# vim: :filetype=apache tabstop=4 shiftwidth=4 expandtab ########################################################################### # # Read **ALL** the comments in this file, don't blindly use it! # # Be sure to replace 'YOUROWN.eddn.edcd.io' with your hostname. # # Also edit the DocumentRoot and related statements if you use a # different path. # # Ensure the CustomLog directory actually exists, else apache will not # start, or die on a restart/reload. # ########################################################################### ## YOUROWN.eddn.edcd.io ServerName YOUROWN.eddn.edcd.io DocumentRoot /home/eddn/.local/share/eddn/dev ErrorLog ${APACHE_LOG_DIR}/YOUROWN.eddn.edcd.io/error.log # Possible values include: debug, info, notice, warn, error, crit, # alert, emerg. LogLevel warn CustomLog ${APACHE_LOG_DIR}/YOUROWN.eddn.edcd.io/access.log combined # Comment these out when initially requesting a LetsEncrypt cert Redirect / https://YOUROWN.eddn.edcd.io/ RedirectMatch "/^(.*)$" "https://YOUROWN.eddn.edcd.io/$1" # LetsEncrypt Alias /.well-known/ /var/www/letsencrypt/.well-known/ Options -Indexes Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec AllowOverride All Require all granted Require all denied Include partials/default-directory.conf # This will need to be commented out/disabled for initial LetsEncrypt # certificate request, as you don't have the certificate yet! SSLEngine On SSLCertificateFile /etc/letsencrypt/live/YOUROWN.eddn.edcd.io/fullchain.pem SSLCertificateKeyFile /etc/letsencrypt/live/YOUROWN.eddn.edcd.io/privkey.pem ServerName YOUROWN.eddn.edcd.io DocumentRoot /home/eddn/.local/share/eddn/YOUROWN/monitor ErrorLog ${APACHE_LOG_DIR}/YOUROWN.eddn.edcd.io/error.log # Possible values include: debug, info, notice, warn, error, crit, # alert, emerg. LogLevel warn CustomLog ${APACHE_LOG_DIR}/YOUROWN.eddn.edcd.io/access.log combined # LetsEncrypt Alias /.well-known/ /var/www/letsencrypt/.well-known/ Options -Indexes Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec AllowOverride All Require all granted Require all denied # Serve the schemas Alias /schemas/ /home/eddn/.local/share/eddn/YOUROWN/schemas/ # netdata (performance info) Redirect /netdata /netdata/ SetOutputFilter DEFLATE Require all granted Require all denied # /netdata/ - for the host performance stats SSLProxyEngine On SSLProxyVerify none ProxyPreserveHost On # Yes, plain http for this. ProxyPass "/netdata/" "http://127.0.0.1:19999/" # The various EDDN stats/status endpoints #################################### # Only uncomment the following if you are setting non-empty # CERT_FILE, and KEY_FILE in the main EDDN config.json #################################### # SSLProxyEngine On # SSLProxyVerify none #################################### ProxyPreserveHost On ProxyRequests Off #################################### # Monitor, /getSoftwares/ etc #################################### # Plain http if setting **empty** CERT_FILE and KEY_FILE in # the EDDN config.json, else https. ProxyPass "http://127.0.0.1:9091/" #################################### #################################### # Relay, /getSoftwares/ etc #################################### # Plain http if setting **empty** CERT_FILE and KEY_FILE in # the EDDN config.json, else https. ProxyPass "http://127.0.0.1:9091/" #################################### #################################### # Gateway /stats/ and /health_check/ #################################### # May as well allow for /upload/ on this port as well # Plain http if setting **empty** CERT_FILE and KEY_FILE in # the EDDN config.json, else https. ProxyPass "http://127.0.0.1:8081/upload/" # Plain http if setting **empty** CERT_FILE and KEY_FILE in # the EDDN config.json, else https. ProxyPass "http://127.0.0.1:8081/stats/" # Plain http if setting **empty** CERT_FILE and KEY_FILE in # the EDDN config.json, else https. ProxyPass "http://127.0.0.1:8081/health_check/" #################################### # This handles the uploads on port 4430 # This will need to be commented out/disabled for initial LetsEncrypt # certificate request, as you don't have the certificate yet! # You also need to ensure `Listen 4430` is in ports.conf SSLEngine On SSLCertificateFile /etc/letsencrypt/live/YOUROWN.eddn.edcd.io/fullchain.pem SSLCertificateKeyFile /etc/letsencrypt/live/YOUROWN.eddn.edcd.io/privkey.pem ServerName YOUROWN.eddn.edcd.io DocumentRoot /home/eddn/.local/share/eddn/YOUROWN/monitor ErrorLog ${APACHE_LOG_DIR}/YOUROWN.eddn.edcd.io/error.log # Possible values include: debug, info, notice, warn, error, crit, # alert, emerg. LogLevel warn CustomLog ${APACHE_LOG_DIR}/YOUROWN.eddn.edcd.io/access.log combined # LetsEncrypt Alias /.well-known/ /var/www/letsencrypt/.well-known/ Options -Indexes Require all granted Require all denied #################################### # Only uncomment the following if you are setting non-empty # CERT_FILE, and KEY_FILE in the main EDDN config.json #################################### # SSLProxyEngine On # SSLProxyVerify none #################################### ProxyPreserveHost On ProxyRequests Off #################################### # Gateway /upload/ #################################### # Plain http if setting **empty** CERT_FILE and KEY_FILE in # the EDDN config.json, else https. ProxyPass "http://127.0.0.1:8081/upload/" ####################################