diff --git a/cryptgeon.subdomain.conf.sample b/cryptgeon.subdomain.conf.sample
new file mode 100644
index 0000000..48573c3
--- /dev/null
+++ b/cryptgeon.subdomain.conf.sample
@@ -0,0 +1,45 @@
+## Version 2025/01/10
+# make sure that your cryptgeon container is named cryptgeon
+# make sure that your dns has a cname set for cryptgeon
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name cryptgeon.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app cryptgeon;
+        set $upstream_port 8000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+    }
+ }
diff --git a/hoarder.subdomain.conf.sample b/hoarder.subdomain.conf.sample
new file mode 100644
index 0000000..fa056ca
--- /dev/null
+++ b/hoarder.subdomain.conf.sample
@@ -0,0 +1,56 @@
+## Version 2024/07/16
+# make sure that your hoarder container is named hoarder
+# make sure that your dns has a cname set for hoarder
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name hoarder.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app hoarder;
+        set $upstream_port 3000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+
+    location ~ (/hoarder)?/api {
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app hoarder;
+        set $upstream_port 3000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+}
diff --git a/jellyfin.subdomain.conf.sample b/jellyfin.subdomain.conf.sample
index 36d1e73..53a42d1 100644
--- a/jellyfin.subdomain.conf.sample
+++ b/jellyfin.subdomain.conf.sample
@@ -1,4 +1,4 @@
-## Version 2024/08/22
+## Version 2025/01/11
 # make sure that your jellyfin container is named jellyfin
 # make sure that your dns has a cname set for jellyfin
 # if jellyfin is running in bridge mode and the container is named "jellyfin", the below config should work as is
@@ -22,6 +22,7 @@ server {
         set $upstream_app jellyfin;
         set $upstream_port 8096;
         set $upstream_proto http;
+        add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
         proxy_set_header Range $http_range;
@@ -34,6 +35,7 @@ server {
         set $upstream_app jellyfin;
         set $upstream_port 8096;
         set $upstream_proto http;
+        add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
     }
diff --git a/jellyfin.subfolder.conf.sample b/jellyfin.subfolder.conf.sample
index 3d55e1a..72c5ab3 100644
--- a/jellyfin.subfolder.conf.sample
+++ b/jellyfin.subfolder.conf.sample
@@ -1,4 +1,4 @@
-## Version 2023/02/05
+## Version 2025/01/11
 # make sure that your jellyfin container is named jellyfin
 # if jellyfin is running in bridge mode and the container is named "jellyfin", the below config should work as is
 # if not, replace the line "set $upstream_app jellyfin;" with "set $upstream_app <containername>;"
@@ -15,6 +15,7 @@ location ^~ /jellyfin/ {
     set $upstream_app jellyfin;
     set $upstream_port 8096;
     set $upstream_proto http;
+    add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always;
     proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
     proxy_set_header Range $http_range;
diff --git a/onetimesecret.subdomain.conf.sample b/onetimesecret.subdomain.conf.sample
new file mode 100644
index 0000000..4559d1c
--- /dev/null
+++ b/onetimesecret.subdomain.conf.sample
@@ -0,0 +1,45 @@
+## Version 2025/01/07
+# make sure that your onetimesecret container is named onetimesecret
+# make sure that your dns has a cname set for onetimesecret
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name onetimesecret.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app onetimesecret;
+        set $upstream_port 3000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+    }
+}