Skip to content

Gustavo Calcaterra / vue_nginx

Go to a project
Toggle navigation
Toggle navigation pinning
c2083df2 by DevOps
Options

Add servers (80 and 443) for sso.test.vue.gov.py and standardize access_log property

1 parent 343929fe
Inline Side-by-side
Showing 1 changed file with 57 additions and 27 deletions
vue-deploy-nginx-proxy.yml
...@@ -25,6 +25,11 @@ ...@@ -25,6 +25,11 @@
25 value: 'upgrade-insecure-requests' # Required 25 value: 'upgrade-insecure-requests' # Required
26 always: true # Boolean 26 always: true # Boolean
27 27
28 log:
29 access:
30 - path: /var/log/nginx/access.log
31 format: main
32
28 upstreams: 33 upstreams:
29 - name: jbosseap 34 - name: jbosseap
30 least_conn: true 35 least_conn: true
...@@ -36,6 +41,11 @@ ...@@ -36,6 +41,11 @@
36 servers: 41 servers:
37 - address: texportafacil01.vue.gov.py 42 - address: texportafacil01.vue.gov.py
38 43
44 - name: sso
45 least_conn: true
46 servers:
47 - address: psso01.vue.gov.py
48
39 ssl: 49 ssl:
40 certificate: /etc/letsencrypt/live/vueapp.test.vue.gov.py/fullchain.pem 50 certificate: /etc/letsencrypt/live/vueapp.test.vue.gov.py/fullchain.pem
41 certificate_key: /etc/letsencrypt/live/vueapp.test.vue.gov.py/privkey.pem 51 certificate_key: /etc/letsencrypt/live/vueapp.test.vue.gov.py/privkey.pem
...@@ -49,11 +59,7 @@ ...@@ -49,11 +59,7 @@
49 59
50 servers: 60 servers:
51 #vueapp 61 #vueapp
52 - log: 62 - core:
53 access:
54 - path: /var/log/nginx/access.log
55 format: main
56 core:
57 listen: 63 listen:
58 - port: 80 64 - port: 80
59 server_name: vueapp.test.vue.gov.py 65 server_name: vueapp.test.vue.gov.py
...@@ -62,6 +68,7 @@ ...@@ -62,6 +68,7 @@
62 return: 68 return:
63 code: 301 69 code: 301
64 url: https://$host$request_uri 70 url: https://$host$request_uri
71
65 - core: 72 - core:
66 client_max_body_size: 50m #Pueden subir max 7 archivos de 5mb c/u, verificar también en los JBoss EAP 73 client_max_body_size: 50m #Pueden subir max 7 archivos de 5mb c/u, verificar también en los JBoss EAP
67 client_body_buffer_size: 128k 74 client_body_buffer_size: 128k
...@@ -70,10 +77,6 @@ ...@@ -70,10 +77,6 @@
70 http2: true 77 http2: true
71 ssl: true 78 ssl: true
72 server_name: vueapp.test.vue.gov.py 79 server_name: vueapp.test.vue.gov.py
73 log:
74 access:
75 - path: /var/log/nginx/access.log
76 format: main
77 locations: 80 locations:
78 - location: / 81 - location: /
79 proxy: 82 proxy:
...@@ -107,10 +110,10 @@ ...@@ -107,10 +110,10 @@
107 listen: 110 listen:
108 - port: 80 111 - port: 80
109 server_name: datos.test.vue.gov.py 112 server_name: datos.test.vue.gov.py
110 log: 113 #log:
111 access: 114 # access:
112 - path: /var/log/nginx/access.log 115 # - path: /var/log/nginx/access.log
113 format: main 116 # format: main
114 #Configure this to redirect to HTTPS, as of 26-oct-22, it should only be available for test 117 #Configure this to redirect to HTTPS, as of 26-oct-22, it should only be available for test
115 rewrite: 118 rewrite:
116 return: 119 return:
...@@ -124,10 +127,10 @@ ...@@ -124,10 +127,10 @@
124 http2: true 127 http2: true
125 ssl: true 128 ssl: true
126 server_name: datos.test.vue.gov.py 129 server_name: datos.test.vue.gov.py
127 log: 130 #log:
128 access: 131 # access:
129 - path: /var/log/nginx/access.log 132 # - path: /var/log/nginx/access.log
130 format: main 133 # format: main
131 locations: 134 locations:
132 - location: / 135 - location: /
133 proxy: 136 proxy:
...@@ -153,11 +156,6 @@ ...@@ -153,11 +156,6 @@
153 - port: 80 156 - port: 80
154 server_name: exportafacil.test.vue.gov.py 157 server_name: exportafacil.test.vue.gov.py
155 158
156 log:
157 access:
158 - path: /var/log/nginx/access.log
159 format: main
160
161 #Configure this to redirect to HTTPS, as of 26-oct-22, it should only be available for test 159 #Configure this to redirect to HTTPS, as of 26-oct-22, it should only be available for test
162 rewrite: 160 rewrite:
163 return: 161 return:
...@@ -173,11 +171,6 @@ ...@@ -173,11 +171,6 @@
173 ssl: true 171 ssl: true
174 server_name: exportafacil.test.vue.gov.py 172 server_name: exportafacil.test.vue.gov.py
175 173
176 log:
177 access:
178 - path: /var/log/nginx/access.log
179 format: main
180
181 locations: 174 locations:
182 - location: / 175 - location: /
183 proxy: 176 proxy:
...@@ -211,6 +204,43 @@ ...@@ -211,6 +204,43 @@
211 - field: X-Forwarded-Proto 204 - field: X-Forwarded-Proto
212 value: $scheme 205 value: $scheme
213 206
207 #sso
208 - core:
209 listen:
210 - port: 80
211 server_name: sso.test.vue.gov.py
212 #Configure this to redirect to HTTPS, as of 26-oct-22, it should only be available for test
213 rewrite:
214 return:
215 code: 301
216 url: https://$host$request_uri
217 - core:
218 client_max_body_size: 50m #Pueden subir max 7 archivos de 5mb c/u, verificar también en los JBoss EAP
219 client_body_buffer_size: 128k
220 listen:
221 - port: 443
222 http2: true
223 ssl: true
224 server_name: sso.test.vue.gov.py
225 locations:
226 - location: /
227 proxy:
228 pass: http://sso/
229 set_header:
230 #Equivalent to ProxyPreserveHost on from Apache HTTPd Server. It is necessary to work with RH SSO correctly
231 - field: Host
232 value: $host
233 - field: X-Forwarded-For
234 value: $proxy_add_x_forwarded_for
235 - field: X-Real-IP
236 value: $remote_addr
237 - field: X-Forwarded-Proto
238 value: $scheme
239 #This next three values were increased for an app
240 read_timeout: 1200s
241 connect_timeout: 1200s
242 send_timeout: 1200s
243
214 # custom_directives: 244 # custom_directives:
215 245
216 # - core: 246 # - core:
......
Styling with Markdown is supported
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!