homeserver/opt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

remove lighttpd

Browse Source
This commit is contained in:
Rik Veenboer
2024-11-27 09:04:49 +01:00
parent dc6b02477d
commit a33d3032c5
6 changed files with 0 additions and 105 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
docker-compose.lighttpd.yml
View File

@@ -1,10 +0,0 @@
services:
lighttpd:
container_name: lighttpd
image: sebp/lighttpd:1.4.64-r0
ports:
- 80:80
restart: unless-stopped
tty: true
volumes:
- /home/user/www:/var/www/localhost/htdocs

1
docker-compose.yml
View File

@@ -1,7 +1,6 @@
include: include:
# Web # Web
- docker-compose.caddy.yml - docker-compose.caddy.yml
- docker-compose.lighttpd.yml
- docker-compose.nginx.yml - docker-compose.nginx.yml
# Authentication # Authentication

1
lighttpd/etc/.lighttpdpassword
View File

@@ -1 +0,0 @@
user:dummy

26
lighttpd/etc/lighttpd/blog.conf
View File

@@ -1,26 +0,0 @@
server.modules += ("mod_accesslog", "mod_alias")
$SERVER["socket"] == ":1992" {
accesslog.filename = "/host/var/log/lighttpd/blog-lara.log"
server.document-root = "/host/var/www/blog/lara/site"
alias.url = ("/asset" => "/host/var/www/blog/lara/asset")
server.errorfile-prefix = "/host/var/www/blog/lara/site/error/http-"
# Authentication
auth.backend = "plain"
auth.backend.plain.userfile = "/host/etc/.lighttpdpassword"
auth.require = (
"/" => (
"method" => "basic",
"realm" => "Password protected area",
"require" => "valid-user"
)
)
}
$SERVER["socket"] == ":3838" {
accesslog.filename = "/host/var/log/lighttpd/blog-scotland.log"
server.document-root = "/host/var/www/blog/scotland/site"
alias.url = ("/asset" => "/host/var/www/blog/scotland/asset")
server.errorfile-prefix = "/host/var/www/blog/scotland/site/error/http-"
}

57
lighttpd/etc/lighttpd/global.conf
View File

@@ -1,57 +0,0 @@
server.modules += ("mod_auth", "mod_setenv")
$SERVER["socket"] == ":81" {
server.document-root = "/host/var/www/global"
auth.backend = "plain"
auth.backend.plain.userfile = "/host/etc/.lighttpdpassword"
$HTTP["url"] !~ "^(/public/.*|/.well-known/.*)" {
auth.require = (
"/" => (
"method" => "basic",
"realm" => "Password protected area",
"require" => "valid-user"
)
)
}
}
$SERVER["socket"] == ":443" {
server.document-root = "/host/var/www/global"
# Enable SSL
ssl.engine = "enable"
ssl.pemfile = "/host/etc/certs/key+certificate.pem"
ssl.ca-file = "/host/etc/certs/intermediate.pem"
ssl.dh-file = "/host/etc/certs/dh.pem"
# Increased security, from https://cipherli.st/
ssl.honor-cipher-order = "enable"
ssl.cipher-list = "EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH"
setenv.add-response-header = (
"Strict-Transport-Security" => "max-age=63072000; includeSubdomains; preload",
"X-Frame-Options" => "DENY",
"X-Content-Type-Options" => "nosniff"
)
ssl.use-sslv2 = "disable"
ssl.use-sslv3 = "disable"
# Increased security, from https://raymii.org/s/tutorials/HTTP_Strict_Transport_Security_for_Apache_NGINX_and_Lighttpd.html
$HTTP["scheme"] == "https" {
setenv.add-response-header = (
# "Strict-Transport-Security" => "max-age=63072000; includeSubdomains; preload",
"X-Frame-Options" => "DENY"
)
}
# Authentication
auth.backend = "plain"
auth.backend.plain.userfile = "/host/etc/.lighttpdpassword"
auth.require = (
"/" => (
"method" => "basic",
"realm" => "Password protected area",
"require" => "valid-user"
)
)
}

10
nginx/etc/nginx/conf.d/global.conf
View File

@@ -1,13 +1,3 @@
server {
listen 80;
location / {
# lighttpd
proxy_pass http://host:80;
include /etc/nginx/conf/proxy.conf;
}
}
server { server {
# test # test
listen 80; listen 80;