summaryrefslogtreecommitdiff
path: root/data
diff options
context:
space:
mode:
Diffstat (limited to 'data')
-rw-r--r--data/nginx/scalelite/acme-challenge.location3
-rw-r--r--data/nginx/scalelite/blacklist9
-rw-r--r--data/proxy/haproxy/.keep0
-rw-r--r--data/proxy/nginx/sites-common13
-rw-r--r--data/proxy/nginx/sites.template.scalelite-cluster77
-rw-r--r--data/proxy/nginx/sites.template.scalelite-local64
-rw-r--r--data/proxy/nginx/sites.template.scalelite-local-protected61
-rw-r--r--data/proxy/nginx/sites.template.scalelite-proxy69
-rw-r--r--data/proxy/nginx/sites.template.scalelite-proxy-protected61
-rw-r--r--data/redis/conf/redis.conf81
10 files changed, 0 insertions, 438 deletions
diff --git a/data/nginx/scalelite/acme-challenge.location b/data/nginx/scalelite/acme-challenge.location
deleted file mode 100644
index 9343507..0000000
--- a/data/nginx/scalelite/acme-challenge.location
+++ /dev/null
@@ -1,3 +0,0 @@
-location /.well-known/acme-challenge/ {
- root /var/www/certbot;
-}
diff --git a/data/nginx/scalelite/blacklist b/data/nginx/scalelite/blacklist
deleted file mode 100644
index 876c6d4..0000000
--- a/data/nginx/scalelite/blacklist
+++ /dev/null
@@ -1,9 +0,0 @@
-## Deny access to IPs or subnets.
-# deny IP;
-# deny subnet;
-# e.g.
-# deny 192.168.0.1;
-# deny 192.168.0.0/24;
-
-## Allow access to everything else.
-allow all;
diff --git a/data/proxy/haproxy/.keep b/data/proxy/haproxy/.keep
deleted file mode 100644
index e69de29..0000000
--- a/data/proxy/haproxy/.keep
+++ /dev/null
diff --git a/data/proxy/nginx/sites-common b/data/proxy/nginx/sites-common
deleted file mode 100644
index d906992..0000000
--- a/data/proxy/nginx/sites-common
+++ /dev/null
@@ -1,13 +0,0 @@
-proxy_read_timeout 60s;
-proxy_redirect off;
-
-proxy_set_header Host $http_host;
-
-proxy_set_header X-Real-IP $remote_addr;
-proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-
-proxy_set_header X-Forwarded-Proto $scheme;
-
-proxy_http_version 1.1;
-proxy_set_header Upgrade $http_upgrade;
-proxy_set_header Connection "upgrade";
diff --git a/data/proxy/nginx/sites.template.scalelite-cluster b/data/proxy/nginx/sites.template.scalelite-cluster
deleted file mode 100644
index 395fabe..0000000
--- a/data/proxy/nginx/sites.template.scalelite-cluster
+++ /dev/null
@@ -1,77 +0,0 @@
-#### For <$NGINX_HOSTNAME>
-
-upstream docker-scalelite-api {
- server scalelite-api-1:80 max_fails=3 fail_timeout=30s;
- server scalelite-api-2:80 max_fails=3 fail_timeout=30s;
-}
-
-upstream docker-scalelite-recordings {
- server scalelite-recordings-1:80 max_fails=3 fail_timeout=30s;
- server scalelite-recordings-2:80 max_fails=3 fail_timeout=30s;
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 80;
- listen [::]:80;
-
- location /.well-known/acme-challenge/ {
- root /var/www/certbot;
- }
-
- location / {
- return 301 https://$host$request_uri;
- }
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 443 ssl;
- listen [::]:443 ssl;
-
- ## Configuration for Letsencrypt SSL Certificate
- ssl_certificate /etc/letsencrypt/live/$NGINX_HOSTNAME/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/$NGINX_HOSTNAME/privkey.pem;
-
- ## Configuration for SSL Certificate from a CA other than LetsEncrypt
- #ssl_certificate /etc/ssl/fullchain.pem;
- #ssl_certificate_key /etc/ssl/privkey.pem;
-
- location /bigbluebutton/api/ {
- proxy_pass http://docker-scalelite-api;
-
- proxy_read_timeout 60s;
- proxy_redirect off;
-
- proxy_set_header Host $http_host;
-
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-
- proxy_set_header X-Forwarded-Proto $scheme;
-
- proxy_http_version 1.1;
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection "upgrade";
- }
-
- location / {
- proxy_pass http://docker-scalelite-recordings;
-
- proxy_read_timeout 60s;
- proxy_redirect off;
-
- proxy_set_header Host $http_host;
-
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-
- proxy_set_header X-Forwarded-Proto $scheme;
-
- proxy_http_version 1.1;
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection "upgrade";
- }
-}
diff --git a/data/proxy/nginx/sites.template.scalelite-local b/data/proxy/nginx/sites.template.scalelite-local
deleted file mode 100644
index dfb5f97..0000000
--- a/data/proxy/nginx/sites.template.scalelite-local
+++ /dev/null
@@ -1,64 +0,0 @@
-#### For <$NGINX_HOSTNAME>
-
-upstream docker-scalelite-api {
- server $NGINX_HOSTNAME:3000;
-}
-
-upstream docker-scalelite-recordings {
- server scalelite-recordings:80;
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 80;
- listen [::]:80;
-
- location /.well-known/acme-challenge/ {
- root /var/www/certbot;
- }
-
- location / {
- return 301 https://$host$request_uri;
- }
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 443 ssl;
- listen [::]:443 ssl;
-
- ## Configuration for Letsencrypt SSL Certificate
- ssl_certificate /etc/letsencrypt/live/$NGINX_HOSTNAME/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/$NGINX_HOSTNAME/privkey.pem;
-
- ## Configuration for SSL Certificate from a CA other than LetsEncrypt
- #ssl_certificate /etc/ssl/fullchain.pem;
- #ssl_certificate_key /etc/ssl/privkey.pem;
-
- location /health_check {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-
- location /bigbluebutton/api/ {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-
- location /presentation/ {
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- }
-
- location /playback/ {
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- }
-
- location / {
- proxy_pass http://docker-scalelite-api/health_check;
- include /etc/nginx/sites-common;
- }
-}
diff --git a/data/proxy/nginx/sites.template.scalelite-local-protected b/data/proxy/nginx/sites.template.scalelite-local-protected
deleted file mode 100644
index d53d130..0000000
--- a/data/proxy/nginx/sites.template.scalelite-local-protected
+++ /dev/null
@@ -1,61 +0,0 @@
-#### For <$NGINX_HOSTNAME>
-
-upstream docker-scalelite-api {
- server $NGINX_HOSTNAME:3000;
-}
-
-upstream docker-scalelite-recordings {
- server scalelite-recordings:80;
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 80;
- listen [::]:80;
-
- location /.well-known/acme-challenge/ {
- root /var/www/certbot;
- }
-
- location / {
- return 301 https://$host$request_uri;
- }
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 443 ssl;
- listen [::]:443 ssl;
-
- ## Configuration for Letsencrypt SSL Certificate
- ssl_certificate /etc/letsencrypt/live/$NGINX_HOSTNAME/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/$NGINX_HOSTNAME/privkey.pem;
-
- ## Configuration for SSL Certificate from a CA other than LetsEncrypt
- #ssl_certificate /etc/ssl/fullchain.pem;
- #ssl_certificate_key /etc/ssl/privkey.pem;
-
- location /health_check {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-
- location /static-resource/ {
- rewrite /static-resource(/|$)(.*) /$2 break;
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- internal;
- }
-
- location /playback {
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- }
-
- location / {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-}
diff --git a/data/proxy/nginx/sites.template.scalelite-proxy b/data/proxy/nginx/sites.template.scalelite-proxy
deleted file mode 100644
index c099bcb..0000000
--- a/data/proxy/nginx/sites.template.scalelite-proxy
+++ /dev/null
@@ -1,69 +0,0 @@
-#### For <$NGINX_HOSTNAME>
-
-upstream docker-scalelite-api {
- server scalelite-api:3000;
-}
-
-upstream docker-scalelite-recordings {
- server scalelite-recordings:80;
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 80;
- listen [::]:80;
-
- location /.well-known/acme-challenge/ {
- root /var/www/certbot;
- }
-
- location / {
- return 301 https://$host$request_uri;
- }
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 443 ssl http2;
- listen [::]:443 ssl http2;
-
- ssl_protocols TLSv1.2 TLSv1.3;
- ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384;
- ssl_prefer_server_ciphers on;
- ssl_session_cache shared:SSL:10m;
-
- ## Configuration for Letsencrypt SSL Certificate
- ssl_certificate /etc/letsencrypt/live/$NGINX_HOSTNAME/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/$NGINX_HOSTNAME/privkey.pem;
-
- ## Configuration for SSL Certificate from a CA other than LetsEncrypt
- #ssl_certificate /etc/ssl/fullchain.pem;
- #ssl_certificate_key /etc/ssl/privkey.pem;
-
- location /health_check {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-
- location /bigbluebutton/api/ {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-
- location /presentation/ {
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- }
-
- location /playback/ {
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- }
-
- location / {
- proxy_pass http://docker-scalelite-api/health_check;
- include /etc/nginx/sites-common;
- }
-}
diff --git a/data/proxy/nginx/sites.template.scalelite-proxy-protected b/data/proxy/nginx/sites.template.scalelite-proxy-protected
deleted file mode 100644
index 5a8403a..0000000
--- a/data/proxy/nginx/sites.template.scalelite-proxy-protected
+++ /dev/null
@@ -1,61 +0,0 @@
-#### For <$NGINX_HOSTNAME>
-
-upstream docker-scalelite-api {
- server scalelite-api:3000;
-}
-
-upstream docker-scalelite-recordings {
- server scalelite-recordings:80;
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 80;
- listen [::]:80;
-
- location /.well-known/acme-challenge/ {
- root /var/www/certbot;
- }
-
- location / {
- return 301 https://$host$request_uri;
- }
-}
-
-server {
- server_name $NGINX_HOSTNAME;
-
- listen 443 ssl;
- listen [::]:443 ssl;
-
- ## Configuration for Letsencrypt SSL Certificate
- ssl_certificate /etc/letsencrypt/live/$NGINX_HOSTNAME/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/$NGINX_HOSTNAME/privkey.pem;
-
- ## Configuration for SSL Certificate from a CA other than LetsEncrypt
- #ssl_certificate /etc/ssl/fullchain.pem;
- #ssl_certificate_key /etc/ssl/privkey.pem;
-
- location /health_check {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-
- location /static-resource/ {
- rewrite /static-resource(/|$)(.*) /$2 break;
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- internal;
- }
-
- location /playback {
- proxy_pass http://docker-scalelite-recordings;
- include /etc/nginx/sites-common;
- }
-
- location / {
- proxy_pass http://docker-scalelite-api;
- include /etc/nginx/sites-common;
- }
-}
diff --git a/data/redis/conf/redis.conf b/data/redis/conf/redis.conf
deleted file mode 100644
index eb0fe99..0000000
--- a/data/redis/conf/redis.conf
+++ /dev/null
@@ -1,81 +0,0 @@
-bind 0.0.0.0
-protected-mode no
-masterauth "redisTLSTest2021@@"
-requirepass "redisTLSTest2021@@"
-port 0
-tcp-backlog 511
-timeout 300
-tcp-keepalive 300
-daemonize no
-supervised no
-pidfile /var/run/redis.pid
-loglevel notice
-#logfile "/var/log/redis/redis.log"
-databases 16
-always-show-logo no
-stop-writes-on-bgsave-error yes
-rdbcompression yes
-rdbchecksum yes
-# The filename where to dump the DB
-dbfilename dump_6479.rdb
-replica-serve-stale-data yes
-replica-read-only yes
-repl-diskless-sync no
-repl-diskless-sync-delay 5
-repl-timeout 60
-repl-disable-tcp-nodelay no
-replica-priority 100
-maxclients 10000
-# maxmemory-policy noeviction
-lazyfree-lazy-eviction no
-lazyfree-lazy-expire no
-lazyfree-lazy-server-del no
-replica-lazy-flush no
-appendonly yes
-appendfilename "appendonly.aof"
-appendfsync everysec
-no-appendfsync-on-rewrite no
-auto-aof-rewrite-percentage 100
-auto-aof-rewrite-min-size 64mb
-aof-load-truncated yes
-aof-use-rdb-preamble yes
-lua-time-limit 5000
-cluster-config-file redis_cluster.conf
-cluster-node-timeout 15000
-cluster-enabled yes
-# cluster-replica-validity-factor 10
-# cluster-require-full-coverage yes
-slowlog-log-slower-than 10000
-slowlog-max-len 128
-latency-monitor-threshold 0
-notify-keyspace-events ""
-list-max-ziplist-size -2
-activerehashing yes
-client-output-buffer-limit normal 0 0 0
-client-output-buffer-limit replica 256mb 64mb 60
-client-output-buffer-limit pubsub 32mb 8mb 60
-hz 10
-dynamic-hz yes
-rdb-save-incremental-fsync yes
-### TLS
-tls-port 7379
-tls-cert-file /etc/letsencrypt/archive/sl.jesus.123it.ca/cert3.pem
-tls-key-file /etc/letsencrypt/archive/sl.jesus.123it.ca/privkey3.pem
-tls-ca-cert-file /etc/letsencrypt/archive/sl.jesus.123it.ca/chain3.pem
-tls-auth-clients no
-
-# tls-auth-clients optional
-
-tls-replication yes
-tls-cluster yes
-
-# Explicitly specify TLS versions to support. Allowed values are case insensitive
-# and include "TLSv1", "TLSv1.1", "TLSv1.2", "TLSv1.3" (OpenSSL >= 1.1.1) or
-# any combination. To enable only TLSv1.2 and TLSv1.3, use:
-#
-tls-protocols "TLSv1.2 TLSv1.3"
-
-# By default, TLS session caching is enabled to allow faster and less expensive
-# reconnections by clients that support it. Use the following directive to disable
-# caching.
-tls-session-caching no
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-20 12:22:49 +0000