From c1f371e082212cf338d67410823c6e66e6d209b1 Mon Sep 17 00:00:00 2001
From: Patrick Spek <p.spek@tyil.nl>
Date: Thu, 6 Apr 2023 10:26:02 +0200
Subject: Add s3.tyil.nl

---
 .../webserver-nginx/share/sites.d/http/nl.tyil.s3    | 13 +++++++++++++
 .../webserver-nginx/share/sites.d/https/nl.tyil.s3   | 20 ++++++++++++++++++++
 2 files changed, 33 insertions(+)
 create mode 100644 playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3
 create mode 100644 playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3

diff --git a/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3 b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3
new file mode 100644
index 0000000..8b0d1d5
--- /dev/null
+++ b/playbooks.d/webserver-nginx/share/sites.d/http/nl.tyil.s3
@@ -0,0 +1,13 @@
+server {
+	listen 80;
+	listen [::]:80;
+
+	server_name s3.tyil.nl;
+
+	include /etc/nginx/snippets.d/certbot.conf;
+	include /etc/nginx/snippets.d/headers.conf;
+
+	location / {
+		return 301 https://$host$request_uri;
+	}
+}
diff --git a/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3 b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3
new file mode 100644
index 0000000..5efcd2e
--- /dev/null
+++ b/playbooks.d/webserver-nginx/share/sites.d/https/nl.tyil.s3
@@ -0,0 +1,20 @@
+upstream s3_backend {
+	server 10.57.21.1:3900;
+}
+
+server {
+	listen 443 ssl http2;
+	listen [::]:443 ssl http2;
+
+	server_name s3.tyil.nl *.s3.tyil.nl;
+
+	ssl_certificate /etc/letsencrypt/live/s3.tyil.nl/fullchain.pem;
+	ssl_certificate_key /etc/letsencrypt/live/s3.tyil.nl/privkey.pem;
+
+	location / {
+		proxy_pass http://s3_backend;
+		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+		proxy_set_header Host $host;
+		proxy_max_temp_file_size 0;
+	}
+}
-- 
cgit v1.1