gregandev
/
workadventure
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Compare commits

merge into: gregandev:main
Branches Tags
gregandev:main
gregandev:nginx-proxy
...
pull from: gregandev:nginx-proxy
Branches Tags
gregandev:main
gregandev:nginx-proxy

2 Commits
main ... nginx-prox

Author SHA1 Message Date
greglebreton 041e887a8b maj readme
2 years ago
greglebreton a96cfffdb4 maj readme
2 years ago
3 changed files with 166 additions and 0 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats
  1. 2
      README.md
  2. 82
      reverse-proxy.cinf
  3. 82
      reverse-proxy.conf

2
README.md
Unescape View File

@ -13,6 +13,8 @@ Pour déployer cette stack, vous aurez besoin:
## Configuration / Installation
> Note: Si vous utilisez déjà Nginx en mode applicatif, utiliser le reverse-proxy.conf pour faire votre virtualhost qui devrat pointer vers l'IP du conteneur Traefik sur le docker network (voir plus bas)
### Nginx proxy manager
```bash

82
reverse-proxy.cinf
Unescape View File

@ -0,0 +1,82 @@
#workadventure
upstream workadventure {
server 172.21.0.1:9999;
}
# HTTP
server {
listen 80;
server_name *.workadventure.domain.tld;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
location / {
proxy_redirect off;
proxy_pass http://workadventure;
}
# Add Headers for proxy mode
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header Accept-Encoding "";
# add_header Access-Control-Allow-Origin *;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $http_connection;
proxy_http_version 1.1;
}
server {
listen 443 ssl;
server_name *.workadventure.domain.tld;
# Add Headers for proxy mode
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header Accept-Encoding "";
# add_header Access-Control-Allow-Origin *;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $http_connection;
proxy_http_version 1.1;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
# Upload limit and security
client_max_body_size 10000m;
server_tokens off;
# Buffer_size
proxy_buffer_size 512k;
proxy_buffers 4 512k;
proxy_busy_buffers_size 512k;
#fastcgi_buffers 16 32k;
#fastcgi_buffer_size 64k;
#fastcgi_busy_buffers_size 64k;
# SSL parameters
ssl_session_timeout 30m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
# logs
access_log /var/log/nginx/workadventure.access.log;
error_log /var/log/nginx/workadventure.error.log;
# Redirect requests to https
location / {
proxy_redirect off;
proxy_pass http://workadventure;
}
ssl_certificate /etc/letsencrypt/live/workadventure.domaine.tld/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/workadventure.domaine.tld/privkey.pem;
}

82
reverse-proxy.conf
Unescape View File

@ -0,0 +1,82 @@
#workadventure
upstream workadventure {
server 172.21.0.1:9999;
}
# HTTP
server {
listen 80;
server_name *.workadventure.domain.tld;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
location / {
proxy_redirect off;
proxy_pass http://workadventure;
}
# Add Headers for proxy mode
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header Accept-Encoding "";
# add_header Access-Control-Allow-Origin *;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $http_connection;
proxy_http_version 1.1;
}
server {
listen 443 ssl;
server_name *.workadventure.domain.tld;
# Add Headers for proxy mode
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header Accept-Encoding "";
# add_header Access-Control-Allow-Origin *;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection $http_connection;
proxy_http_version 1.1;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
# Upload limit and security
client_max_body_size 10000m;
server_tokens off;
# Buffer_size
proxy_buffer_size 512k;
proxy_buffers 4 512k;
proxy_busy_buffers_size 512k;
#fastcgi_buffers 16 32k;
#fastcgi_buffer_size 64k;
#fastcgi_busy_buffers_size 64k;
# SSL parameters
ssl_session_timeout 30m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
# logs
access_log /var/log/nginx/workadventure.access.log;
error_log /var/log/nginx/workadventure.error.log;
# Redirect requests to https
location / {
proxy_redirect off;
proxy_pass http://workadventure;
}
ssl_certificate /etc/letsencrypt/live/workadventure.domaine.tld/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/workadventure.domaine.tld/privkey.pem;
}
Write Preview
Loading…
Cancel
Save