xai-corp.net/provisioning
1
0
Fork 0
Code Issues 9 Releases Activity

update the host files to point to accessible docker container names for backends

Browse Source 
added testing for this, including mock backend server.
This commit is contained in:
richard
2020-06-03 22:08:52 -04:00
parent 764aa9c8ed
commit 857bf699de
21 changed files with 138 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
dockerfiles/services/sslproxy/hosts/abcapi.xai-corp.net.conf
View File

@@ -8,7 +8,7 @@ proxy_cache_path /data/nginx/cache/abcapi levels=1:2 keys_zone=abcapi:10m max_si
server {
# this is the internal Docker DNS, cache only for 30s
resolver 127.0.0.11 valid=30s;
resolver 127.0.0.11 valid=5s;
set $backend http://abc-api_nginx;

4
dockerfiles/services/sslproxy/hosts/dkui.xai-corp.net.conf
View File

@@ -8,9 +8,9 @@ proxy_cache_path /data/nginx/cache/dkui levels=1:2 keys_zone=dkui:10m max_size=1
# dkui.xai-corp.net
server {
# this is the internal Docker DNS, cache only for 30s
resolver 127.0.0.11 valid=30s;
resolver 127.0.0.11 valid=5s;
set $backend http://tasks.dkui_app:9000;
set $backend http://dkui_app:9000;
# listen 443 ssl ipv6only=off;
listen 443 ssl;

5
dockerfiles/services/sslproxy/hosts/git.xai-corp.net.conf
View File

@@ -7,9 +7,10 @@ server {
server_name git.xai-corp.net;
# this is the internal Docker DNS, cache only for 30s
#resolver 127.0.0.11 valid=30s;
resolver 127.0.0.11 valid=5s;
set $backend http://dkhost.xai-corp.net:10080;
set $backend http://gitea_app:10080;
#set $backend http://dkhost.xai-corp.net:10080;
ssl_certificate /etc/letsencrypt/live/xai-corp.net/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/xai-corp.net/privkey.pem;

4
dockerfiles/services/sslproxy/hosts/jenkins.xai-corp.net.conf
View File

@@ -4,9 +4,9 @@ proxy_cache_path /data/nginx/cache/jenkins levels=1:2 keys_zone=jenkins:10m max_
# jenkins.xai-corp.net
server {
# this is the internal Docker DNS, cache only for 30s
#resolver 127.0.0.11 valid=30s;
resolver 127.0.0.11 valid=5s;
set $backend http://dkhost.xai-corp.net:8080;
set $backend http://jenkins_app:8080;
listen 443 ssl;
server_name jenkins.xai-corp.net;

2
dockerfiles/services/sslproxy/hosts/letsencrypt.conf
View File

@@ -6,7 +6,7 @@ server {
#server_name _
#server_name xai-corp.net
set $backend http://tasks.acme_certbot_app:83;
set $backend http://sslproxy_renew:80;
client_max_body_size 200m;

35
dockerfiles/services/sslproxy/hosts/metrics.xai-corp.net.conf
View File

@@ -1,35 +0,0 @@
proxy_cache_path /data/nginx/cache/metrics levels=1:2 keys_zone=metrics:10m max_size=10g
inactive=60m use_temp_path=off;
upstream metrics_upstream {
server metrics.xai-corp.net:3001;
#server tasks.metrics_graphana:3001;
server dkhost.xai-corp.net:3001 backup;
}
# xaibox.xai-corp.net
server {
listen 443 ssl;
server_name metrics.xai-corp.net;
ssl_certificate /etc/letsencrypt/live/xai-corp.net/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/xai-corp.net/privkey.pem;
client_max_body_size 200m;
#Strict-Transport-Security: max-age=15768000
add_header Strict-Transport-Security "max-age=15552000; includeSubDomains" always;
location / {
proxy_set_header Connection $http_connection;
proxy_set_header Host $host:$server_port;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_pass http://metrics_upstream;
proxy_connect_timeout 3s;
}
}

3
dockerfiles/services/sslproxy/hosts/xaibox.xai-corp.net.conf
View File

@@ -16,6 +16,9 @@ server {
ssl_certificate_key /etc/letsencrypt/live/xai-corp.net/privkey.pem;
client_max_body_size 200m;
# this is the internal Docker DNS, cache only for 30s
resolver 127.0.0.11 valid=5s;
set $backend http://xaibox_app;
#Strict-Transport-Security: max-age=15768000