feat: nebulosus tmp solution
Signed-off-by: Raine <raine@ixvd.net>
This commit is contained in:
		
							parent
							
								
									759852140a
								
							
						
					
					
						commit
						83a548ca8f
					
				
					 20 changed files with 153 additions and 127 deletions
				
			
		
							
								
								
									
										8
									
								
								.idea/.gitignore
									
										
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							
							
						
						
									
										8
									
								
								.idea/.gitignore
									
										
									
										generated
									
									
										vendored
									
									
										Normal file
									
								
							|  | @ -0,0 +1,8 @@ | |||
| # Default ignored files | ||||
| /shelf/ | ||||
| /workspace.xml | ||||
| # Editor-based HTTP Client requests | ||||
| /httpRequests/ | ||||
| # Datasource local storage ignored files | ||||
| /dataSources/ | ||||
| /dataSources.local.xml | ||||
							
								
								
									
										10
									
								
								.idea/misc.xml
									
										
									
										generated
									
									
									
										Normal file
									
								
							
							
						
						
									
										10
									
								
								.idea/misc.xml
									
										
									
										generated
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,10 @@ | |||
| <?xml version="1.0" encoding="UTF-8"?> | ||||
| <project version="4"> | ||||
|   <component name="DiscordProjectSettings"> | ||||
|     <option name="show" value="ASK" /> | ||||
|     <option name="description" value="" /> | ||||
|   </component> | ||||
|   <component name="ProjectRootManager" version="2" languageLevel="JDK_17" default="true" project-jdk-name="jbr-17" project-jdk-type="JavaSDK"> | ||||
|     <output url="file://$PROJECT_DIR$/out" /> | ||||
|   </component> | ||||
| </project> | ||||
							
								
								
									
										8
									
								
								.idea/modules.xml
									
										
									
										generated
									
									
									
										Normal file
									
								
							
							
						
						
									
										8
									
								
								.idea/modules.xml
									
										
									
										generated
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,8 @@ | |||
| <?xml version="1.0" encoding="UTF-8"?> | ||||
| <project version="4"> | ||||
|   <component name="ProjectModuleManager"> | ||||
|     <modules> | ||||
|       <module fileurl="file://$PROJECT_DIR$/.idea/neb.iml" filepath="$PROJECT_DIR$/.idea/neb.iml" /> | ||||
|     </modules> | ||||
|   </component> | ||||
| </project> | ||||
							
								
								
									
										9
									
								
								.idea/neb.iml
									
										
									
										generated
									
									
									
										Normal file
									
								
							
							
						
						
									
										9
									
								
								.idea/neb.iml
									
										
									
										generated
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,9 @@ | |||
| <?xml version="1.0" encoding="UTF-8"?> | ||||
| <module type="JAVA_MODULE" version="4"> | ||||
|   <component name="NewModuleRootManager" inherit-compiler-output="true"> | ||||
|     <exclude-output /> | ||||
|     <content url="file://$MODULE_DIR$" /> | ||||
|     <orderEntry type="inheritedJdk" /> | ||||
|     <orderEntry type="sourceFolder" forTests="false" /> | ||||
|   </component> | ||||
| </module> | ||||
							
								
								
									
										6
									
								
								.idea/vcs.xml
									
										
									
										generated
									
									
									
										Normal file
									
								
							
							
						
						
									
										6
									
								
								.idea/vcs.xml
									
										
									
										generated
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,6 @@ | |||
| <?xml version="1.0" encoding="UTF-8"?> | ||||
| <project version="4"> | ||||
|   <component name="VcsDirectoryMappings"> | ||||
|     <mapping directory="" vcs="Git" /> | ||||
|   </component> | ||||
| </project> | ||||
							
								
								
									
										6
									
								
								.woodpecker/images.yml
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										6
									
								
								.woodpecker/images.yml
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,6 @@ | |||
| when: | ||||
|   event: | ||||
|     - push | ||||
|     - manual | ||||
|     - tag | ||||
|      | ||||
							
								
								
									
										16
									
								
								images/nginx/Dockerfile
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										16
									
								
								images/nginx/Dockerfile
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,16 @@ | |||
| FROM nginx:alpine | ||||
| 
 | ||||
| RUN apk add \ | ||||
|     certbot \ | ||||
|     certbot-nginx | ||||
| 
 | ||||
| COPY content /usr/share/nginx/html | ||||
| COPY conf.d/ /etc/nginx/conf.d/ | ||||
| COPY nginx.conf /etc/nginx/nginx.conf | ||||
| 
 | ||||
| VOLUME /etc/nginx/conf.d/ | ||||
| VOLUME /usr/share/nginx/html/ | ||||
| 
 | ||||
| COPY entrypoint.sh /entrypoint | ||||
| ENTRYPOINT [ "sh", "/entrypoint" ] | ||||
| CMD [ "nginx", "-g", "daemon off;" ] | ||||
							
								
								
									
										17
									
								
								images/nginx/conf.d/default.conf
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										17
									
								
								images/nginx/conf.d/default.conf
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,17 @@ | |||
| server { | ||||
|     listen 80; | ||||
|     server_name _; | ||||
| 
 | ||||
|     # SSL is managed by certbot, no need for a ssl listen; it will be generated automagically! | ||||
| 
 | ||||
|     # default html page | ||||
|     location / { | ||||
|         root /usr/share/nginx/html; | ||||
|         index index.html index.htm; | ||||
|     } | ||||
| 
 | ||||
|     error_page   500 502 503 504  /50x.html; | ||||
|     location = /50x.html { | ||||
|         root /usr/share/nginx/html; | ||||
|     } | ||||
| } | ||||
							
								
								
									
										24
									
								
								images/nginx/content/index.html
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										24
									
								
								images/nginx/content/index.html
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,24 @@ | |||
| <!DOCTYPE html> | ||||
| <html> | ||||
| 
 | ||||
| <head> | ||||
|     <title>Welcome to nginx!</title> | ||||
|     <style> | ||||
|         html { | ||||
|             color-scheme: light dark; | ||||
|         } | ||||
| 
 | ||||
|         body { | ||||
|             width: 35em; | ||||
|             margin: 0 auto; | ||||
|             font-family: Tahoma, Verdana, Arial, sans-serif; | ||||
|         } | ||||
|     </style> | ||||
| </head> | ||||
| 
 | ||||
| <body> | ||||
|     <h1>Welcome to nginx!</h1> | ||||
|     <span>This is the default page, so the admin was likely too lazy too remove it.</span> | ||||
| </body> | ||||
| 
 | ||||
| </html> | ||||
							
								
								
									
										28
									
								
								images/nginx/entrypoint.sh
									
										
									
									
									
										Executable file
									
								
							
							
						
						
									
										28
									
								
								images/nginx/entrypoint.sh
									
										
									
									
									
										Executable file
									
								
							|  | @ -0,0 +1,28 @@ | |||
| #!/bin/sh | ||||
| 
 | ||||
| trap exit TERM | ||||
| 
 | ||||
| if [ -n "${CERTBOT_DOMAINS}" ]; then | ||||
|     echo "registering..." | ||||
|     if ! certbot show_account; then | ||||
|         certbot register -n \ | ||||
|             --agree-tos \ | ||||
|             -m "${CERTBOT_EMAIL}" | ||||
|     fi | ||||
| 
 | ||||
|     for d in $(echo "${CERTBOT_DOMAINS}" | sed 's/,/ /g'); do | ||||
|         echo "requesting for $d..." | ||||
|         certbot --nginx -n --keep -d "$d" | ||||
|     done | ||||
| 
 | ||||
|     while :; do | ||||
|         echo "renewing domains..." | ||||
|         certbot --nginx --keep -n renew | ||||
|         sleep 12h &  | ||||
|         wait $! | ||||
|     done & | ||||
| else | ||||
|     echo "skipping certbot due to no domains!" | ||||
| fi & | ||||
| 
 | ||||
| exec "$@" | ||||
|  | @ -0,0 +1,8 @@ | |||
| server { | ||||
|     listen 80; | ||||
|     server_name nebulosus.nl; | ||||
| 
 | ||||
|     # SSL is managed by certbot, no need for a ssl listen; it will be generated automagically! | ||||
| 
 | ||||
|     proxy_pass http://site; | ||||
| } | ||||
|  | @ -0,0 +1,8 @@ | |||
| version: '2.2' | ||||
| 
 | ||||
| 
 | ||||
| services: | ||||
|   site: | ||||
|     image: git.ixvd.net/nebulosus/web | ||||
|     networks: | ||||
|       - proxy | ||||
|  | @ -7,7 +7,7 @@ services: | |||
|     build: custom/nginx | ||||
|     environment: | ||||
|       CERTBOT_EMAIL: "webmaster@ixvd.net" | ||||
|       CERTBOT_DOMAINS: "keymaker.ixvd.net,ixvd.net,via.ixvd.net,cdn.ixvd.net,park.ixvd.net" | ||||
|       CERTBOT_DOMAINS: "keymaker.ixvd.net,ixvd.net,via.ixvd.net,cdn.ixvd.net,park.ixvd.net,nebulosus.nl" | ||||
|     volumes: | ||||
|       - /srv/certbot/data:/etc/letsencrypt | ||||
|       - /srv/certbot/other/www:/var/www/certbot | ||||
|  | @ -30,4 +30,4 @@ networks: | |||
|     external: true | ||||
|   internal: | ||||
|     external: true | ||||
|    | ||||
|    | ||||
|  |  | |||
|  | @ -1,13 +0,0 @@ | |||
| FROM nginx:alpine | ||||
| 
 | ||||
| RUN apk add \ | ||||
|     certbot \ | ||||
|     certbot-nginx | ||||
| 
 | ||||
| COPY content /usr/share/nginx/html | ||||
| COPY conf.d/ /etc/nginx/conf.d/ | ||||
| COPY nginx.conf /etc/nginx/nginx.conf | ||||
| 
 | ||||
| COPY entrypoint.sh /entrypoint | ||||
| ENTRYPOINT [ "sh", "/entrypoint" ] | ||||
| CMD [ "nginx", "-g", "daemon off;" ] | ||||
|  | @ -1,21 +0,0 @@ | |||
| server { | ||||
|     listen 80; | ||||
|     server_name localhost; | ||||
| 
 | ||||
|     # SSL is managed by certbot, no need for a ssl listen; it will be generated automagically! | ||||
| 
 | ||||
|     proxy_set_header Host $host; | ||||
|     proxy_set_header X-Real-IP $remote_addr; | ||||
|     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; | ||||
| 
 | ||||
|     # default html page | ||||
|     location / { | ||||
|         root /usr/share/nginx/html; | ||||
|         index index.html index.htm; | ||||
|     } | ||||
| 
 | ||||
|     error_page   500 502 503 504  /50x.html; | ||||
|     location = /50x.html { | ||||
|         root /usr/share/nginx/html; | ||||
|     } | ||||
| } | ||||
|  | @ -1,26 +0,0 @@ | |||
| <!DOCTYPE html> | ||||
| <html> | ||||
| 
 | ||||
| <head> | ||||
|     <title>Welcome to nginx!</title> | ||||
|     <style> | ||||
|         html { | ||||
|             color-scheme: light dark; | ||||
|         } | ||||
| 
 | ||||
|         body { | ||||
|             width: 35em; | ||||
|             margin: 0 auto; | ||||
|             font-family: Tahoma, Verdana, Arial, sans-serif; | ||||
|         } | ||||
|     </style> | ||||
| </head> | ||||
| 
 | ||||
| <body> | ||||
|     <h1>Welcome to nginx!</h1> | ||||
|     <hr/> | ||||
|     <span>If you're seeing this, it means the admin was too lazy to remove this page.</span><br/> | ||||
|     <span>Expected something here? contact the admin: webmaster@ixvd.net</span> | ||||
| </body> | ||||
| 
 | ||||
| </html> | ||||
|  | @ -1,28 +0,0 @@ | |||
| #!/bin/sh | ||||
| 
 | ||||
| trap exit TERM | ||||
| 
 | ||||
| if [ -n "${CERTBOT_DOMAINS}" ]; then | ||||
|     echo "registering..." | ||||
|     if ! certbot show_account; then | ||||
|         certbot register -n \ | ||||
|             --agree-tos \ | ||||
|             -m "${CERTBOT_EMAIL}" | ||||
|     fi | ||||
| 
 | ||||
|     for d in $(echo "${CERTBOT_DOMAINS}" | sed 's/,/ /g'); do | ||||
|         echo "requesting for $d..." | ||||
|         certbot --nginx -n --keep -d "$d" | ||||
|     done | ||||
| 
 | ||||
|     while :; do | ||||
|         echo "renewing domains..." | ||||
|         certbot --nginx --keep -n renew | ||||
|         sleep 12h & | ||||
|         wait $! | ||||
|     done & | ||||
| else | ||||
|     echo "skipping certbot due to no domains!" | ||||
| fi & | ||||
| 
 | ||||
| exec "$@" | ||||
|  | @ -1,35 +0,0 @@ | |||
| 
 | ||||
| user  nginx; | ||||
| worker_processes  auto; | ||||
| 
 | ||||
| error_log  /var/log/nginx/error.log notice; | ||||
| pid        /var/run/nginx.pid; | ||||
| 
 | ||||
| 
 | ||||
| events { | ||||
|     worker_connections  1024; | ||||
| } | ||||
| 
 | ||||
| 
 | ||||
| http { | ||||
|     include       /etc/nginx/mime.types; | ||||
|     default_type  application/octet-stream; | ||||
| 
 | ||||
|     log_format  main  '$remote_addr - $remote_user [$time_local] "$request" ' | ||||
|                       '$status $body_bytes_sent "$http_referer" ' | ||||
|                       '"$http_user_agent" "$http_x_forwarded_for"'; | ||||
| 
 | ||||
|     # docker resolver and quad9; | ||||
|     resolver 127.0.0.11 9.9.9.9 ipv6=off; | ||||
| 
 | ||||
|     access_log  /var/log/nginx/access.log  main; | ||||
| 
 | ||||
|     sendfile        on; | ||||
|     #tcp_nopush     on; | ||||
| 
 | ||||
|     keepalive_timeout  65; | ||||
| 
 | ||||
|     #gzip  on; | ||||
| 
 | ||||
|     include /etc/nginx/conf.d/*.conf; | ||||
| } | ||||
|  | @ -4,7 +4,8 @@ version: '2.2' | |||
| services: | ||||
|   # default nginx setup | ||||
|   nginx: | ||||
|     build: custom/nginx | ||||
|     build: | ||||
|       context: ../../../images/nginx | ||||
|     environment: | ||||
|       CERTBOT_EMAIL: "webmaster@ixvd.net" | ||||
|       CERTBOT_DOMAINS: "localhost" | ||||
|  |  | |||
|  | @ -1 +1 @@ | |||
| 059c7c3eb87d4a9bd30b70ba9016b875783b9206cbd44b4c2dc1bb8f59787127  - | ||||
| 07453417352829e9a47d22b3d8e15e0bb2d12df86f92165bda2568883d1817ab  - | ||||
|  |  | |||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue