From 43e454b48117d4d76ebc24f2fc0721b6861b5d2c Mon Sep 17 00:00:00 2001
From: "J. Scott Elblein" <stardogg@gmail.com>
Date: Tue, 24 May 2022 10:55:36 -0500
Subject: [PATCH] Create crowdsec-dashboard.subdomain.conf.sample

---
 crowdsec-dashboard.subdomain.conf.sample | 44 ++++++++++++++++++++++++
 1 file changed, 44 insertions(+)
 create mode 100644 crowdsec-dashboard.subdomain.conf.sample

diff --git a/crowdsec-dashboard.subdomain.conf.sample b/crowdsec-dashboard.subdomain.conf.sample
new file mode 100644
index 0000000..a90d8ca
--- /dev/null
+++ b/crowdsec-dashboard.subdomain.conf.sample
@@ -0,0 +1,44 @@
+## Version 2022/05/24
+# make sure that your dns has a cname set for crowdsec-dashboard and that your crowdsec-dashboard container is not using a base url
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name crowdsec-dashboard.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth, fill in ldap details in ldap.conf
+    #include /config/nginx/ldap.conf;
+
+    # enable for Authelia
+    #include /config/nginx/authelia-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable the next two lines for ldap auth
+        #auth_request /auth;
+        #error_page 401 =200 /ldaplogin;
+
+        # enable for Authelia
+        #include /config/nginx/authelia-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app crowdsec-dashboard;
+        set $upstream_port 3000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+        
+        # Uncomment these if you want to lower security, and
+        # allow running in an iFrame (i.e. Organizr)
+        #proxy_hide_header Content-Security-Policy;
+        #proxy_hide_header X-Frame-Options;
+    }
+}