Lukáš Kucharczyk
08572f6ef8
jellyfin, nginx, openldap: do not restart
2021-06-21 11:54:24 +02:00
Lukáš Kucharczyk
a0b1b75a73
Improve networks
...
Create a single external network called "external".
Create container-specific networks.
Only a few containers need access to these.
So far: openldap, postgres.
2021-06-21 10:38:18 +02:00
Lukáš Kucharczyk
d6a6e418b6
nginx: log subrequests
2021-06-21 09:53:47 +02:00
Lukáš Kucharczyk
171ef655f8
general: add provision.sh
2021-06-20 20:37:06 +02:00
Lukáš Kucharczyk
851f5ac25e
authelia: add more nginx configuration
2021-06-20 19:38:53 +02:00
Lukáš Kucharczyk
5b5f53564f
nginx: add more snippets, some placeholders
2021-05-18 19:40:58 +02:00
Lukáš Kucharczyk
87853b9fde
Fix nginx template snippets not being copied
2021-05-15 00:01:23 +02:00
Lukáš Kucharczyk
af5e7c153f
Move certificates to Ansible Vault ( #27 )
2021-05-14 21:58:11 +00:00
Lukáš Kucharczyk
9cd4aa1ad3
Add nginx snippets from Nginx Proxy Manager
2021-05-14 21:58:11 +00:00
Lukáš Kucharczyk
2412c87fbb
Change certificate paths in nginx.conf
2021-05-14 21:58:11 +00:00
Lukáš Kucharczyk
cd7b9918a1
Change how certificates are installed
2021-05-14 21:58:11 +00:00
Lukáš Kucharczyk
69ce5dc3a9
Move certificates to roles/nginx/files for now
2021-05-14 21:58:11 +00:00
Lukáš Kucharczyk
c158a21dfc
nginx: separate self-signed certs
2021-05-05 20:41:28 +02:00
Lukáš Kucharczyk
d0d33b47b9
nginx: join the default bridge network for ext access
2021-05-05 19:35:55 +02:00
Lukáš Kucharczyk
54de631d29
Improve routing between containers
...
Create user network nginx-internal
and use Docker's internal DNS server
to resolve containers by hostname.
2021-04-27 23:09:21 +02:00
Lukáš Kucharczyk
d9bd3ac145
Improve certificate generation
...
1. Generate root CA
2. Generate wildcard CSR
3. Sign wildcard CSR with root CA
4. Install root CA system-wide
2021-04-27 22:29:52 +02:00
Lukáš Kucharczyk
4cc2998fac
Generate certificates automatically
2021-04-27 19:13:35 +02:00
Lukáš Kucharczyk
765e9e5a47
Enable SSL
2021-04-26 23:54:10 +02:00
Lukáš Kucharczyk
4907cdfd99
Explicitly restart containers to prevent hard-to-debug issues
2021-04-26 22:36:53 +02:00
Lukáš Kucharczyk
58fd1aa430
Make sure directories exist
2021-04-26 22:35:59 +02:00
Lukáš Kucharczyk
9c57996d95
Change reload nginx handler
2021-04-23 01:20:59 +02:00
Lukáš Kucharczyk
f4310c2e7d
Initial commit with working nginx and jellyfin
2021-04-23 01:04:44 +02:00