diff --git a/vaultwarden.subdomain.conf.sample b/vaultwarden.subdomain.conf.sample new file mode 100644 index 0000000..48b93cb --- /dev/null +++ b/vaultwarden.subdomain.conf.sample @@ -0,0 +1,83 @@ +## Version 2021/05/18 +# make sure that your dns has a cname set for vaultwarden and that your vaultwarden container is not using a base url +# make sure your vaultwarden container is named "vaultwarden" +# set the environment variable WEBSOCKET_ENABLED=true on your vaultwarden container + +server { + listen 443 ssl; + listen [::]:443 ssl; + + server_name vaultwarden.*; + + include /config/nginx/ssl.conf; + + client_max_body_size 128M; + + # enable for ldap auth, fill in ldap details in ldap.conf + #include /config/nginx/ldap.conf; + + # enable for Authelia + #include /config/nginx/authelia-server.conf; + + location / { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable the next two lines for ldap auth + #auth_request /auth; + #error_page 401 =200 /ldaplogin; + + # enable for Authelia + #include /config/nginx/authelia-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app vaultwarden; + set $upstream_port 80; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } + + location /admin { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable the next two lines for ldap auth + #auth_request /auth; + #error_page 401 =200 /ldaplogin; + + # enable for Authelia + #include /config/nginx/authelia-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app vaultwarden; + set $upstream_port 80; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } + + location /notifications/hub { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app vaultwarden; + set $upstream_port 3012; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } + + location /notifications/hub/negotiate { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app vaultwarden; + set $upstream_port 80; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + + } +} diff --git a/vaultwarden.subfolder.conf.sample b/vaultwarden.subfolder.conf.sample new file mode 100644 index 0000000..ff527c3 --- /dev/null +++ b/vaultwarden.subfolder.conf.sample @@ -0,0 +1,48 @@ +## Version 2021/05/18 +## Environmental Variable DOMAIN=https:///vaultwarden must be set in vaultwarden container including subfolder. +## This is using ports 80 and 3012 +location /vaultwarden { + return 301 $scheme://$host/vaultwarden/; +} + +location ^~ /vaultwarden/ { + # enable the next two lines for http auth + #auth_basic "Restricted"; + #auth_basic_user_file /config/nginx/.htpasswd; + + # enable the next two lines for ldap auth + #auth_request /auth; + #error_page 401 =200 /ldaplogin; + + # enable for Authelia + #include /config/nginx/authelia-location.conf; + + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app vaultwarden; + set $upstream_port 80; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + +} + +location /notifications/hub { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app vaultwarden; + set $upstream_port 3012; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + +} + +location /notifications/hub/negotiate { + include /config/nginx/proxy.conf; + include /config/nginx/resolver.conf; + set $upstream_app vaultwarden; + set $upstream_port 80; + set $upstream_proto http; + proxy_pass $upstream_proto://$upstream_app:$upstream_port; + +} +