moved all files up a folder

2023-12-18 20:09:03 -06:00
parent 9535a5add9
commit 3465aab0f2
1057 changed files with 0 additions and 0 deletions
--- a/docker/traefik/fileConfig.yml
+++ b/docker/traefik/fileConfig.yml
@@ -0,0 +1,81 @@
+http:
+  ## EXTERNAL ROUTING EXAMPLE - Only use if you want to proxy something manually ##
+  routers:
+#    homeassistant:
+#      entryPoints:
+#        - https
+#      rule: 'Host(`homeassistant.domain.com`)'
+#      service: homeassistant
+#      middlewares:
+#        - "auth"  
+#  ## SERVICES EXAMPLE ##
+  services:
+#    homeassistant:
+#      loadBalancer:
+#        servers:
+#          - url: http://192.168.60.5:8123/
+
+#  ## MIDDLEWARES ##
+  middlewares:
+#  Only Allow Local networks
+#   local-ipwhitelist:
+#     ipWhiteList:
+#       sourceRange: 
+#         - 127.0.0.1/32 # localhost
+#         - 192.168.1.1/24 # LAN Subnet
+  
+#  # Authelia guard
+#    authelia:
+#      forwardauth:
+#        address: http://authelia:9091/api/verify?rd=https://identity.aknlw.com/ # replace auth with your authelia container name
+#        trustForwardHeader: true
+#        authResponseHeaders:
+#          - Remote-User
+#          - Remote-Groups
+#          - Remote-Name
+#          - Remote-Email
+  
+#  # Authelia basic auth guard
+#    authelia-basic:
+#      forwardauth:
+#        address: http://authelia:9091/api/verify?auth=basic # replace auth with your authelia container name
+#        trustForwardHeader: true
+#        authResponseHeaders:
+#          - Remote-User
+#          - Remote-Groups
+#          - Remote-Name
+#          - Remote-Email
+
+    # Security headers
+    securityHeaders:
+      headers:
+        customResponseHeaders:
+          X-Robots-Tag: "none,noarchive,nosnippet,notranslate,noimageindex"
+          server: ""
+          X-Forwarded-Proto: "https"
+        sslProxyHeaders:
+          X-Forwarded-Proto: https
+        referrerPolicy: "strict-origin-when-cross-origin"
+        hostsProxyHeaders:
+          - "X-Forwarded-Host"
+        customRequestHeaders:
+          X-Forwarded-Proto: "https"
+        contentTypeNosniff: true
+        browserXssFilter: true
+        forceSTSHeader: true
+        stsIncludeSubdomains: true
+        stsSeconds: 63072000
+        stsPreload: true
+
+# Only use secure ciphers - https://ssl-config.mozilla.org/#server=traefik&version=2.6.0&config=intermediate&guideline=5.6
+tls:
+  options:
+    default:
+      minVersion: VersionTLS12
+      cipherSuites:
+        - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+        - TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+        - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
+        - TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
+        - TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305
+        - TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305