From c87afc8b104af247662a1eaa99dd49670caf9876 Mon Sep 17 00:00:00 2001 From: Roland Schneider Date: Tue, 1 Oct 2024 21:31:58 +0000 Subject: [PATCH] add gitea --- .env | 2 +- nginx/conf/default.conf | 2 +- nginx/conf/docker.rschneider.hu.conf | 2 +- nginx/conf/gitea.rschneider.hu.conf | 28 +++++++++++++++++++ nginx/conf/heimdall.rschneider.hu.conf | 2 +- nginx/conf/k8sdashboard.rschneider.hu.conf | 2 +- nginx/conf/nextcloud.rschneider.hu.conf | 2 +- nginx/conf/nexus.rschneider.hu.conf | 2 +- nginx/conf/registry.rschneider.hu.conf | 2 +- nginx/conf/ssh.nas1.rschneider.hu | 2 +- nginx/conf/ssh.nuc.rschneider.hu | 2 +- nginx/conf/wikijs.rschneider.hu.conf | 2 +- nginx/conf/xwiki.rschneider.hu.conf | 2 +- .../gitea.rschneider.hu.conf.template | 28 +++++++++++++++++++ 14 files changed, 68 insertions(+), 12 deletions(-) create mode 100644 nginx/conf/gitea.rschneider.hu.conf create mode 100644 nginx/templates/gitea.rschneider.hu.conf.template diff --git a/.env b/.env index 8a88401..b70b883 100644 --- a/.env +++ b/.env @@ -1 +1 @@ -nuc=46.251.21.47 \ No newline at end of file +nuc=94.248.159.35 \ No newline at end of file diff --git a/nginx/conf/default.conf b/nginx/conf/default.conf index 68a300a..e56e5d1 100644 --- a/nginx/conf/default.conf +++ b/nginx/conf/default.conf @@ -53,6 +53,6 @@ server { ssl_certificate_key /etc/nginx/ssl/live/ios.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:3085; + proxy_pass http://94.248.159.35:3085; } } diff --git a/nginx/conf/docker.rschneider.hu.conf b/nginx/conf/docker.rschneider.hu.conf index 71463d1..9d91b01 100644 --- a/nginx/conf/docker.rschneider.hu.conf +++ b/nginx/conf/docker.rschneider.hu.conf @@ -19,7 +19,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/docker.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:3082; + proxy_pass http://94.248.159.35:3082; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; diff --git a/nginx/conf/gitea.rschneider.hu.conf b/nginx/conf/gitea.rschneider.hu.conf new file mode 100644 index 0000000..2334484 --- /dev/null +++ b/nginx/conf/gitea.rschneider.hu.conf @@ -0,0 +1,28 @@ +server { + + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name gitea.rschneider.hu; + + proxy_send_timeout 120; + proxy_read_timeout 300; + proxy_buffering off; + proxy_request_buffering off; + keepalive_timeout 5 5; + tcp_nodelay on; + + # allow large uploads of files - refer to nginx documentation + client_max_body_size 2G; + + ssl_certificate /etc/nginx/ssl/live/gitea.rschneider.hu/fullchain.pem; + ssl_certificate_key /etc/nginx/ssl/live/gitea.rschneider.hu/privkey.pem; + + location / { + proxy_pass http://94.248.159.35:4100; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + } +} + diff --git a/nginx/conf/heimdall.rschneider.hu.conf b/nginx/conf/heimdall.rschneider.hu.conf index a8f776f..8424e44 100644 --- a/nginx/conf/heimdall.rschneider.hu.conf +++ b/nginx/conf/heimdall.rschneider.hu.conf @@ -19,7 +19,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/heimdall.rschneider.hu/privkey.pem; location / { - proxy_pass https://46.251.21.47:3002; + proxy_pass https://94.248.159.35:3002; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; diff --git a/nginx/conf/k8sdashboard.rschneider.hu.conf b/nginx/conf/k8sdashboard.rschneider.hu.conf index aea155b..4cd237f 100644 --- a/nginx/conf/k8sdashboard.rschneider.hu.conf +++ b/nginx/conf/k8sdashboard.rschneider.hu.conf @@ -19,7 +19,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/k8sdash.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:5000; + proxy_pass http://94.248.159.35:5000; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; diff --git a/nginx/conf/nextcloud.rschneider.hu.conf b/nginx/conf/nextcloud.rschneider.hu.conf index 71ef7d7..3efc231 100644 --- a/nginx/conf/nextcloud.rschneider.hu.conf +++ b/nginx/conf/nextcloud.rschneider.hu.conf @@ -9,7 +9,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/nextcloud.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:5050; + proxy_pass http://94.248.159.35:5050; proxy_set_header Host $host; } } diff --git a/nginx/conf/nexus.rschneider.hu.conf b/nginx/conf/nexus.rschneider.hu.conf index 35f3b74..7dff136 100644 --- a/nginx/conf/nexus.rschneider.hu.conf +++ b/nginx/conf/nexus.rschneider.hu.conf @@ -19,7 +19,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/nexus.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:3081; + proxy_pass http://94.248.159.35:3081; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; diff --git a/nginx/conf/registry.rschneider.hu.conf b/nginx/conf/registry.rschneider.hu.conf index 5720650..93f56ce 100644 --- a/nginx/conf/registry.rschneider.hu.conf +++ b/nginx/conf/registry.rschneider.hu.conf @@ -19,7 +19,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/registry.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:3082; + proxy_pass http://94.248.159.35:3082; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; diff --git a/nginx/conf/ssh.nas1.rschneider.hu b/nginx/conf/ssh.nas1.rschneider.hu index 702415e..aa44910 100644 --- a/nginx/conf/ssh.nas1.rschneider.hu +++ b/nginx/conf/ssh.nas1.rschneider.hu @@ -1,5 +1,5 @@ upstream nas1-ssh { - server 46.251.21.47:10022; + server 94.248.159.35:10022; } server { diff --git a/nginx/conf/ssh.nuc.rschneider.hu b/nginx/conf/ssh.nuc.rschneider.hu index 0e1d11e..ba94a82 100644 --- a/nginx/conf/ssh.nuc.rschneider.hu +++ b/nginx/conf/ssh.nuc.rschneider.hu @@ -1,6 +1,6 @@ stream{ upstream nuc-ssh { - server 46.251.21.47:2022; + server 94.248.159.35:2022; } server { diff --git a/nginx/conf/wikijs.rschneider.hu.conf b/nginx/conf/wikijs.rschneider.hu.conf index 8bf9cfc..0733495 100644 --- a/nginx/conf/wikijs.rschneider.hu.conf +++ b/nginx/conf/wikijs.rschneider.hu.conf @@ -9,7 +9,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/wikijs.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:3010; + proxy_pass http://94.248.159.35:3010; } } diff --git a/nginx/conf/xwiki.rschneider.hu.conf b/nginx/conf/xwiki.rschneider.hu.conf index 81eb3a3..08c0fe1 100644 --- a/nginx/conf/xwiki.rschneider.hu.conf +++ b/nginx/conf/xwiki.rschneider.hu.conf @@ -19,7 +19,7 @@ server { ssl_certificate_key /etc/nginx/ssl/live/wiki.rschneider.hu/privkey.pem; location / { - proxy_pass http://46.251.21.47:3030; + proxy_pass http://94.248.159.35:3030; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; diff --git a/nginx/templates/gitea.rschneider.hu.conf.template b/nginx/templates/gitea.rschneider.hu.conf.template new file mode 100644 index 0000000..a02871b --- /dev/null +++ b/nginx/templates/gitea.rschneider.hu.conf.template @@ -0,0 +1,28 @@ +server { + + listen 443 ssl http2; + listen [::]:443 ssl http2; + + server_name gitea.rschneider.hu; + + proxy_send_timeout 120; + proxy_read_timeout 300; + proxy_buffering off; + proxy_request_buffering off; + keepalive_timeout 5 5; + tcp_nodelay on; + + # allow large uploads of files - refer to nginx documentation + client_max_body_size 2G; + + ssl_certificate /etc/nginx/ssl/live/gitea.rschneider.hu/fullchain.pem; + ssl_certificate_key /etc/nginx/ssl/live/gitea.rschneider.hu/privkey.pem; + + location / { + proxy_pass http://${nuc}:4100; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + } +} +