From 0461bc52123bc0b7ee5754218d1bf88af05b3401 Mon Sep 17 00:00:00 2001
From: ZlabiDev <daniel.zlabinger@gmx.at>
Date: Sun, 5 Mar 2023 21:36:01 +0100
Subject: [PATCH 1/3] added nexusoss subdomain sample config

---
 nexusoss.subdomain.conf.sample | 43 ++++++++++++++++++++++++++++++++++
 1 file changed, 43 insertions(+)
 create mode 100644 nexusoss.subdomain.conf.sample

diff --git a/nexusoss.subdomain.conf.sample b/nexusoss.subdomain.conf.sample
new file mode 100644
index 0000000..0d21575
--- /dev/null
+++ b/nexusoss.subdomain.conf.sample
@@ -0,0 +1,43 @@
+## Version 2023/03/05
+# make sure that your nexusoss container is named nexusoss
+# make sure that your dns has a cname set for nexusoss
+# make sure that the port for the nexusoss container 8081 (the first location "/")
+# make sure that the HTTP Connector port for the hosted docker repository is 8082 (the second location "/v2/")
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name nexusoss.*;
+
+    # allow large uploads of files - refer to nginx documentation
+    client_max_body_size 1G;
+
+    include /config/nginx/ssl.conf;
+
+    location / {
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app nexusoss;
+        set $upstream_port 8081;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+
+    location /v2/ {
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app nexusoss;
+        set $upstream_port 8082;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+}

From 32ae405b04b3ccb5678bd2709cdbb8e45d4939c5 Mon Sep 17 00:00:00 2001
From: ZlabiDev <daniel.zlabinger@gmx.at>
Date: Sun, 5 Mar 2023 21:52:11 +0100
Subject: [PATCH 2/3] adda auth comments

---
 nexusoss.subdomain.conf.sample | 35 ++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)

diff --git a/nexusoss.subdomain.conf.sample b/nexusoss.subdomain.conf.sample
index 0d21575..786cff1 100644
--- a/nexusoss.subdomain.conf.sample
+++ b/nexusoss.subdomain.conf.sample
@@ -15,7 +15,29 @@ server {
 
     include /config/nginx/ssl.conf;
 
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
     location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
         include /config/nginx/proxy.conf;
         include /config/nginx/resolver.conf;
         set $upstream_app nexusoss;
@@ -29,6 +51,19 @@ server {
     }
 
     location /v2/ {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
         include /config/nginx/proxy.conf;
         include /config/nginx/resolver.conf;
         set $upstream_app nexusoss;

From 2e9c8b5b8cf37f41dcf440cd33ae1f10020ca40b Mon Sep 17 00:00:00 2001
From: ZlabiDev <zlabi.dev@gmail.com>
Date: Sun, 5 Mar 2023 23:47:23 +0100
Subject: [PATCH 3/3] Codereview impl

---
 nexusoss.subdomain.conf.sample | 11 -----------
 1 file changed, 11 deletions(-)

diff --git a/nexusoss.subdomain.conf.sample b/nexusoss.subdomain.conf.sample
index 786cff1..dd47e85 100644
--- a/nexusoss.subdomain.conf.sample
+++ b/nexusoss.subdomain.conf.sample
@@ -10,9 +10,6 @@ server {
 
     server_name nexusoss.*;
 
-    # allow large uploads of files - refer to nginx documentation
-    client_max_body_size 1G;
-
     include /config/nginx/ssl.conf;
 
     # enable for ldap auth (requires ldap-location.conf in the location block)
@@ -44,10 +41,6 @@ server {
         set $upstream_port 8081;
         set $upstream_proto http;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
-
-        proxy_set_header Host $host;
-        proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
     }
 
     location /v2/ {
@@ -70,9 +63,5 @@ server {
         set $upstream_port 8082;
         set $upstream_proto http;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
-
-        proxy_set_header Host $host;
-        proxy_set_header X-Real-IP $remote_addr;
-        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
     }
 }