From 710932c37fccda9fb4cd087e57129734e94f7b30 Mon Sep 17 00:00:00 2001
From: Rik Veenboer <rik.veenboer@gmail.com>
Date: Thu, 19 Dec 2024 15:00:56 +0100
Subject: [PATCH] remove lighttpd config

---
 docker-compose.lighttpd.yml       | 12 ------
 lighttpd/etc/.lighttpdpassword    |  1 -
 lighttpd/etc/lighttpd/global.conf | 61 -------------------------------
 3 files changed, 74 deletions(-)
 delete mode 100644 docker-compose.lighttpd.yml
 delete mode 100644 lighttpd/etc/.lighttpdpassword
 delete mode 100644 lighttpd/etc/lighttpd/global.conf

diff --git a/docker-compose.lighttpd.yml b/docker-compose.lighttpd.yml
deleted file mode 100644
index cc51902..0000000
--- a/docker-compose.lighttpd.yml
+++ /dev/null
@@ -1,12 +0,0 @@
-services:
-    lighttpd:
-        container_name: lighttpd
-        image: webserver:latest
-        ports:
-        - 80:81
-        restart: unless-stopped
-        volumes:
-        - /opt/lighttpd/etc:/host/etc
-        - /home/user/certs:/host/etc/certs
-        - /opt/lighttpd/var/log:/host/var/log
-        - /home/user/www:/host/var/www/global
diff --git a/lighttpd/etc/.lighttpdpassword b/lighttpd/etc/.lighttpdpassword
deleted file mode 100644
index 9e56a87..0000000
--- a/lighttpd/etc/.lighttpdpassword
+++ /dev/null
@@ -1 +0,0 @@
-user:makreel
diff --git a/lighttpd/etc/lighttpd/global.conf b/lighttpd/etc/lighttpd/global.conf
deleted file mode 100644
index c69407f..0000000
--- a/lighttpd/etc/lighttpd/global.conf
+++ /dev/null
@@ -1,61 +0,0 @@
-server.modules += ("mod_auth", "mod_setenv")
-
-$SERVER["socket"] == ":81" {
-    server.document-root = "/host/var/www/global"
-    auth.backend = "plain"
-    auth.backend.plain.userfile = "/host/etc/.lighttpdpassword"
-
-    $HTTP["url"] !~ "^(/public/.*|/.well-known/.*)" {
-        auth.require = (
-            "/" => (
-                "method" => "basic",
-                "realm" => "Password protected area",
-                "require" => "valid-user"
-            )
-        )
-    }
-    
-    $HTTP["host"] =~ "^bewind\.veenboer\.online" {
-        url.redirect = ( "^/(.*)" => "https://bewind.veenboer.online/" )
-    }
-}
-
-$SERVER["socket"] == ":443" {
-    server.document-root = "/host/var/www/global"
-
-    # Enable SSL
-    ssl.engine = "enable"
-    ssl.pemfile = "/host/etc/certs/key+certificate.pem"
-    ssl.ca-file = "/host/etc/certs/intermediate.pem"
-    ssl.dh-file = "/host/etc/certs/dh.pem"
-
-    # Increased security, from https://cipherli.st/
-    ssl.honor-cipher-order = "enable"
-    ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"
-    setenv.add-response-header = (
-        "Strict-Transport-Security" => "max-age=63072000; includeSubdomains; preload",
-        "X-Frame-Options" => "DENY",
-        "X-Content-Type-Options" => "nosniff"
-    )
-    ssl.use-sslv2 = "disable"
-    ssl.use-sslv3 = "disable"
-
-    # Increased security, from https://raymii.org/s/tutorials/HTTP_Strict_Transport_Security_for_Apache_NGINX_and_Lighttpd.html
-    $HTTP["scheme"] == "https" {
-        setenv.add-response-header = (
-            # "Strict-Transport-Security" => "max-age=63072000; includeSubdomains; preload",
-            "X-Frame-Options" => "DENY"
-        )
-    }
-
-    # Authentication
-    auth.backend = "plain"
-    auth.backend.plain.userfile = "/host/etc/.lighttpdpassword"
-    auth.require = (
-        "/" => (
-            "method" => "basic",
-            "realm" => "Password protected area",
-            "require" => "valid-user"
-        )
-    )
-}