mirror of
https://git.anonymousland.org/anonymousland/infrastructure.git
synced 2025-01-19 10:11:30 -05:00
8d6fb20c2c
Co-authored-by: NebulaOnion <nebulaonion@tutanota.com> Reviewed-on: https://git.anonymousland.org/anonymousland/infrastructure/pulls/5
41 lines
1.1 KiB
Plaintext
41 lines
1.1 KiB
Plaintext
## Version 2022/08/26
|
|
# make sure that your dns has a cname set for crowdsec and that your crowdsec container is not using a base url
|
|
|
|
server {
|
|
listen 443 ssl;
|
|
listen [::]:443 ssl;
|
|
|
|
server_name crowdsec.*;
|
|
|
|
include /config/nginx/ssl.conf;
|
|
|
|
client_max_body_size 0;
|
|
|
|
# enable for ldap auth, fill in ldap details in ldap.conf
|
|
#include /config/nginx/ldap.conf;
|
|
|
|
# enable for Authelia
|
|
#include /config/nginx/authelia-server.conf;
|
|
|
|
location / {
|
|
# enable the next two lines for http auth
|
|
#auth_basic "Restricted";
|
|
#auth_basic_user_file /config/nginx/.htpasswd;
|
|
|
|
# enable the next two lines for ldap auth
|
|
#auth_request /auth;
|
|
#error_page 401 =200 /ldaplogin;
|
|
|
|
# enable for Authelia
|
|
#include /config/nginx/authelia-location.conf;
|
|
|
|
include /config/nginx/proxy.conf;
|
|
include /config/nginx/resolver.conf;
|
|
set $upstream_app crowdsec;
|
|
set $upstream_port 8080;
|
|
set $upstream_proto http;
|
|
proxy_pass $upstream_proto://$upstream_app:$upstream_port;
|
|
|
|
}
|
|
}
|