NGINX Home Assistant SSL proxy access and error logs

Feature Requests
1

Can you please make the share directory read/write so I can redirect my access and error logs to the Share directory. This will make it easier for me to access them with out having to ssh in to home assistant box and the use docker exec to access the container.

I am using the following in the Customize feature to host a static website but can not enable logging to the share directory because it’s read only.

active: true
default: nginx_proxy_default*.conf
servers: nginx_proxy/*.conf

/share/nginx_proxy/www.example.com.conf

server {
#	error_log  /share/log/www.example.com/error.log  warn;
#	access_log /share/log/www.example.com/access.log;

	listen 80;
	server_name example.com www.example.com;
	return 301 https://www.example.com$request_uri;
}
server {
#	error_log  /share/log/www.example.com/error.log  warn;
#	access_log /share/log/www.example.com/access.log;

        server_name	example.com;
	listen		443 ssl http2;

	ssl_session_timeout 1d;
	ssl_session_cache shared:MozSSL:10m;
	ssl_session_tickets off;
	ssl_certificate     /ssl/fullchain.pem;
	ssl_certificate_key /ssl/privkey.pem;
	ssl_dhparam /data/dhparams.pem;
        
	ssl_protocols TLSv1.2 TLSv1.3;
	ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
	ssl_prefer_server_ciphers off;

	return 301 https://www.example.com$request_uri;
}

server {
#	error_log  /share/log/www.example.com/error.log  warn;
#	access_log /share/log/www.example.com/access.log;

	server_name         www.example.com;
	root /share/html/www.example.com;

	listen 443 ssl http2;

	ssl_session_timeout 1d;
	ssl_session_cache shared:MozSSL:10m;
	ssl_session_tickets off;
	ssl_certificate     /ssl/fullchain.pem;
	ssl_certificate_key /ssl/privkey.pem;
	ssl_dhparam /data/dhparams.pem;
        
	ssl_protocols TLSv1.2 TLSv1.3;
	ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
	ssl_prefer_server_ciphers off;

	location / {
	    index  index.html index.htm;
	    try_files $uri $uri/ /index.html =404;
	}
}
2

Another idea would be to also mount the /config directory (like other AddOns are doing) and log the files there (like homeassist is already doing → home-assistant.log). But that would also need a change in the AddOn (the additional mounting of the config location).

3

I’ve managed to see access log in home assistant nginx addon logs with ‘access_log /dev/stderr;’ in .conf file.

But I can’t see any error logs same way.