server {
    listen 80;

    # API und Auth-Endpunkte zum Backend proxieren
    location /healthz {
        proxy_pass http://api:8080;
        proxy_set_header Host $host;
    }

    location /readyz {
        proxy_pass http://api:8080;
        proxy_set_header Host $host;
    }

    location /v1/ {
        proxy_pass http://api:8080;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
    }

    location /login {
        proxy_pass http://api:8080;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
    }

    location /logout {
        proxy_pass http://api:8080;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
    }

    # SPA: alle anderen Routen auf index.html
    location / {
        root /usr/share/nginx/html;
        try_files $uri $uri/ /index.html;
    }
}