diff options
Diffstat (limited to 'playbooks.d/webserver-nginx')
32 files changed, 349 insertions, 74 deletions
diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/com.voidfire.mumble b/playbooks.d/webserver-nginx/share/sites.d/http/com.voidfire.mumble new file mode 100644 index 0000000..a2922fc --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/http/com.voidfire.mumble @@ -0,0 +1,13 @@ +server { + listen 80; + listen [::]:80; + + server_name mumble.voidfire.com; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/headers.conf; + + location / { + return 301 https://$host$request_uri; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.bazarr b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.bazarr new file mode 100644 index 0000000..f8c36f4 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.bazarr @@ -0,0 +1,13 @@ +server { + listen 80; + listen [::]:80; + + server_name bazarr.arr.tyil.nl; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/headers.conf; + + location / { + return 301 https://$host$request_uri; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.jellyseerr b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.jellyseerr new file mode 100644 index 0000000..12d3487 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.jellyseerr @@ -0,0 +1,13 @@ +server { + listen 80; + listen [::]:80; + + server_name jellyseerr.arr.tyil.nl; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/headers.conf; + + location / { + return 301 https://$host$request_uri; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.lid b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.lidarr index 2fad057..2fad057 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.lid +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.lidarr diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.prowl b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.prowlarr index 1a1d70f..1a1d70f 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.prowl +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.prowlarr diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.rad b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.radarr index 852147e..852147e 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.rad +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.radarr diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.read b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.readarr index 82002bc..82002bc 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.read +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.readarr diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.son b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.sonarr index 61904fd..61904fd 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.son +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.sonarr diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.tdarr b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.tdarr new file mode 100644 index 0000000..2128cad --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.tdarr @@ -0,0 +1,13 @@ +server { + listen 80; + listen [::]:80; + + server_name tdarr.arr.tyil.nl; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/headers.conf; + + location / { + return 301 https://$host$request_uri; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.ci b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.ci new file mode 100644 index 0000000..7f2b35f --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.ci @@ -0,0 +1,12 @@ +server { + listen 80; + listen [::]:80; + + server_name ci.tyil.nl; + + include /etc/nginx/snippets.d/certbot.conf; + + location / { + return 301 https://$host$request_uri; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.baz b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.media index ea5ae18..92d387c 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.baz +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.media @@ -2,7 +2,7 @@ server { listen 80; listen [::]:80; - server_name baz.arr.tyil.nl; + server_name nl.tyil.media; include /etc/nginx/snippets.d/certbot.conf; include /etc/nginx/snippets.d/headers.conf; diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.myl b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.ntfy index 4a11124..d4b8d44 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.arr.myl +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.ntfy @@ -2,7 +2,7 @@ server { listen 80; listen [::]:80; - server_name myl.arr.tyil.nl; + server_name ntfy.tyil.nl; include /etc/nginx/snippets.d/certbot.conf; include /etc/nginx/snippets.d/headers.conf; diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3 b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3 new file mode 100644 index 0000000..8b0d1d5 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3 @@ -0,0 +1,13 @@ +server { + listen 80; + listen [::]:80; + + server_name s3.tyil.nl; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/headers.conf; + + location / { + return 301 https://$host$request_uri; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3.misskey b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3.misskey new file mode 100644 index 0000000..e616f75 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3.misskey @@ -0,0 +1,13 @@ +server { + listen 80; + listen [::]:80; + + server_name misskey.s3.tyil.nl; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/headers.conf; + + location / { + return 301 https://$host$request_uri; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/com.voidfire.mumble b/playbooks.d/webserver-nginx/share/sites.d/https/com.voidfire.mumble new file mode 100644 index 0000000..09daf3b --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/com.voidfire.mumble @@ -0,0 +1,49 @@ +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name mumble.voidfire.com; + + ssl_certificate /etc/letsencrypt/live/mumble.voidfire.com/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/mumble.voidfire.com/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/ssl.conf; + + root /var/www/com.voidfire.mumble; + + location / { + proxy_http_version 1.1; + proxy_set_header Connection $http_connection; + proxy_set_header Host $host; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header X-Forwarded-For $remote_addr; + + proxy_pass http://127.0.0.1:8080; + } + + location /proxy { + proxy_http_version 1.1; + proxy_set_header Connection $http_connection; + proxy_set_header Upgrade $http_upgrade; + + proxy_pass http://127.0.0.1:64737; + } + + location /botamusique { + port_in_redirect off; + + proxy_http_version 1.1; + + proxy_set_header Connection $http_connection; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Host $server_name; + proxy_set_header X-Forwarded-Port $server_port; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Script-Name /botamusique; + + proxy_pass http://127.0.0.1:13586; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.baz b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.bazarr index 70ea3a8..96d0dec 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.baz +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.bazarr @@ -2,10 +2,10 @@ server { listen 443 ssl http2; listen [::]:443 ssl http2; - server_name baz.arr.tyil.nl; + server_name bazarr.arr.tyil.nl; - ssl_certificate /etc/letsencrypt/live/baz.arr.tyil.nl/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/baz.arr.tyil.nl/privkey.pem; + ssl_certificate /etc/letsencrypt/live/bazarr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/bazarr.arr.tyil.nl/privkey.pem; include /etc/nginx/snippets.d/certbot.conf; #include /etc/nginx/snippets.d/headers.conf; @@ -18,6 +18,6 @@ server { proxy_set_header Upgrade $http_upgrade; proxy_set_header X-Forwarded-For $remote_addr; - proxy_pass http://10.57.100.7:8080; + proxy_pass http://172.31.0.1:4002; } } diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.jellyseerr b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.jellyseerr new file mode 100644 index 0000000..27045a2 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.jellyseerr @@ -0,0 +1,23 @@ +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name jellyseerr.arr.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/jellyseerr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/jellyseerr.arr.tyil.nl/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + #include /etc/nginx/snippets.d/headers.conf; + include /etc/nginx/snippets.d/ssl.conf; + + location / { + proxy_http_version 1.1; + proxy_set_header Connection $http_connection; + proxy_set_header Host $host; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header X-Forwarded-For $remote_addr; + + proxy_pass http://172.31.0.1:2001; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.lid b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.lidarr index 049dfd9..26010a4 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.lid +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.lidarr @@ -2,10 +2,10 @@ server { listen 443 ssl http2; listen [::]:443 ssl http2; - server_name lid.arr.tyil.nl; + server_name lidarr.arr.tyil.nl; - ssl_certificate /etc/letsencrypt/live/lid.arr.tyil.nl/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/lid.arr.tyil.nl/privkey.pem; + ssl_certificate /etc/letsencrypt/live/lidarr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/lidarr.arr.tyil.nl/privkey.pem; include /etc/nginx/snippets.d/certbot.conf; #include /etc/nginx/snippets.d/headers.conf; @@ -18,6 +18,6 @@ server { proxy_set_header Upgrade $http_upgrade; proxy_set_header X-Forwarded-For $remote_addr; - proxy_pass http://127.0.0.1:20831; + proxy_pass http://172.31.0.1:3001; } } diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.prowlarr b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.prowlarr new file mode 100644 index 0000000..a798a15 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.prowlarr @@ -0,0 +1,23 @@ +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name prowlarr.arr.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/prowlarr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/prowlarr.arr.tyil.nl/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + #include /etc/nginx/snippets.d/headers.conf; + include /etc/nginx/snippets.d/ssl.conf; + + location / { + proxy_http_version 1.1; + proxy_set_header Connection $http_connection; + proxy_set_header Host $host; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header X-Forwarded-For $remote_addr; + + proxy_pass http://172.31.0.1:2002; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.rad b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.rad deleted file mode 100644 index 83a4442..0000000 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.rad +++ /dev/null @@ -1,23 +0,0 @@ -server { - listen 443 ssl http2; - listen [::]:443 ssl http2; - - server_name rad.arr.tyil.nl; - - ssl_certificate /etc/letsencrypt/live/rad.arr.tyil.nl/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/rad.arr.tyil.nl/privkey.pem; - - include /etc/nginx/snippets.d/certbot.conf; - #include /etc/nginx/snippets.d/headers.conf; - include /etc/nginx/snippets.d/ssl.conf; - - location / { - proxy_http_version 1.1; - proxy_set_header Connection $http_connection; - proxy_set_header Host $host; - proxy_set_header Upgrade $http_upgrade; - proxy_set_header X-Forwarded-For $remote_addr; - - proxy_pass http://127.0.0.1:20832; - } -} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.myl b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.radarr index 36735f8..abca322 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.myl +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.radarr @@ -2,10 +2,10 @@ server { listen 443 ssl http2; listen [::]:443 ssl http2; - server_name myl.arr.tyil.nl; + server_name radarr.arr.tyil.nl; - ssl_certificate /etc/letsencrypt/live/myl.arr.tyil.nl/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/myl.arr.tyil.nl/privkey.pem; + ssl_certificate /etc/letsencrypt/live/radarr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/radarr.arr.tyil.nl/privkey.pem; include /etc/nginx/snippets.d/certbot.conf; #include /etc/nginx/snippets.d/headers.conf; @@ -18,6 +18,6 @@ server { proxy_set_header Upgrade $http_upgrade; proxy_set_header X-Forwarded-For $remote_addr; - proxy_pass http://10.57.100.7:8080; + proxy_pass http://172.31.0.1:3003; } } diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.read b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.read deleted file mode 100644 index 3af4341..0000000 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.read +++ /dev/null @@ -1,23 +0,0 @@ -server { - listen 443 ssl http2; - listen [::]:443 ssl http2; - - server_name read.arr.tyil.nl; - - ssl_certificate /etc/letsencrypt/live/read.arr.tyil.nl/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/read.arr.tyil.nl/privkey.pem; - - include /etc/nginx/snippets.d/certbot.conf; - #include /etc/nginx/snippets.d/headers.conf; - include /etc/nginx/snippets.d/ssl.conf; - - location / { - proxy_http_version 1.1; - proxy_set_header Connection $http_connection; - proxy_set_header Host $host; - proxy_set_header Upgrade $http_upgrade; - proxy_set_header X-Forwarded-For $remote_addr; - - proxy_pass http://127.0.0.1:20834; - } -} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.readarr b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.readarr new file mode 100644 index 0000000..47e455e --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.readarr @@ -0,0 +1,23 @@ +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name readarr.arr.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/readarr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/readarr.arr.tyil.nl/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + #include /etc/nginx/snippets.d/headers.conf; + include /etc/nginx/snippets.d/ssl.conf; + + location / { + proxy_http_version 1.1; + proxy_set_header Connection $http_connection; + proxy_set_header Host $host; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header X-Forwarded-For $remote_addr; + + proxy_pass http://172.31.0.1:3004; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.sonarr b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.sonarr new file mode 100644 index 0000000..eb08997 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.sonarr @@ -0,0 +1,23 @@ +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name sonarr.arr.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/sonarr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/sonarr.arr.tyil.nl/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + #include /etc/nginx/snippets.d/headers.conf; + include /etc/nginx/snippets.d/ssl.conf; + + location / { + proxy_http_version 1.1; + proxy_set_header Connection $http_connection; + proxy_set_header Host $host; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header X-Forwarded-For $remote_addr; + + proxy_pass http://172.31.0.1:3002; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.prowl b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.tdarr index 894b604..f3a8afe 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.prowl +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.tdarr @@ -2,10 +2,10 @@ server { listen 443 ssl http2; listen [::]:443 ssl http2; - server_name prowl.arr.tyil.nl; + server_name tdarr.arr.tyil.nl; - ssl_certificate /etc/letsencrypt/live/prowl.arr.tyil.nl/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/prowl.arr.tyil.nl/privkey.pem; + ssl_certificate /etc/letsencrypt/live/tdarr.arr.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/tdarr.arr.tyil.nl/privkey.pem; include /etc/nginx/snippets.d/certbot.conf; #include /etc/nginx/snippets.d/headers.conf; @@ -18,6 +18,6 @@ server { proxy_set_header Upgrade $http_upgrade; proxy_set_header X-Forwarded-For $remote_addr; - proxy_pass http://127.0.0.1:20828; + proxy_pass http://172.31.0.1:4001; } } diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.ci b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.ci new file mode 100644 index 0000000..ca9421c --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.ci @@ -0,0 +1,19 @@ +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name ci.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/ci.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/ci.tyil.nl/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/ssl.conf; + + location / { + proxy_set_header Host $host; + proxy_set_header X-Forwarded-For $remote_addr; + + proxy_pass http://127.0.0.1:61007; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.git b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.git index 650b55c..63e349c 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.git +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.git @@ -15,7 +15,7 @@ server { add_header X-Content-Type-Options "nosniff" always; add_header X-Frame-Options "SAMEORIGIN" always; - root /usr/share/webapps/cgit/1.2.3-r100/htdocs; + root /usr/share/webapps/cgit/1.2.3-r201/htdocs; location / { try_files $uri @cgit; diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.son b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.media index 7873d2d..9d811dc 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.arr.son +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.media @@ -2,14 +2,13 @@ server { listen 443 ssl http2; listen [::]:443 ssl http2; - server_name son.arr.tyil.nl; + server_name media.tyil.nl; - ssl_certificate /etc/letsencrypt/live/son.arr.tyil.nl/fullchain.pem; - ssl_certificate_key /etc/letsencrypt/live/son.arr.tyil.nl/privkey.pem; + ssl_certificate /etc/letsencrypt/live/media.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/media.tyil.nl/privkey.pem; - include /etc/nginx/snippets.d/certbot.conf; - #include /etc/nginx/snippets.d/headers.conf; include /etc/nginx/snippets.d/ssl.conf; + include /etc/nginx/snippets.d/certbot.conf; location / { proxy_http_version 1.1; @@ -18,6 +17,6 @@ server { proxy_set_header Upgrade $http_upgrade; proxy_set_header X-Forwarded-For $remote_addr; - proxy_pass http://127.0.0.1:20833; + proxy_pass http://172.31.0.1:2003; } } diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.ntfy b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.ntfy new file mode 100644 index 0000000..dfee8e3 --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.ntfy @@ -0,0 +1,31 @@ +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name ntfy.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/ntfy.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/ntfy.tyil.nl/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/ssl.conf; + + location / { + proxy_buffering off; + proxy_connect_timeout 3m; + proxy_http_version 1.1; + proxy_read_timeout 3m; + proxy_redirect off; + proxy_request_buffering off; + proxy_send_timeout 3m; + + proxy_set_header Connection $http_connection; + proxy_set_header Host $host; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header X-Forwarded-For $remote_addr; + + client_max_body_size 20m; + + proxy_pass http://127.0.0.1:42349; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3 b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3 new file mode 100644 index 0000000..5efcd2e --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3 @@ -0,0 +1,20 @@ +upstream s3_backend { + server 10.57.21.1:3900; +} + +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name s3.tyil.nl *.s3.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/s3.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/s3.tyil.nl/privkey.pem; + + location / { + proxy_pass http://s3_backend; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + proxy_max_temp_file_size 0; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3.misskey b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3.misskey new file mode 100644 index 0000000..ae3204b --- /dev/null +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3.misskey @@ -0,0 +1,21 @@ +upstream s3_backend { + server 10.57.21.1:3900; +} + +server { + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name misskey.s3.tyil.nl; + + ssl_certificate /etc/letsencrypt/live/misskey.s3.tyil.nl/fullchain.pem; + ssl_certificate_key /etc/letsencrypt/live/misskey.s3.tyil.nl/privkey.pem; + + include /etc/nginx/snippets.d/certbot.conf; + include /etc/nginx/snippets.d/headers.conf; + include /etc/nginx/snippets.d/ssl.conf; + + location / { + root /var/www/nl.tyil.s3.misskey; + } +} diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.tv b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.tv index e91a392..3107d07 100644 --- a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.tv +++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.tv @@ -27,7 +27,7 @@ server { proxy_buffering off; - proxy_pass http://127.0.0.1:8096; + proxy_pass http://172.31.0.1:1025; } location = /web/ { @@ -38,7 +38,7 @@ server { proxy_set_header X-Forwarded-Protocol $scheme; proxy_set_header X-Forwarded-Host $http_host; - proxy_pass http://127.0.0.1:8096/web/index.html; + proxy_pass http://172.31.0.1:1025/web/index.html; } location /socket { @@ -53,6 +53,6 @@ server { proxy_http_version 1.1; - proxy_pass http://127.0.0.1:8096; + proxy_pass http://172.31.0.1:1025; } } |