bofh/nginx_sites
9
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

initial commit

Browse Source
This commit is contained in:
root
2017-07-23 09:58:08 +02:00
commit 83354160ea
19 changed files with 913 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

78
triton.fet.at/git.conf Normal file
View File

@@ -0,0 +1,78 @@
# -*-nginx-*-
server {
listen 80;
server_name www.git.triton.fet.at git.triton.fet.at;
location /{
return 301 https://$host$request_uri;
}
location /.well-known {
root /srv/welcome;
allow all;
}
}
server {
listen 443 ssl;
# listen 80;
server_name www.git.triton.fet.at git.triton.fet.at;
ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
# satisfy any;
# allow 192.168.95.0/24;
# allow 127.0.0.1;
# deny all;
#
# auth_ldap "FET Login";
# auth_ldap_servers fet;
location /.well-known {
root /srv/welcome;
allow all;
}
location = / {
return 302 https://$host/http/;
}
location /http {
auth_ldap "FET Login";
auth_ldap_servers fet;
root /srv/git/;
index index.html;
}
location ~ ^.*\.git/objects/([0-9a-f]+/[0-9a-f]+|pack/pack-[0-9a-f]+.(pack|idx))$ {
satisfy any;
allow 192.168.95.0/24;
allow 127.0.0.1;
deny all;
auth_ldap "FET Login";
auth_ldap_servers fet;
root /srv/git/git/;
}
location ~ ^.*\.git/(HEAD|info/refs|objects/info/.*|git-(upload|receive)-pack)$ {
# satisfy any;
# allow 192.168.95.0/24;
# allow 127.0.0.1;
# deny all;
auth_ldap "FET Login";
auth_ldap_servers fet;
root /srv/git/git/;
# if ($remote_user = '') {
# set $my_remote_user "nobody";
# }
# if ($remote_user ~* '')
# { set $my_remote_user $remote_user;
# }
client_max_body_size 0;
fastcgi_pass unix:/var/run/fcgiwrap.socket;
fastcgi_param SCRIPT_FILENAME /usr/lib/git-core/git-http-backend;
fastcgi_param GIT_HTTP_EXPORT_ALL "";
fastcgi_param GIT_PROJECT_ROOT /srv/git;
fastcgi_param PATH_INFO $uri;
fastcgi_param REMOTE_USER $remote_user;
include fastcgi_params;
}
}

0
triton.fet.at/gitlab.conf Normal file
View File

39
triton.fet.at/intern.conf Normal file
View File

@@ -0,0 +1,39 @@
# -*-nginx-*-
server {
listen 80;
server_name intern.triton.fet.at www.intern.triton.fet.at;
location /.well-known {
root /srv/welcome;
allow all;
}
location / {
return 301 https://$host$request_uri;
}
}
server {
listen 443 ssl;
#listen 8081;
server_name intern.triton.fet.at www.intern.triton.fet.at;
ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
satisfy any;
auth_ldap "FET Login";
auth_ldap_servers fet;
auth_basic "Alternative Login";
auth_basic_user_file /srv/auth/.basic_user;
location / {
include uwsgi_params;
uwsgi_pass unix:/srv/run/intern.sock;
}
location = / {
return 301 https://$host/index;
}
location /.well-known {
root /srv/welcome;
allow all;
}
}

49
triton.fet.at/sql.triton.fet.at.conf Normal file
View File

@@ -0,0 +1,49 @@
# -*-nginx-*-
upstream triampsql {
server triton-amp.local:8002;
}
server {
listen 80;
server_name sql.triton.fet.at www.sql.triton.fet.at;
root /srv/pxy/wptriton;
location /.well-known {
allow all;
}
location / {
return 301 https://$host$request_uri;
}
}
server {
listen 443 ssl;
server_name sql.triton.fet.at www.sql.triton.fet.at;
#ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
#ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
auth_ldap "FET Login";
auth_ldap_servers fet;
location /.well-known {
allow all;
}
location / {
proxy_pass http://triampsql;
proxy_set_header Accept-Encoding "";
proxy_set_header Host sql.triton.fet.at;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X_FORWARDED_SSL on;
proxy_redirect default;
# force https Links
# sub_filter http://wp.triton.fet.at https://wp.triton.fet.at;
# sub_filter http: https:;
# sub_filter_once off;
}
}

61
triton.fet.at/testrby.conf Normal file
View File

@@ -0,0 +1,61 @@
# -*-nginx-*-
server {
server_name testrby.triton.fet.at;
listen 80;
listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
location /.well-known {
root /srv/welcome;
allow all;
}
location / {
return 302 https://www.testrby.trition.fet.at$request_uri;
}
}
server {
server_name www.testrby.triton.fet.at;
listen 80;
location /.well-known {
allow all;
root /srv/welcome;
}
location / {
return 301 https://$host$request_uri;
}
}
server {
server_name www.testrby.triton.fet.at;
listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
auth_ldap "FET Login";
auth_ldap_servers fet;
location /.well-known {
root /srv/welcome;
allow all;
}
location / {
proxy_pass http://mogok.local:3000;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
}
location /tc {
rewrite ^/tc/(.*)$ /$1 break;
proxy_pass http://triton-amp.local:8080;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
}
location /conf {
rewrite ^/conf/(.*)$ /$1 break;
proxy_pass http://mogok.local:8001;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
}
}

48
triton.fet.at/welcome.conf Normal file
View File

@@ -0,0 +1,48 @@
# -*-nginx-*-
# Beschreibung: Dies ist ein fallback falls kein sonstiger Server gewaehlt wurde. Im geschuetzten Bereich befinden sich Infos zur Konfiguration!
server {
listen 80;
server_name triton.fet.at www.triton.fet.at triton.local;
root /srv/welcome;
location /.well-known {
allow all;
}
location / {
return 301 https://$host$request_uri;
}
}
server {
listen 443 ssl;
server_name triton.fet.at www.triton.fet.at triton.local;
ssl_certificate /etc/letsencrypt/live/triton.fet.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/triton.fet.at/privkey.pem;
auth_ldap "FET Login - TT";
auth_ldap_servers fet;
root /srv/welcome;
location /.well-known {
allow all;
}
location / {
ssi on;
index index.html;
}
location /conf {
rewrite ^/conf/(.*)$ /$1 break;
proxy_pass http://localhost:8080;
}
location /doc {
return 301 https://intern.triton.fet.at$request_uri;
# include uwsgi_params;
# uwsgi_pass unix:/srv/run/intern.sock;
# sub_filter triton.fet.at/ triton.fet.at/doc/;
# rewrite ^/doc/(.*)$ /$1 break;
# proxy_pass http://localhost:8081;
}
}

89
triton.fet.at/wp.conf Normal file
View File

@@ -0,0 +1,89 @@
# -*-nginx-*-
server {
listen 80;
server_name www.onetufree.at;
# root /srv/pxy/wptriton;
location /.well-known {
root /srv/pxy/onetufree;
allow all;
}
location / {
return 301 https://$host$request_uri;
}
}
server {
listen 80;
listen 443 ssl;
server_name onetufree.at wp.triton.fet.at www.wp.triton.fet.at;
# root /srv/pxy/wptriton;
location /.well-known {
root /srv/pxy/onetufree;
allow all;
}
location / {
return 301 https://www.onetufree.at$request_uri;
}
}
upstream triamp {
server triton-amp.local:8001;
}
server {
listen 443 ssl;
server_name www.onetufree.at;# onetufree.at wp.triton.fet.at www.wp.triton.fet.at;
ssl_certificate /etc/letsencrypt/live/www.onetufree.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/www.onetufree.at/privkey.pem;
satisfy any;
auth_ldap "Under construction";
auth_ldap_servers fet;
auth_basic "Under construction";
auth_basic_user_file /srv/.passwd;
location /.well-known {
root /srv/pxy/onetufree;
allow all;
}
location / {
# rewrite ^/wp/(.*)$ /$1 break;
# return 301 http://$host$request_uri;
proxy_pass http://triamp;
proxy_set_header Accept-Encoding "";
proxy_set_header Host www.onetufree.at;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X_FORWARDED_SSL on;
proxy_set_header HTTP_X_FORWARDED_SSL on;
proxy_redirect default;
# more_set_headers 'Link: <https://wp.triton.fet.at/index.php/wp-json/>; rel="https://api.w.org/", <https://wp.triton.fet.at/>; rel=shortlink'
# more_set_headers 'Hello: World'
# sub_filter http https;
# sub_filter WordPress WP;
# force https Links
sub_filter http://wp.triton.fet.at https://www.onetufree.at;
sub_filter https://wp.triton.fet.at https://www.onetufree.at;
sub_filter http://www.onetufree.at https://www.onetufree.at;
sub_filter http: https:;
# sub_filter_types text/html;
# sub_filter_types application/javascript, text/javascript, text/html;# application/html text/* application/x-javascript text/xml;
sub_filter_once off;
}
}

67
triton.fet.at/wp2.conf Normal file
View File

@@ -0,0 +1,67 @@
# -*-nginx-*-
server {
listen 80;
server_name wp2.triton.fet.at www.wp2.triton.fet.at;
location /.well-known {
root /srv/welcome;
allow all;
}
location / {
return 301 https://$host$request_uri;
}
}
upstream triamp2 {
server triton-amp.local:8003;
}
server {
listen 443 ssl;
server_name wp2.triton.fet.at www.wp2.triton.fet.at;
ssl_certificate /etc/letsencrypt/live/wp.triton.fet.at/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/wp.triton.fet.at/privkey.pem;
satisfy any;
auth_ldap "Under construction";
auth_ldap_servers fet;
auth_basic "Under construction";
auth_basic_user_file /srv/.passwd;
location /.well-known {
root /srv/welcome;
allow all;
}
location / {
# rewrite ^/wp/(.*)$ /$1 break;
# return 301 http://$host$request_uri;
proxy_pass http://triamp2;
proxy_set_header Accept-Encoding "";
proxy_set_header Host wp2.triton.fet.at;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X_FORWARDED_SSL on;
proxy_set_header REQUEST_SCHEME https;
proxy_set_header HTTP_X_FORWARDED_SSL on;
proxy_redirect default;
# more_set_headers 'Link: <https://wp.triton.fet.at/index.php/wp-json/>; rel="https://api.w.org/", <https://wp.triton.fet.at/>; rel=shortlink'
# more_set_headers 'Hello: World'
# sub_filter http https;
# sub_filter WordPress WP;
# force https Links
sub_filter http://wp2.triton.fet.at https://wp2.triton.fet.at;
# sub_filter http: https:;
# sub_filter_types text/html;
# sub_filter_types application/javascript, text/javascript, text/html;# application/html text/* application/x-javascript text/xml;
sub_filter_once off;
}
}