backend: Mod

2025-10-04 23:55:15 +07:00
parent d2a7a3e478
commit 71fc7eee13
72 changed files with 6978 additions and 7135 deletions
--- a/npm/data/database.sqlite
+++ b/npm/data/database.sqlite
--- a/npm/data/nginx/proxy_host/4.conf
+++ b/npm/data/nginx/proxy_host/4.conf
@@ -1,99 +0,0 @@
-# ------------------------------------------------------------
-# git.np-dms.work
-# ------------------------------------------------------------
-
-
-
-map $scheme $hsts_header {
-    https   "max-age=63072000; preload";
-}
-
-server {
-  set $forward_scheme http;
-  set $server         "gitea";
-  set $port           3000;
-
-  listen 80;
-listen [::]:80;
-
-listen 443 ssl;
-listen [::]:443 ssl;
-
-
-  server_name git.np-dms.work;
-
-  http2 on;
-
-
-  # Let's Encrypt SSL
-  include conf.d/include/letsencrypt-acme-challenge.conf;
-  include conf.d/include/ssl-cache.conf;
-  include conf.d/include/ssl-ciphers.conf;
-  ssl_certificate /etc/letsencrypt/live/npm-10/fullchain.pem;
-  ssl_certificate_key /etc/letsencrypt/live/npm-10/privkey.pem;
-
-
-
-
-
-
-
-
-
-
-
-
-    # Force SSL
-    include conf.d/include/force-ssl.conf;
-
-
-
-
-proxy_set_header Upgrade $http_upgrade;
-proxy_set_header Connection $http_connection;
-proxy_http_version 1.1;
-
-
-  access_log /data/logs/proxy-host-5_access.log proxy;
-  error_log /data/logs/proxy-host-5_error.log warn;
-
-proxy_set_header Host $host;
-proxy_set_header X-Real-IP $remote_addr;
-proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-proxy_set_header X-Forwarded-Proto $scheme;
-proxy_set_header Authorization $http_authorization;
-
-proxy_connect_timeout 30s;
-proxy_send_timeout 300s;
-proxy_read_timeout 300s;
-send_timeout 300s;
-client_max_body_size 512m;
-
-
-
-
-
-  location / {
-
-
-
-
-
-
-
-
-
-    
-    proxy_set_header Upgrade $http_upgrade;
-    proxy_set_header Connection $http_connection;
-    proxy_http_version 1.1;
-    
-
-    # Proxy!
-    include conf.d/include/proxy.conf;
-  }
-
-
-  # Custom
-  include /data/nginx/custom/server_proxy[.]conf;
-}
--- a/npm/data/nginx/proxy_host/5.conf
+++ b/npm/data/nginx/proxy_host/5.conf
@@ -1,5 +1,5 @@
 # ------------------------------------------------------------
-# pma.np-dms.work
+# git.np-dms.work
 # ------------------------------------------------------------


@@ -10,8 +10,8 @@ map $scheme $hsts_header {

 server {
  set $forward_scheme http;
-  set $server         "phpmyadmin";
-  set $port           80;
+  set $server         "gitea";
+  set $port           3000;

  listen 80;
 listen [::]:80;
@@ -20,16 +20,17 @@ listen 443 ssl;
 listen [::]:443 ssl;


-  server_name pma.np-dms.work;
-http2 off;
+  server_name git.np-dms.work;
+
+  http2 on;


  # Let's Encrypt SSL
  include conf.d/include/letsencrypt-acme-challenge.conf;
  include conf.d/include/ssl-cache.conf;
  include conf.d/include/ssl-ciphers.conf;
-  ssl_certificate /etc/letsencrypt/live/npm-11/fullchain.pem;
-  ssl_certificate_key /etc/letsencrypt/live/npm-11/privkey.pem;
+  ssl_certificate /etc/letsencrypt/live/npm-10/fullchain.pem;
+  ssl_certificate_key /etc/letsencrypt/live/npm-10/privkey.pem;



@@ -45,28 +46,31 @@ http2 off;



+    # Force SSL
+    include conf.d/include/force-ssl.conf;
+
+
+

 proxy_set_header Upgrade $http_upgrade;
 proxy_set_header Connection $http_connection;
 proxy_http_version 1.1;


-  access_log /data/logs/proxy-host-6_access.log proxy;
-  error_log /data/logs/proxy-host-6_error.log warn;
+  access_log /data/logs/proxy-host-5_access.log proxy;
+  error_log /data/logs/proxy-host-5_error.log warn;

-client_max_body_size 128m;
-
-add_header X-Frame-Options "SAMEORIGIN" always;
-add_header X-Content-Type-Options "nosniff" always;
-add_header Referrer-Policy "strict-origin-when-cross-origin" always;
-add_header Permissions-Policy "camera=(), microphone=(), geolocation=()" always;
-
 proxy_set_header Host $host;
-proxy_set_header X-Forwarded-Proto $scheme;
-proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 proxy_set_header X-Real-IP $remote_addr;
+proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+proxy_set_header X-Forwarded-Proto $scheme;
+proxy_set_header Authorization $http_authorization;

-proxy_buffering off;
+proxy_connect_timeout 30s;
+proxy_send_timeout 300s;
+proxy_read_timeout 300s;
+send_timeout 300s;
+client_max_body_size 512m;



@@ -80,6 +84,8 @@ proxy_buffering off;



+
+
    
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection $http_connection;