switched local nginx proxy to use 127.0.0.1 instead of server IP, reducing exposure
This commit is contained in:
Actaeus Curabitur
parent
21cb0eaf7f
commit
65df55c6e6
4 changed files with 0 additions and 2017 deletions
states/roles/maintain/pass
|
|
@ -1,63 +0,0 @@
|
|||
#install teampass - needs to be changed to being built in the aurrepo as soon as Marcin updates the dependencies to not include mysql
|
||||
teampass_/etc/pacman.conf:
|
||||
file.append:
|
||||
- name: /etc/pacman.conf
|
||||
- source: salt://roles/maintain/pass/temp-repo.conf
|
||||
|
||||
install_teampass:
|
||||
pkg.installed:
|
||||
- name: teampass
|
||||
|
||||
teampass_php-gd:
|
||||
pkg.installed:
|
||||
- name: php-gd
|
||||
|
||||
teampass_php-fpm:
|
||||
pkg.installed:
|
||||
- name: php-fpm
|
||||
service.running:
|
||||
- name: php-fpm
|
||||
- enable: true
|
||||
- watch:
|
||||
- file: /etc/php/php.ini
|
||||
|
||||
/etc/php/php.ini:
|
||||
file.managed:
|
||||
- source: salt://roles/maintain/pass/php.ini
|
||||
|
||||
/etc/nginx/conf.d/teampass.conf:
|
||||
file.managed:
|
||||
- source: salt://roles/maintain/pass/nginx.conf
|
||||
|
||||
#change ownership on directories
|
||||
"/usr/share/webapps/teampass/includes/config/":
|
||||
file.directory:
|
||||
- user: http
|
||||
- group: http
|
||||
"/usr/share/webapps/teampass/includes/avatars/":
|
||||
file.directory:
|
||||
- user: http
|
||||
- group: http
|
||||
"/usr/share/webapps/teampass/includes/libraries/csrfp/libs/":
|
||||
file.directory:
|
||||
- user: http
|
||||
- group: http
|
||||
"/usr/share/webapps/teampass/includes/libraries/csrfp/js/":
|
||||
file.directory:
|
||||
- user: http
|
||||
- group: http
|
||||
"/usr/share/webapps/teampass/includes/libraries/csrfp/log/":
|
||||
file.directory:
|
||||
- user: http
|
||||
- group: http
|
||||
|
||||
"/teampass":
|
||||
file.directory:
|
||||
- user: http
|
||||
- group: http
|
||||
- dir_mode: 700
|
||||
- file_mode: 600
|
||||
- recurse:
|
||||
- user
|
||||
- group
|
||||
- mode
|
||||
|
|
@ -1,21 +0,0 @@
|
|||
server {
|
||||
server_name domain.tld www.domain.tld;
|
||||
root /usr/share/webapps/teampass;
|
||||
listen 8080;
|
||||
|
||||
location / {
|
||||
# try to serve file directly, fallback to front controller
|
||||
try_files $uri /index.php$is_args$args;
|
||||
}
|
||||
|
||||
location ~ \.php$ {
|
||||
try_files $uri $document_root$fastcgi_script_name =404;
|
||||
fastcgi_pass unix:/run/php-fpm/php-fpm.sock;
|
||||
fastcgi_index index.php;
|
||||
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
|
||||
include fastcgi.conf;
|
||||
}
|
||||
|
||||
error_log /var/log/nginx/teampass_error.log;
|
||||
access_log /var/log/nginx/teampass_access.log;
|
||||
}
|
||||
File diff suppressed because it is too large
Load diff
|
|
@ -1,3 +0,0 @@
|
|||
[teampass-temp]
|
||||
SigLevel = Never
|
||||
Server = http://pkg.actcur.com/$repo/os/$arch
|
||||
Loading…
Add table
Reference in a new issue