examples - use example.com instead of website.com
This commit is contained in:
parent
6713f56ec1
commit
b926b0db62
|
@ -41,9 +41,9 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app1.website.com:/app
|
||||
- ./web-files/app1.example.com:/app
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app1.website.com" # replace with your domain
|
||||
- "bunkerized-nginx.SERVER_NAME=app1.example.com" # replace with your domain
|
||||
- "bunkerized-nginx.REMOTE_PHP=myapp1"
|
||||
- "bunkerized-nginx.REMOTE_PHP_PATH=/app"
|
||||
|
||||
|
@ -51,9 +51,9 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app2.website.com:/app
|
||||
- ./web-files/app2.example.com:/app
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app2.website.com" # replace with your domain
|
||||
- "bunkerized-nginx.SERVER_NAME=app2.example.com" # replace with your domain
|
||||
- "bunkerized-nginx.REMOTE_PHP=myapp2"
|
||||
- "bunkerized-nginx.REMOTE_PHP_PATH=/app"
|
||||
|
||||
|
@ -61,9 +61,9 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app3.website.com:/app
|
||||
- ./web-files/app3.example.com:/app
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app3.website.com" # replace with your domain
|
||||
- "bunkerized-nginx.SERVER_NAME=app3.example.com" # replace with your domain
|
||||
- "bunkerized-nginx.REMOTE_PHP=myapp3"
|
||||
- "bunkerized-nginx.REMOTE_PHP_PATH=/app"
|
||||
|
||||
|
|
|
@ -44,7 +44,7 @@ services:
|
|||
environment:
|
||||
- NODE_ENV=production
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app1.website.com" # replace with your domain
|
||||
- "bunkerized-nginx.SERVER_NAME=app1.example.com" # replace with your domain
|
||||
- "bunkerized-nginx.REVERSE_PROXY_URL=/"
|
||||
- "bunkerized-nginx.REVERSE_PROXY_HOST=http://myapp1:3000"
|
||||
|
||||
|
@ -54,7 +54,7 @@ services:
|
|||
environment:
|
||||
- NODE_ENV=production
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app2.website.com" # replace with your domain
|
||||
- "bunkerized-nginx.SERVER_NAME=app2.example.com" # replace with your domain
|
||||
- "bunkerized-nginx.REVERSE_PROXY_URL=/"
|
||||
- "bunkerized-nginx.REVERSE_PROXY_HOST=http://myapp2:3000"
|
||||
|
||||
|
@ -64,7 +64,7 @@ services:
|
|||
environment:
|
||||
- NODE_ENV=production
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app3.website.com" # replace with your domain
|
||||
- "bunkerized-nginx.SERVER_NAME=app3.example.com" # replace with your domain
|
||||
- "bunkerized-nginx.REVERSE_PROXY_URL=/"
|
||||
- "bunkerized-nginx.REVERSE_PROXY_HOST=http://myapp3:3000"
|
||||
|
||||
|
|
|
@ -16,7 +16,7 @@ services:
|
|||
- ./web-files:/www:ro
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
|
|
@ -1,6 +1,6 @@
|
|||
HTTP_PORT=80
|
||||
HTTPS_PORT=443
|
||||
SERVER_NAME=www.website.com
|
||||
SERVER_NAME=www.example.com
|
||||
AUTO_LETS_ENCRYPT=yes
|
||||
REDIRECT_HTTP_TO_HTTPS=yes
|
||||
DISABLE_DEFAULT_SERVER=yes
|
||||
|
|
|
@ -21,7 +21,7 @@ services:
|
|||
volumes:
|
||||
- ./web1:/www:ro
|
||||
environment:
|
||||
- SERVER_NAME=app1.website.com
|
||||
- SERVER_NAME=app1.example.com
|
||||
- PROXY_REAL_IP=yes
|
||||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
|
@ -30,7 +30,7 @@ services:
|
|||
labels:
|
||||
- 'traefik.enable=true'
|
||||
- 'traefik.port=8080'
|
||||
- 'traefik.frontend.rule=Host:app1.website.com' # replace with your domain
|
||||
- 'traefik.frontend.rule=Host:app1.example.com' # replace with your domain
|
||||
|
||||
mywww2:
|
||||
image: bunkerity/bunkerized-nginx
|
||||
|
@ -38,7 +38,7 @@ services:
|
|||
volumes:
|
||||
- ./web2:/www:ro
|
||||
environment:
|
||||
- SERVER_NAME=app2.website.com
|
||||
- SERVER_NAME=app2.example.com
|
||||
- PROXY_REAL_IP=yes
|
||||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
|
@ -47,7 +47,7 @@ services:
|
|||
labels:
|
||||
- 'traefik.enable=true'
|
||||
- 'traefik.port=8080'
|
||||
- 'traefik.frontend.rule=Host:app2.website.com' # replace with your domain
|
||||
- 'traefik.frontend.rule=Host:app2.example.com' # replace with your domain
|
||||
|
||||
myphp1:
|
||||
image: php:fpm
|
||||
|
|
|
@ -16,12 +16,12 @@ defaultEntryPoints = ["https","http"]
|
|||
|
||||
[docker]
|
||||
endpoint = "unix:///var/run/docker.sock"
|
||||
domain = "website.com"
|
||||
domain = "example.com"
|
||||
watch = true
|
||||
exposedByDefault = false
|
||||
|
||||
[acme]
|
||||
email = "contact@website.com"
|
||||
email = "contact@example.com"
|
||||
storage = "acme.json"
|
||||
entryPoint = "https"
|
||||
onHostRule = true
|
||||
|
|
|
@ -3,8 +3,8 @@
|
|||
# you need to run it before starting bunkerized-nginx to get the first certificate
|
||||
|
||||
# edit according to your values
|
||||
DOMAINS="website.com,*.website.com"
|
||||
EMAIL="contact@website.com"
|
||||
DOMAINS="example.com,*.example.com"
|
||||
EMAIL="contact@example.com"
|
||||
SERVICE="mywww"
|
||||
|
||||
# ask for the certificate
|
||||
|
|
|
@ -16,10 +16,10 @@ services:
|
|||
- ./web-files:/www:ro
|
||||
- ./letsencrypt:/letsencrypt:ro
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain(s)
|
||||
- SERVER_NAME=www.example.com # replace with your domain(s)
|
||||
- USE_CUSTOM_HTTPS=yes
|
||||
- CUSTOM_HTTPS_CERT=/letsencrypt/live/website.com/fullchain.pem # replace with your path
|
||||
- CUSTOM_HTTPS_KEY=/letsencrypt/live/website.com/privkey.pem # replace with your path
|
||||
- CUSTOM_HTTPS_CERT=/letsencrypt/live/example.com/fullchain.pem # replace with your path
|
||||
- CUSTOM_HTTPS_KEY=/letsencrypt/live/example.com/privkey.pem # replace with your path
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- PROXY_REAL_IP=yes
|
||||
# networks from https://www.cloudflare.com/ips-v4/
|
||||
|
|
|
@ -4,7 +4,7 @@
|
|||
# since it's manual there is no auto renew, you need to run it again before it expires
|
||||
|
||||
# replace with your values
|
||||
DOMAINS="website.com,*.website.com"
|
||||
DOMAINS="example.com,*.example.com"
|
||||
SERVICE="mywww"
|
||||
|
||||
# ask for wildcard certificate
|
||||
|
|
|
@ -17,28 +17,28 @@ services:
|
|||
- ./web-files:/www:ro
|
||||
- ./letsencrypt:/letsencrypt:ro
|
||||
environment:
|
||||
- SERVER_NAME=app1.website.com app2.website.com # replace with your domains
|
||||
- SERVER_NAME=app1.example.com app2.example.com # replace with your domains
|
||||
- MULTISITE=yes
|
||||
- USE_CUSTOM_HTTPS=yes
|
||||
- CUSTOM_HTTPS_CERT=/letsencrypt/live/website.com/fullchain.pem
|
||||
- CUSTOM_HTTPS_KEY=/letsencrypt/live/website.com/privkey.pem
|
||||
- CUSTOM_HTTPS_CERT=/letsencrypt/live/example.com/fullchain.pem
|
||||
- CUSTOM_HTTPS_KEY=/letsencrypt/live/example.com/privkey.pem
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
- app1.website.com_REMOTE_PHP=myapp1
|
||||
- app1.website.com_REMOTE_PHP_PATH=/app
|
||||
- app2.website.com_REMOTE_PHP=myapp2
|
||||
- app2.website.com_REMOTE_PHP_PATH=/app
|
||||
- app1.example.com_REMOTE_PHP=myapp1
|
||||
- app1.example.com_REMOTE_PHP_PATH=/app
|
||||
- app2.example.com_REMOTE_PHP=myapp2
|
||||
- app2.example.com_REMOTE_PHP_PATH=/app
|
||||
|
||||
myapp1:
|
||||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app1.website.com:/app
|
||||
- ./web-files/app1.example.com:/app
|
||||
|
||||
myapp2:
|
||||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app2.website.com:/app
|
||||
- ./web-files/app2.example.com:/app
|
||||
|
|
|
@ -17,7 +17,7 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
- ./bunkerized-nginx-clamav:/plugins/clamav:ro # you will need to download the plugin see download-plugin.sh
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
|
|
@ -24,7 +24,7 @@ services:
|
|||
- ./web-files:/www:ro
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=app1.website.com app2.website.com # replace with your domains
|
||||
- SERVER_NAME=app1.example.com app2.example.com # replace with your domains
|
||||
- MULTISITE=yes
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
@ -34,10 +34,10 @@ services:
|
|||
- USE_CROWDSEC=yes
|
||||
- CROWDSEC_HOST=http://mycrowdsec:8080
|
||||
- CROWDSEC_KEY= # you need to generate it (see bouncer_key.sh)
|
||||
- app1.website.com_REMOTE_PHP=myapp1
|
||||
- app1.website.com_REMOTE_PHP_PATH=/app
|
||||
- app2.website.com_REMOTE_PHP=myapp2
|
||||
- app2.website.com_REMOTE_PHP_PATH=/app
|
||||
- app1.example.com_REMOTE_PHP=myapp1
|
||||
- app1.example.com_REMOTE_PHP_PATH=/app
|
||||
- app2.example.com_REMOTE_PHP=myapp2
|
||||
- app2.example.com_REMOTE_PHP_PATH=/app
|
||||
networks:
|
||||
net0:
|
||||
net1:
|
||||
|
@ -69,7 +69,7 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app1.website.com:/app
|
||||
- ./web-files/app1.example.com:/app
|
||||
networks:
|
||||
- net1
|
||||
|
||||
|
@ -77,7 +77,7 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app2.website.com:/app
|
||||
- ./web-files/app2.example.com:/app
|
||||
networks:
|
||||
- net2
|
||||
|
||||
|
|
|
@ -15,7 +15,7 @@ services:
|
|||
volumes:
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
@ -31,4 +31,4 @@ services:
|
|||
volumes:
|
||||
- ./data-ghost:/var/lib/ghost/content
|
||||
environment:
|
||||
- url=https://www.website.com # replace with your domain
|
||||
- url=https://www.example.com # replace with your domain
|
||||
|
|
|
@ -12,7 +12,7 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
- ./modsec-crs-confs:/modsec-crs-confs:ro # fix FP with CRS
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
|
|
@ -28,7 +28,7 @@ services:
|
|||
- ./web-files:/www:ro
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
|
|
@ -16,7 +16,7 @@ services:
|
|||
- ./joomla-files:/www:ro
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
|
|
@ -18,7 +18,7 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
- ./http-confs:/http-confs:ro
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
|
|
@ -15,7 +15,7 @@ services:
|
|||
volumes:
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
@ -37,7 +37,7 @@ services:
|
|||
environment:
|
||||
- MOODLE_USERNAME=admin # replace with your moodle admin username
|
||||
- MOODLE_PASSWORD=password # replace with your moodle admin password
|
||||
- MOODLE_EMAIL=moodle@website.com # replace with your moodle admin email
|
||||
- MOODLE_EMAIL=moodle@example.com # replace with your moodle admin email
|
||||
- MOODLE_SITE_NAME=My Moodle # replace with your moodle site name
|
||||
- MOODLE_DATABASE_HOST=mydb
|
||||
- MOODLE_DATABASE_NAME=moodle
|
||||
|
|
|
@ -18,22 +18,22 @@ services:
|
|||
- ./web-files:/www:ro
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=app1.website.com app2.website.com app3.website.com # replace with your domains
|
||||
- SERVER_NAME=app1.example.com app2.example.com app3.example.com # replace with your domains
|
||||
- MULTISITE=yes
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
- app1.website.com_REMOTE_PHP=myapp1
|
||||
- app1.website.com_REMOTE_PHP_PATH=/app
|
||||
- app2.website.com_REMOTE_PHP=myapp2
|
||||
- app2.website.com_REMOTE_PHP_PATH=/app
|
||||
- app3.website.com_SERVE_FILES=no
|
||||
- app3.website.com_USE_PROXY_CACHE=yes
|
||||
- app3.website.com_USE_REVERSE_PROXY=yes
|
||||
- app3.website.com_REVERSE_PROXY_URL=/
|
||||
- app3.website.com_REVERSE_PROXY_HOST=http://myapp3:3000
|
||||
- app1.example.com_REMOTE_PHP=myapp1
|
||||
- app1.example.com_REMOTE_PHP_PATH=/app
|
||||
- app2.example.com_REMOTE_PHP=myapp2
|
||||
- app2.example.com_REMOTE_PHP_PATH=/app
|
||||
- app3.example.com_SERVE_FILES=no
|
||||
- app3.example.com_USE_PROXY_CACHE=yes
|
||||
- app3.example.com_USE_REVERSE_PROXY=yes
|
||||
- app3.example.com_REVERSE_PROXY_URL=/
|
||||
- app3.example.com_REVERSE_PROXY_HOST=http://myapp3:3000
|
||||
networks:
|
||||
- net1
|
||||
- net2
|
||||
|
@ -43,7 +43,7 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app1.website.com:/app
|
||||
- ./web-files/app1.example.com:/app
|
||||
networks:
|
||||
- net1
|
||||
|
||||
|
@ -51,7 +51,7 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app2.website.com:/app
|
||||
- ./web-files/app2.example.com:/app
|
||||
networks:
|
||||
- net2
|
||||
|
||||
|
|
|
@ -20,23 +20,23 @@ services:
|
|||
- ./modsec-confs:/modsec-confs:ro
|
||||
- ./modsec-crs-confs:/modsec-crs-confs:ro
|
||||
environment:
|
||||
- SERVER_NAME=wp.website.com nc.website.com # replace with your domains
|
||||
- SERVER_NAME=wp.example.com nc.example.com # replace with your domains
|
||||
- MULTISITE=yes
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
- wp.website.com_REMOTE_PHP=mywp
|
||||
- wp.website.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- nc.website.com_REMOTE_PHP=mync
|
||||
- nc.website.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- nc.website.com_LIMIT_REQ_RATE=5r/s
|
||||
- nc.website.com_LIMIT_REQ_BURST=10
|
||||
- nc.website.com_ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS
|
||||
- nc.website.com_X_FRAME_OPTIONS=SAMEORIGIN
|
||||
- nc.website.com_BAD_BEHAVIOR_STATUS_CODES=400 401 403 405 444
|
||||
- nc.website.com_WHITELIST_USER_AGENT=WebDAV
|
||||
- wp.example.com_REMOTE_PHP=mywp
|
||||
- wp.example.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- nc.example.com_REMOTE_PHP=mync
|
||||
- nc.example.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- nc.example.com_LIMIT_REQ_RATE=5r/s
|
||||
- nc.example.com_LIMIT_REQ_BURST=10
|
||||
- nc.example.com_ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS
|
||||
- nc.example.com_X_FRAME_OPTIONS=SAMEORIGIN
|
||||
- nc.example.com_BAD_BEHAVIOR_STATUS_CODES=400 401 403 405 444
|
||||
- nc.example.com_WHITELIST_USER_AGENT=WebDAV
|
||||
networks:
|
||||
- net1
|
||||
- net2
|
||||
|
@ -45,7 +45,7 @@ services:
|
|||
image: wordpress:fpm-alpine
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/wp.website.com:/var/www/html
|
||||
- ./web-files/wp.example.com:/var/www/html
|
||||
environment:
|
||||
- WORDPRESS_DB_HOST=mywpdb
|
||||
- WORDPRESS_DB_NAME=wp
|
||||
|
@ -72,7 +72,7 @@ services:
|
|||
image: nextcloud:stable-fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/nc.website.com:/var/www/html
|
||||
- ./web-files/nc.example.com:/var/www/html
|
||||
environment:
|
||||
- MYSQL_HOST=myncdb
|
||||
- MYSQL_DATABASE=nc
|
||||
|
|
|
@ -4,7 +4,7 @@ location ~ \.php(?:$|/) {
|
|||
|
||||
try_files $fastcgi_script_name =404;
|
||||
|
||||
include /etc/nginx/nc.website.com/fastcgi.conf;
|
||||
include /etc/nginx/nc.example.com/fastcgi.conf;
|
||||
fastcgi_param SCRIPT_FILENAME /var/www/html/$fastcgi_script_name;
|
||||
fastcgi_param PATH_INFO $path_info;
|
||||
fastcgi_param HTTPS on;
|
|
@ -19,33 +19,33 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- MULTISITE=yes
|
||||
- SERVER_NAME=app1.website.com app2.website.com app3.website.com # replace with your domains
|
||||
- SERVER_NAME=app1.example.com app2.example.com app3.example.com # replace with your domains
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
- ROOT_SITE_SUBFOLDER=web-files
|
||||
- app1.website.com_REMOTE_PHP=app1
|
||||
- app1.website.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- app2.website.com_REMOTE_PHP=app2
|
||||
- app2.website.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- app2.website.com_ROOT_SITE_SUBFOLDER= # no subfolder
|
||||
- app3.website.com_REMOTE_PHP=app3
|
||||
- app3.website.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- app3.website.com_ROOT_SITE_SUBFOLDER=another-folder
|
||||
- app1.example.com_REMOTE_PHP=app1
|
||||
- app1.example.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- app2.example.com_REMOTE_PHP=app2
|
||||
- app2.example.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- app2.example.com_ROOT_SITE_SUBFOLDER= # no subfolder
|
||||
- app3.example.com_REMOTE_PHP=app3
|
||||
- app3.example.com_REMOTE_PHP_PATH=/var/www/html
|
||||
- app3.example.com_ROOT_SITE_SUBFOLDER=another-folder
|
||||
|
||||
app1:
|
||||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./apps/app1.website.com/web-files:/var/www/html # app1 project web root
|
||||
- ./apps/app1.example.com/web-files:/var/www/html # app1 project web root
|
||||
|
||||
app1_db:
|
||||
image: mariadb
|
||||
restart: always
|
||||
volumes:
|
||||
- ./apps/app1.website.com/db-data:/var/lib/mysql # app1 project data
|
||||
- ./apps/app1.example.com/db-data:/var/lib/mysql # app1 project data
|
||||
environment:
|
||||
- MYSQL_ROOT_PASSWORD=db-root-pwd # replace with a stronger password
|
||||
- MYSQL_DATABASE=app
|
||||
|
@ -56,11 +56,11 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./apps/app2.website.com:/var/www/html # app2 project with no subfolder
|
||||
- ./apps/app2.example.com:/var/www/html # app2 project with no subfolder
|
||||
|
||||
app3:
|
||||
build: apps/app3.website.com/. # project with custom built image
|
||||
build: apps/app3.example.com/. # project with custom built image
|
||||
image: my-php
|
||||
restart: always
|
||||
volumes:
|
||||
- ./apps/app3.website.com/another-folder:/var/www/html # app3 project web root
|
||||
- ./apps/app3.example.com/another-folder:/var/www/html # app3 project web root
|
||||
|
|
|
@ -19,7 +19,7 @@ services:
|
|||
- ./modsec-crs-confs:/modsec-crs-confs:ro # custom Core Rule Set confs to add Nextcloud exclusions
|
||||
- ./modsec-confs:/modsec-confs:ro # disable some false positive
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
|
|
@ -17,7 +17,7 @@ services:
|
|||
- ./modsec-crs-confs:/modsec-crs-confs:ro # disable some false positive
|
||||
- ./modsec-confs:/modsec-confs:ro # disable some false positive
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
@ -38,7 +38,7 @@ services:
|
|||
- DATASOURCES_DEFAULT_PASSWORD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
|
||||
- DATASOURCES_DEFAULT_USERNAME=user
|
||||
- DATASOURCES_DEFAULT_DATABASE=passbolt
|
||||
- APP_FULL_BASE_URL=https://www.website.com # replace with your URL
|
||||
- APP_FULL_BASE_URL=https://www.example.com # replace with your URL
|
||||
|
||||
mydb:
|
||||
image: mariadb
|
||||
|
|
|
@ -15,7 +15,7 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
- ./server-confs:/server-confs:ro # custom confs at server context for prestashop
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
@ -38,10 +38,10 @@ services:
|
|||
- DB_USER=user
|
||||
- DB_PASSWD=db-user-pwd # replace with a stronger password (must match MYSQL_PASSWORD)
|
||||
- PS_INSTALL_AUTO=1
|
||||
- PS_DOMAIN=www.website.com # replace with your domain
|
||||
- PS_DOMAIN=www.example.com # replace with your domain
|
||||
- PS_FOLDER_ADMIN=myadmin # replace with your admin folder
|
||||
- PS_ENABLE_SSL=1
|
||||
- ADMIN_MAIL=admin@website.com # replace with your mail
|
||||
- ADMIN_MAIL=admin@example.com # replace with your mail
|
||||
- ADMIN_PASSWD=admin # replace with a stronger password
|
||||
|
||||
mydb:
|
||||
|
|
|
@ -15,7 +15,7 @@ services:
|
|||
volumes:
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
|
|
@ -17,7 +17,7 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- MULTISITE=yes
|
||||
- SERVER_NAME=app1.website.com app2.website.com # replace with your domain
|
||||
- SERVER_NAME=app1.example.com app2.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
@ -26,10 +26,10 @@ services:
|
|||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
- USE_REVERSE_PROXY=yes
|
||||
- app1.website.com_REVERSE_PROXY_URL=/
|
||||
- app1.website.com_REVERSE_PROXY_HOST=http://app1:3000
|
||||
- app2.website.com_REVERSE_PROXY_URL=/
|
||||
- app2.website.com_REVERSE_PROXY_HOST=http://app2
|
||||
- app1.example.com_REVERSE_PROXY_URL=/
|
||||
- app1.example.com_REVERSE_PROXY_HOST=http://app1:3000
|
||||
- app2.example.com_REVERSE_PROXY_URL=/
|
||||
- app2.example.com_REVERSE_PROXY_HOST=http://app2
|
||||
|
||||
app1:
|
||||
image: node
|
||||
|
@ -46,4 +46,4 @@ services:
|
|||
restart: always
|
||||
environment:
|
||||
- PMA_ARBITRARY=1
|
||||
- PMA_ABSOLUTE_URI=https://app2.website.com
|
||||
- PMA_ABSOLUTE_URI=https://app2.example.com
|
||||
|
|
|
@ -17,7 +17,7 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
- ./server-confs:/server-confs:ro # redirect /app1 and /app2 to /app1/ and /app2/
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
@ -46,4 +46,4 @@ services:
|
|||
restart: always
|
||||
environment:
|
||||
- PMA_ARBITRARY=1
|
||||
- PMA_ABSOLUTE_URI=https://www.website.com/app2/ # replace with your absolute URI
|
||||
- PMA_ABSOLUTE_URI=https://www.example.com/app2/ # replace with your absolute URI
|
||||
|
|
|
@ -15,7 +15,7 @@ services:
|
|||
volumes:
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
|
|
@ -66,7 +66,7 @@ services:
|
|||
app1:
|
||||
image: php:fpm-alpine
|
||||
volumes:
|
||||
- /shared/www/app1.website.com:/www
|
||||
- /shared/www/app1.example.com:/www
|
||||
networks:
|
||||
- net_services
|
||||
deploy:
|
||||
|
@ -75,7 +75,7 @@ services:
|
|||
constraints:
|
||||
- "node.role==worker"
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app1.website.com"
|
||||
- "bunkerized-nginx.SERVER_NAME=app1.example.com"
|
||||
- "bunkerized-nginx.REMOTE_PHP=app1"
|
||||
- "bunkerized-nginx.REMOTE_PHP_PATH=/www"
|
||||
|
||||
|
@ -83,7 +83,7 @@ services:
|
|||
image: phpmyadmin:apache
|
||||
environment:
|
||||
- PMA_ARBITRARY=1
|
||||
- PMA_ABSOLUTE_URI=https://app2.website.com
|
||||
- PMA_ABSOLUTE_URI=https://app2.example.com
|
||||
networks:
|
||||
- net_services
|
||||
deploy:
|
||||
|
@ -92,7 +92,7 @@ services:
|
|||
constraints:
|
||||
- "node.role==worker"
|
||||
labels:
|
||||
- "bunkerized-nginx.SERVER_NAME=app2.website.com"
|
||||
- "bunkerized-nginx.SERVER_NAME=app2.example.com"
|
||||
- "bunkerized-nginx.USE_PROXY_CACHE=yes"
|
||||
- "bunkerized-nginx.USE_REVERSE_PROXY=yes"
|
||||
- "bunkerized-nginx.REVERSE_PROXY_URL=/"
|
||||
|
|
|
@ -22,7 +22,7 @@ services:
|
|||
- ./web-files:/www:ro
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=app1.website.com app2.website.com # replace with your domains
|
||||
- SERVER_NAME=app1.example.com app2.example.com # replace with your domains
|
||||
- MULTISITE=yes
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
@ -32,10 +32,10 @@ services:
|
|||
- USE_CROWDSEC=yes
|
||||
- CROWDSEC_HOST=http://mycrowdsec:8080
|
||||
- CROWDSEC_KEY= # you need to generate it (see bouncer_key.sh)
|
||||
- app1.website.com_REMOTE_PHP=myapp1
|
||||
- app1.website.com_REMOTE_PHP_PATH=/app
|
||||
- app2.website.com_REMOTE_PHP=myapp2
|
||||
- app2.website.com_REMOTE_PHP_PATH=/app
|
||||
- app1.example.com_REMOTE_PHP=myapp1
|
||||
- app1.example.com_REMOTE_PHP_PATH=/app
|
||||
- app2.example.com_REMOTE_PHP=myapp2
|
||||
- app2.example.com_REMOTE_PHP_PATH=/app
|
||||
networks:
|
||||
net0:
|
||||
net1:
|
||||
|
@ -55,7 +55,7 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app1.website.com:/app
|
||||
- ./web-files/app1.example.com:/app
|
||||
networks:
|
||||
- net1
|
||||
|
||||
|
@ -63,7 +63,7 @@ services:
|
|||
image: php:fpm
|
||||
restart: always
|
||||
volumes:
|
||||
- ./web-files/app2.website.com:/app
|
||||
- ./web-files/app2.example.com:/app
|
||||
networks:
|
||||
- net2
|
||||
|
||||
|
|
|
@ -15,7 +15,7 @@ services:
|
|||
volumes:
|
||||
- ./letsencrypt:/etc/letsencrypt
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- SERVE_FILES=no
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
|
|
|
@ -16,21 +16,21 @@ services:
|
|||
- ./letsencrypt:/etc/letsencrypt
|
||||
- autoconf:/etc/nginx
|
||||
environment:
|
||||
- SERVER_NAME=admin.website.com # replace with your domain
|
||||
- SERVER_NAME=admin.example.com # replace with your domain
|
||||
- MULTISITE=yes
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
- USE_CLIENT_CACHE=yes
|
||||
- USE_GZIP=yes
|
||||
- admin.website.com_SERVE_FILES=no
|
||||
- admin.website.com_USE_AUTH_BASIC=yes
|
||||
- admin.website.com_AUTH_BASIC_USER=admin # change it to something hard to guess
|
||||
- admin.website.com_AUTH_BASIC_PASSWORD=admin # change it to something hard to guess
|
||||
- admin.website.com_USE_REVERSE_PROXY=yes
|
||||
- admin.website.com_REVERSE_PROXY_URL=/admin/ # change it to something hard to guess
|
||||
- admin.website.com_REVERSE_PROXY_HOST=http://myui:5000/
|
||||
- admin.website.com_USE_MODSECURITY=no
|
||||
- admin.example.com_SERVE_FILES=no
|
||||
- admin.example.com_USE_AUTH_BASIC=yes
|
||||
- admin.example.com_AUTH_BASIC_USER=admin # change it to something hard to guess
|
||||
- admin.example.com_AUTH_BASIC_PASSWORD=admin # change it to something hard to guess
|
||||
- admin.example.com_USE_REVERSE_PROXY=yes
|
||||
- admin.example.com_REVERSE_PROXY_URL=/admin/ # change it to something hard to guess
|
||||
- admin.example.com_REVERSE_PROXY_HOST=http://myui:5000/
|
||||
- admin.example.com_USE_MODSECURITY=no
|
||||
labels:
|
||||
- "bunkerized-nginx.UI"
|
||||
|
||||
|
@ -42,7 +42,7 @@ services:
|
|||
volumes:
|
||||
- autoconf:/etc/nginx
|
||||
environment:
|
||||
- ABSOLUTE_URI=https://admin.website.com/admin/ # change it to your full URI
|
||||
- ABSOLUTE_URI=https://admin.example.com/admin/ # change it to your full URI
|
||||
- DOCKER_HOST=tcp://myuiproxy:2375
|
||||
|
||||
myuiproxy:
|
||||
|
|
|
@ -19,7 +19,7 @@ services:
|
|||
- ./modsec-crs-confs:/modsec-crs-confs:ro # custom Core Rule Set confs to add Wordpress exclusions
|
||||
- ./modsec-confs:/modsec-confs:ro # avoid some FP with CRS
|
||||
environment:
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- AUTO_LETS_ENCRYPT=yes
|
||||
- REDIRECT_HTTP_TO_HTTPS=yes
|
||||
- DISABLE_DEFAULT_SERVER=yes
|
||||
|
|
|
@ -122,7 +122,7 @@ services:
|
|||
- LIMIT_REQ_RATE=20r/s # Number of request allowed per seconds, let him to 20 to don't get code 429
|
||||
- FEATURE_POLICY= # Need to be allowed to work with Chrome, Brave, Edge
|
||||
- PERMISSIONS_POLICY= # Need to be allowed to work with Chrome, Brave, Edge
|
||||
- SERVER_NAME=www.website.com # replace with your domain
|
||||
- SERVER_NAME=www.example.com # replace with your domain
|
||||
- REVERSE_PROXY_URL_1=/ws
|
||||
- REVERSE_PROXY_HOST_1=http://zammad-websocket:6042
|
||||
- REVERSE_PROXY_WS=yes # used to allow websocket redirect
|
||||
|
|
Loading…
Reference in New Issue