diff --git a/babybuddy.subdomain.conf.sample b/babybuddy.subdomain.conf.sample index d0aa27d..af83363 100644 --- a/babybuddy.subdomain.conf.sample +++ b/babybuddy.subdomain.conf.sample @@ -1,4 +1,4 @@ -## Version 2024/07/16 +## Version 2024/12/29 # make sure that your babybuddy container is named babybuddy # make sure that your dns has a cname set for babybuddy @@ -43,4 +43,14 @@ server { proxy_pass $upstream_proto://$upstream_app:$upstream_port; } + + location ~ ^/api/ { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app babybuddy; + set $upstream_port 8000; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } } diff --git a/calibre-web.subdomain.conf.sample b/calibre-web.subdomain.conf.sample index ca6bbde..b75eba3 100644 --- a/calibre-web.subdomain.conf.sample +++ b/calibre-web.subdomain.conf.sample @@ -64,13 +64,15 @@ server { # Feed for Kobo location /kobo/ { - include /config/nginx/proxy.conf; include /config/nginx/resolver.conf; set $upstream_app calibre-web; set $upstream_port 8083; set $upstream_proto http; proxy_pass $upstream_proto://$upstream_app:$upstream_port; + proxy_set_header X-Forwarded-Host $http_host; proxy_set_header X-Scheme $scheme; - proxy_buffer_size 32k; + proxy_buffer_size 128k; + proxy_buffers 4 256k; + proxy_busy_buffers_size 256k; } } \ No newline at end of file diff --git a/calibre-web.subfolder.conf.sample b/calibre-web.subfolder.conf.sample index 751ad2a..011c6fc 100644 --- a/calibre-web.subfolder.conf.sample +++ b/calibre-web.subfolder.conf.sample @@ -51,7 +51,6 @@ location ^~ /calibre-web/opds/ { # Feed for Kobo location ^~ /calibre-web/kobo/ { - include /config/nginx/proxy.conf; include /config/nginx/resolver.conf; set $upstream_app calibre-web; set $upstream_port 8083; @@ -59,5 +58,7 @@ location ^~ /calibre-web/kobo/ { proxy_pass $upstream_proto://$upstream_app:$upstream_port; proxy_set_header X-Scheme $scheme; proxy_set_header X-Script-Name /calibre-web; - proxy_buffer_size 32k; + proxy_buffer_size 128k; + proxy_buffers 4 256k; + proxy_busy_buffers_size 256k; } diff --git a/cryptgeon.subdomain.conf.sample b/cryptgeon.subdomain.conf.sample new file mode 100644 index 0000000..48573c3 --- /dev/null +++ b/cryptgeon.subdomain.conf.sample @@ -0,0 +1,45 @@ +## Version 2025/01/10 +# make sure that your cryptgeon container is named cryptgeon +# make sure that your dns has a cname set for cryptgeon + +server { + listen 443 ssl; + listen [::]:443 ssl; + + server_name cryptgeon.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 0; + + # enable for ldap auth (requires ldap-location.conf in the location block) + #include /config/nginx/ldap-server.conf; + + # enable for Authelia (requires authelia-location.conf in the location block) + #include /config/nginx/authelia-server.conf; + + # enable for Authentik (requires authentik-location.conf in the location block) + #include /config/nginx/authentik-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable for ldap auth (requires ldap-server.conf in the server block) + #include /config/nginx/ldap-location.conf; + + # enable for Authelia (requires authelia-server.conf in the server block) + #include /config/nginx/authelia-location.conf; + + # enable for Authentik (requires authentik-server.conf in the server block) + #include /config/nginx/authentik-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app cryptgeon; + set $upstream_port 8000; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + } + } diff --git a/frigate.subdomain.conf.sample b/frigate.subdomain.conf.sample index beaf31e..a3d64b4 100644 --- a/frigate.subdomain.conf.sample +++ b/frigate.subdomain.conf.sample @@ -1,6 +1,7 @@ -## Version 2024/07/16 +## Version 2025/01/16 # make sure that your frigate container is named frigate # make sure that your dns has a cname set for frigate +# if you are on a version older than 0.14.0 set upstream_port to 5000 and upstream_proto to http server { listen 443 ssl; @@ -38,8 +39,8 @@ server { include /config/nginx/proxy.conf; include /config/nginx/resolver.conf; set $upstream_app frigate; - set $upstream_port 5000; - set $upstream_proto http; + set $upstream_port 8971; + set $upstream_proto https; proxy_pass $upstream_proto://$upstream_app:$upstream_port; } diff --git a/hoarder.subdomain.conf.sample b/hoarder.subdomain.conf.sample new file mode 100644 index 0000000..fa056ca --- /dev/null +++ b/hoarder.subdomain.conf.sample @@ -0,0 +1,56 @@ +## Version 2024/07/16 +# make sure that your hoarder container is named hoarder +# make sure that your dns has a cname set for hoarder + +server { + listen 443 ssl; + listen [::]:443 ssl; + + server_name hoarder.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 0; + + # enable for ldap auth (requires ldap-location.conf in the location block) + #include /config/nginx/ldap-server.conf; + + # enable for Authelia (requires authelia-location.conf in the location block) + #include /config/nginx/authelia-server.conf; + + # enable for Authentik (requires authentik-location.conf in the location block) + #include /config/nginx/authentik-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable for ldap auth (requires ldap-server.conf in the server block) + #include /config/nginx/ldap-location.conf; + + # enable for Authelia (requires authelia-server.conf in the server block) + #include /config/nginx/authelia-location.conf; + + # enable for Authentik (requires authentik-server.conf in the server block) + #include /config/nginx/authentik-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app hoarder; + set $upstream_port 3000; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } + + location ~ (/hoarder)?/api { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app hoarder; + set $upstream_port 3000; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } +} diff --git a/immich_server.subdomain.conf.sample b/immich_server.subdomain.conf.sample new file mode 100644 index 0000000..f22d233 --- /dev/null +++ b/immich_server.subdomain.conf.sample @@ -0,0 +1,57 @@ +## Version 2025/01/30 +# make sure that your immich container is named immich_server +# make sure that your dns has a cname set for immich +# immich v1.118+ only. For earlier versions, change $upstream_port to 3001 + +server { + listen 443 ssl; + listen [::]:443 ssl; + + server_name immich.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 0; + + # enable for ldap auth (requires ldap-location.conf in the location block) + #include /config/nginx/ldap-server.conf; + + # enable for Authelia (requires authelia-location.conf in the location block) + #include /config/nginx/authelia-server.conf; + + # enable for Authentik (requires authentik-location.conf in the location block) + #include /config/nginx/authentik-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable for ldap auth (requires ldap-server.conf in the server block) + #include /config/nginx/ldap-location.conf; + + # enable for Authelia (requires authelia-server.conf in the server block) + #include /config/nginx/authelia-location.conf; + + # enable for Authentik (requires authentik-server.conf in the server block) + #include /config/nginx/authentik-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app immich_server; + set $upstream_port 2283; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } + + location ~ (/immich)?/api { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app immich_server; + set $upstream_port 2283; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } +} diff --git a/jellyfin.subdomain.conf.sample b/jellyfin.subdomain.conf.sample index 36d1e73..53a42d1 100644 --- a/jellyfin.subdomain.conf.sample +++ b/jellyfin.subdomain.conf.sample @@ -1,4 +1,4 @@ -## Version 2024/08/22 +## Version 2025/01/11 # make sure that your jellyfin container is named jellyfin # make sure that your dns has a cname set for jellyfin # if jellyfin is running in bridge mode and the container is named "jellyfin", the below config should work as is @@ -22,6 +22,7 @@ server { set $upstream_app jellyfin; set $upstream_port 8096; set $upstream_proto http; + add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always; proxy_pass $upstream_proto://$upstream_app:$upstream_port; proxy_set_header Range $http_range; @@ -34,6 +35,7 @@ server { set $upstream_app jellyfin; set $upstream_port 8096; set $upstream_proto http; + add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always; proxy_pass $upstream_proto://$upstream_app:$upstream_port; } diff --git a/jellyfin.subfolder.conf.sample b/jellyfin.subfolder.conf.sample index 3d55e1a..72c5ab3 100644 --- a/jellyfin.subfolder.conf.sample +++ b/jellyfin.subfolder.conf.sample @@ -1,4 +1,4 @@ -## Version 2023/02/05 +## Version 2025/01/11 # make sure that your jellyfin container is named jellyfin # if jellyfin is running in bridge mode and the container is named "jellyfin", the below config should work as is # if not, replace the line "set $upstream_app jellyfin;" with "set $upstream_app ;" @@ -15,6 +15,7 @@ location ^~ /jellyfin/ { set $upstream_app jellyfin; set $upstream_port 8096; set $upstream_proto http; + add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always; proxy_pass $upstream_proto://$upstream_app:$upstream_port; proxy_set_header Range $http_range; diff --git a/onetimesecret.subdomain.conf.sample b/onetimesecret.subdomain.conf.sample new file mode 100644 index 0000000..4559d1c --- /dev/null +++ b/onetimesecret.subdomain.conf.sample @@ -0,0 +1,45 @@ +## Version 2025/01/07 +# make sure that your onetimesecret container is named onetimesecret +# make sure that your dns has a cname set for onetimesecret + +server { + listen 443 ssl; + listen [::]:443 ssl; + + server_name onetimesecret.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 0; + + # enable for ldap auth (requires ldap-location.conf in the location block) + #include /config/nginx/ldap-server.conf; + + # enable for Authelia (requires authelia-location.conf in the location block) + #include /config/nginx/authelia-server.conf; + + # enable for Authentik (requires authentik-location.conf in the location block) + #include /config/nginx/authentik-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable for ldap auth (requires ldap-server.conf in the server block) + #include /config/nginx/ldap-location.conf; + + # enable for Authelia (requires authelia-server.conf in the server block) + #include /config/nginx/authelia-location.conf; + + # enable for Authentik (requires authentik-server.conf in the server block) + #include /config/nginx/authentik-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app onetimesecret; + set $upstream_port 3000; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + } +} diff --git a/romm.subdomain.conf.sample b/romm.subdomain.conf.sample new file mode 100644 index 0000000..07c34d4 --- /dev/null +++ b/romm.subdomain.conf.sample @@ -0,0 +1,46 @@ +## Version 2024/10/26 +# make sure that your romM container is named romm +# make sure that your dns has a cname set for romm + +server { + listen 443 ssl; + listen [::]:443 ssl; + + server_name romm.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 0; + + # enable for ldap auth (requires ldap-location.conf in the location block) + #include /config/nginx/ldap-server.conf; + + # enable for Authelia (requires authelia-location.conf in the location block) + #include /config/nginx/authelia-server.conf; + + # enable for Authentik (requires authentik-location.conf in the location block) + #include /config/nginx/authentik-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable for ldap auth (requires ldap-server.conf in the server block) + #include /config/nginx/ldap-location.conf; + + # enable for Authelia (requires authelia-server.conf in the server block) + #include /config/nginx/authelia-location.conf; + + # enable for Authentik (requires authentik-server.conf in the server block) + #include /config/nginx/authentik-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app romm; + set $upstream_port 8080; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } +} \ No newline at end of file diff --git a/watcharr.subdomain.conf.sample b/watcharr.subdomain.conf.sample new file mode 100644 index 0000000..634241c --- /dev/null +++ b/watcharr.subdomain.conf.sample @@ -0,0 +1,56 @@ +## Version 2025/01/24 +# make sure that your watcharr container is named watcharr +# make sure that your dns has a cname set for watcharr + +server { + listen 443 ssl; + listen [::]:443 ssl; + + server_name watcharr.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 0; + + # enable for ldap auth (requires ldap-location.conf in the location block) + #include /config/nginx/ldap-server.conf; + + # enable for Authelia (requires authelia-location.conf in the location block) + #include /config/nginx/authelia-server.conf; + + # enable for Authentik (requires authentik-location.conf in the location block) + #include /config/nginx/authentik-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable for ldap auth (requires ldap-server.conf in the server block) + #include /config/nginx/ldap-location.conf; + + # enable for Authelia (requires authelia-server.conf in the server block) + #include /config/nginx/authelia-location.conf; + + # enable for Authentik (requires authentik-server.conf in the server block) + #include /config/nginx/authentik-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app watcharr; + set $upstream_port 3080; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } + + location ~ (/watcharr)?/api { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app watcharr; + set $upstream_port 3080; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } +}