HAProxy/05backends.cfg

# Backends
backend default
  tcp-request content reject

backend letsencrypt
  server certbot 127.0.0.1:8899

backend laminar
  # set HSTS for one year after all responses
  http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
  # add some Security headers
  http-response set-header X-Frame-Options "SAMEORIGIN"
  http-response set-header X-Content-Type-Options "nosniff"
  http-response set-header Referrer-Policy "strict-origin-when-cross-origin"
  http-response set-header Cross-Origin-Resource-Policy "same-origin"
  server laminar laminar.incus:8080 check

backend forgejo
  # set HSTS for one year after all responses
  http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
  # add some Security headers
  http-response set-header X-Frame-Options "SAMEORIGIN"
  http-response set-header X-Content-Type-Options "nosniff"
  http-response set-header Referrer-Policy "strict-origin-when-cross-origin"
  http-response set-header Cross-Origin-Resource-Policy "same-origin"
  server forgejo forgejo.incus:3000 check

backend mastodon
  # set HSTS for one year after all responses
  http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
  # add some Security headers
  http-response set-header X-Frame-Options "SAMEORIGIN"
  http-response set-header X-Content-Type-Options "nosniff"
  http-response set-header Referrer-Policy "strict-origin-when-cross-origin"
  http-response set-header Cross-Origin-Resource-Policy "same-origin"
  server mastodon mastodon.incus:80 send-proxy check

backend linkding
  # set HSTS for one year after all responses
  http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
  # add some Security headers
  http-response set-header X-Frame-Options "SAMEORIGIN"
  http-response set-header X-Content-Type-Options "nosniff"
  http-response set-header Referrer-Policy "strict-origin-when-cross-origin"
  http-response set-header Cross-Origin-Resource-Policy "same-origin"
  server linkding linkding.incus:9090 check

backend archive
  # set HSTS for one year after all responses
  http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
  # add some Security headers
  http-response set-header X-Frame-Options "SAMEORIGIN"
  http-response set-header X-Content-Type-Options "nosniff"
  http-response set-header Referrer-Policy "strict-origin-when-cross-origin"
  http-response set-header Cross-Origin-Resource-Policy "same-origin"
  server archive archive.incus:80 check
Import conf 2024-10-08 19:25:39 +09:00			`# Backends`
			`backend default`
			`tcp-request content reject`

			`backend letsencrypt`
			`server certbot 127.0.0.1:8899`

			`backend laminar`
			`# set HSTS for one year after all responses`
			`http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"`
			`# add some Security headers`
			`http-response set-header X-Frame-Options "SAMEORIGIN"`
			`http-response set-header X-Content-Type-Options "nosniff"`
			`http-response set-header Referrer-Policy "strict-origin-when-cross-origin"`
			`http-response set-header Cross-Origin-Resource-Policy "same-origin"`
			`server laminar laminar.incus:8080 check`

			`backend forgejo`
			`# set HSTS for one year after all responses`
			`http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"`
			`# add some Security headers`
			`http-response set-header X-Frame-Options "SAMEORIGIN"`
			`http-response set-header X-Content-Type-Options "nosniff"`
			`http-response set-header Referrer-Policy "strict-origin-when-cross-origin"`
			`http-response set-header Cross-Origin-Resource-Policy "same-origin"`
Add mastodon 2024-10-11 20:09:51 +09:00			`server forgejo forgejo.incus:3000 check`

Fix backend name 2024-10-11 20:11:54 +09:00			`backend mastodon`
Add mastodon 2024-10-11 20:09:51 +09:00			`# set HSTS for one year after all responses`
			`http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"`
			`# add some Security headers`
			`http-response set-header X-Frame-Options "SAMEORIGIN"`
			`http-response set-header X-Content-Type-Options "nosniff"`
			`http-response set-header Referrer-Policy "strict-origin-when-cross-origin"`
			`http-response set-header Cross-Origin-Resource-Policy "same-origin"`
			`server mastodon mastodon.incus:80 send-proxy check`
Add Linkding 2024-11-14 21:38:15 +09:00
			`backend linkding`
			`# set HSTS for one year after all responses`
			`http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"`
			`# add some Security headers`
			`http-response set-header X-Frame-Options "SAMEORIGIN"`
			`http-response set-header X-Content-Type-Options "nosniff"`
			`http-response set-header Referrer-Policy "strict-origin-when-cross-origin"`
			`http-response set-header Cross-Origin-Resource-Policy "same-origin"`
			`server linkding linkding.incus:9090 check`
Add archive 2024-11-20 20:18:51 +09:00
			`backend archive`
			`# set HSTS for one year after all responses`
			`http-response set-header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"`
			`# add some Security headers`
			`http-response set-header X-Frame-Options "SAMEORIGIN"`
			`http-response set-header X-Content-Type-Options "nosniff"`
			`http-response set-header Referrer-Policy "strict-origin-when-cross-origin"`
			`http-response set-header Cross-Origin-Resource-Policy "same-origin"`
			`server archive archive.incus:80 check`