diff --git a/Caddyfile b/Caddyfile index 7e4ae89..67704f2 100755 --- a/Caddyfile +++ b/Caddyfile @@ -287,14 +287,14 @@ motsdepasse.interstices.pro { nextcloud.lucasroyer.fr { # Security - header { - X-Frame-Options "SAMEORIGIN" - X-Content-Type-Options "nosniff" - X-XSS-Protection "1; mode=block" - Referrer-Policy "no-referrer" - Strict-Transport-Security "max-age=15552000; includeSubDomains; preload" - -Server - } + header { + X-Frame-Options "SAMEORIGIN" + X-Content-Type-Options "nosniff" + X-XSS-Protection "1; mode=block" + Referrer-Policy "no-referrer" + Strict-Transport-Security "max-age=15552000; includeSubDomains; preload" + -Server + } # Large files request_body { @@ -313,9 +313,9 @@ nextcloud.lucasroyer.fr { reverse_proxy nextcloud-web:80 { header_up Host {host} header_up X-Real-IP {remote_host} - header_down X-Frame-Options "SAMEORIGIN" - header_down X-Content-Type-Options "nosniff" - } + header_down X-Frame-Options "SAMEORIGIN" + header_down X-Content-Type-Options "nosniff" + } } onlyoffice.lucasroyer.fr { @@ -337,6 +337,8 @@ onlyoffice.lucasroyer.fr { } spationautes.fr { + root * /srv/site-spationautes/html + # Server cache cache { ttl 24h @@ -353,9 +355,7 @@ spationautes.fr { # Errors handle_errors { - # If error is 502, 503 or 504, show error.html without changing client URL @service_out expression {err.status_code} >= 502 && {err.status_code} <= 504 - handle @service_out { root * /srv rewrite * /error.html @@ -372,7 +372,7 @@ spationautes.fr { } # Redirect - reverse_proxy site-spationautes:80 + file_server } veloboomboom.internantes.ovh, veloboomboom.lucasroyer.fr { @@ -381,6 +381,7 @@ veloboomboom.internantes.ovh, veloboomboom.lucasroyer.fr { ttl 24h stale 12h } + # Security header { X-Frame-Options "DENY" @@ -394,7 +395,6 @@ veloboomboom.internantes.ovh, veloboomboom.lucasroyer.fr { handle_errors { # If error is 502, 503 or 504, show error.html without changing client URL @service_out expression {err.status_code} >= 502 && {err.status_code} <= 504 - handle @service_out { root * /srv rewrite * /error.html @@ -410,14 +410,33 @@ veloboomboom.internantes.ovh, veloboomboom.lucasroyer.fr { output file /data/site-veloboomboom_access.log } - # Redirect - reverse_proxy site-veloboomboom:80 + # Prod redirect + @prod host veloboomboom.internantes.ovh + handle @prod { + root * /srv/site-veloboomboom/html-prod + file_server + } + + # Test redirect + @test host veloboomboom.lucasroyer.fr + handle @test { + basic_auth { + testuser $2a$14$hNv5hbag695p/jcyB.7qeOoCvqxQ0L6zyBptfHU15qnTtmivfXAea + } + root * /srv/site-veloboomboom/html-test + file_server + } + + # Fallback (si aucun des deux domaines ne match, bien que peu probable ici) + handle { + respond "Not Found" 404 + } } csv.lucasroyer.fr { - root * /srv/csv - file_server browse - - header Content-Type "text/csv; charset=utf-8" - header Access-Control-Allow-Origin "*" -} \ No newline at end of file + root * /srv/csv + file_server browse + + header Content-Type "text/csv; charset=utf-8" + header Access-Control-Allow-Origin "*" +} diff --git a/docker-compose.yml b/docker-compose.yml index bb993d1..a5f3398 100755 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -13,6 +13,8 @@ services: - /home/lucas/services/reverse-proxy/Caddyfile:/etc/caddy/Caddyfile - /home/lucas/services/reverse-proxy/error.html:/srv/error.html:ro - /home/lucas/services/n8n/local-files/csv:/srv/csv:ro + - /home/lucas/services/static-sites/site-spationautes:/srv/site-spationautes:ro + - /home/lucas/services/static-sites/site-veloboomboom:/srv/site-veloboomboom:ro networks: - reverse-proxy ports: