· Abderrahmane Smimite · tutorials  · 2 min read

Nginx rewrite rules - the easy way

Unlike other posts or articles that I’m used to sharing, this is not about Cyber Security, Product Management, Agile practices, or data. It’s just something that I’ve spent some time on recently, and I thought it could save someone some valuable time.

Nginx (or Apache) has powerful URL rewrite capabilities that can simplify your migrations. You might want to take a look at it as it could ease it up.

As part of website/web app migration, we often have to handle two main challenges:

  • Updating the main website URL, which primarily consists of DNS changes. As long as you’re not dealing with CNAME entries on the APEX domain using a provider that doesn’t support DNS flattening, you should be fine.
  • switching URL schemes to adapt to a new format, for instance, redirecting /posts?id=123 to /articles/123

A well-established web server can handle the second aspect. But before diving in, you should consider the effort versus the impact and if it is worth it for your case. Basically, it’s about:

  • Search engine bots previously indexed paged, sending potential 404 errors and degrading your SEO effort.
  • Users that are used to specific patterns or bookmarks could get confused or lost with this change.

If these concerns apply to your case, having Nginx as a proxy can be very handy. The official documentation available here is a good start. If you’re in a hurry, here are the five main things to consider:

  • There are multiple directives; rewrite is the most flexible and comprehensive one.
  • Rules are scoped to a specific location within a specific server. You could have everything at /, but splitting can be pretty convenient.
  • Rewrite supports regex in its basic flavor. I usually experiment with Python or regex101 before applying anything.
  • Nginx processes the rules sequentially, so the order is essential. Be cautious but also use it wisely to simplify complex cases (e.g., having garbage-collector rules after specific ones)

The most common patterns are:

  • /section/(.*)/product_(.*) /new/catalog/$2 ; if the key is part of the URL and you want to redirect /section/health/product_123 to /new/catalog/123
  •  /section/directory(.*) /section/directory/$arg_user? ; if the key is an argument and you want to redirect /section/directory?user=albert to /section/directory/albert/ ; nginx has built-in $arg_<your_param> variables.

And that’s it! Fly now and rewrite the world!

Share:
Back to Blog

Related Posts

View All Posts »
What's New in CISO Assistant — Week 23, 2026 (v3.17.1 – v3.17.2)

What's New in CISO Assistant — Week 23, 2026 (v3.17.1 – v3.17.2)

Two releases close out the week: v3.17.1 brings a Prometheus metrics endpoint, user-configurable date formats, expanded comments and audit aggregation; v3.17.2 piles on an expanded AI/MCP server, the ABRO framework, a tables column selector, action-plan cost breakdowns, SSO redirect handling, and a big batch of data-wizard, framework-builder, and ordering fixes.

What's New in CISO Assistant — Week 22, 2026 (v3.16.5 – v3.17.0)

What's New in CISO Assistant — Week 22, 2026 (v3.16.5 – v3.17.0)

A big stretch: native project management arrives, framework-driven reporting goes cross-domain, requirement nodes gain their own score scales, and OIDC picks up a strict state/nonce mode. Plus new NCSC CAF v4.0 and TRUE II frameworks, analytics on applied controls, the psycopg2→psycopg3 upgrade, and a long tail of fixes across four releases (v3.16.5 → v3.17.0).

PostgreSQL vs SQLite, 2026 edition

PostgreSQL vs SQLite, 2026 edition

We benchmarked PostgreSQL 16 against SQLite 3.46.1 under a real CISO Assistant workload on a single 1 vCPU / 8 GB host. The results weren't what we expected — SQLite-WAL won on most read patterns.