gravitl/netmaker
1
1
Fork 0
mirror of https://github.com/gravitl/netmaker.git synced 2025-09-13 08:34:44 +08:00
Code Issues Projects Releases Packages Wiki Activity
netmaker/docker/Caddyfile
Tobias Cudnik 10ec96a237 nm-certs.sh 
- support EE and new domains
- minor fixes
2023-05-08 10:50:30 +02:00

51 lines
1.4 KiB
Caddyfile
Raw Blame History

# Dashboard
https://dashboard.NETMAKER_BASE_DOMAIN {
tls /root/fullchain.pem /root/privkey.pem
# Apply basic security headers
header {
# Enable cross origin access to *.NETMAKER_BASE_DOMAIN
Access-Control-Allow-Origin *.NETMAKER_BASE_DOMAIN
# Enable HTTP Strict Transport Security (HSTS)
Strict-Transport-Security "max-age=31536000;"
# Enable cross-site filter (XSS) and tell browser to block detected attacks
X-XSS-Protection "1; mode=block"
# Disallow the site to be rendered within a frame on a foreign domain (clickjacking protection)
X-Frame-Options "SAMEORIGIN"
# Prevent search engines from indexing
X-Robots-Tag "none"
# Remove the server name
-Server
}
reverse_proxy http://netmaker-ui
}
# API
https://api.NETMAKER_BASE_DOMAIN {
tls /root/fullchain.pem /root/privkey.pem
reverse_proxy http://netmaker:8081
}
# STUN
https://stun.NETMAKER_BASE_DOMAIN {
tls /root/fullchain.pem /root/privkey.pem
reverse_proxy netmaker:3478
}
# TURN
https://turn.NETMAKER_BASE_DOMAIN {
tls /root/fullchain.pem /root/privkey.pem
reverse_proxy host.docker.internal:3479
}
# TURN API
https://turnapi.NETMAKER_BASE_DOMAIN {
tls /root/fullchain.pem /root/privkey.pem
reverse_proxy http://host.docker.internal:8089
}
# MQ
wss://broker.NETMAKER_BASE_DOMAIN {
tls /root/fullchain.pem /root/privkey.pem
reverse_proxy ws://mq:8883 # For EMQX websockets use `reverse_proxy ws://mq:8083`
}
Reference in a new issue View git blame Copy permalink