/key.pem;
+}
+
+server {
+  listen unix:/tmp/nginx.sock;
+
+  server_name mimi.techaro.lol;
+
+  port_in_redirect off;
+  root "/srv/http/mimi.techaro.lol";
+  index index.html;
+
+  # Your normal configuration can go here
+  # location .php { fastcgi...} etc.
+}

test/nginx/conf/nginx/conf.d/upstream-anubis.conf

@@ -0,0 +1,17 @@
+# /etc/nginx/conf.d/upstream-anubis.conf
+
+upstream anubis {
+  zone anubis_zone 64k;
+  # Make sure this matches the values you set for `BIND` and `BIND_NETWORK`.
+  # If this does not match, your services will not be protected by Anubis.
+
+  # Try anubis first over a UNIX socket
+  #server unix:/run/anubis/nginx.sock;
+  server anubis:3000 resolve;
+
+  # Optional: fall back to serving the websites directly. This allows your
+  # websites to be resilient against Anubis failing, at the risk of exposing
+  # them to the raw internet without protection. This is a tradeoff and can
+  # be worth it in some edge cases.
+  #server unix:/run/nginx.sock backup;
+}