adminconf/frontal-web-conf
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2023-07-27. You can view files and clone it, but cannot push or open issues or pull requests.
3 Commits 1 Branch 0 Tags 42 KiB
Shell 100%
43699b8460
Go to file
Alexandre CATTEAU 43699b8460 Remove webssh (has its own repo) and add support for root install
2022-08-19 20:28:42 +02:00
.gitignore Initial commit (non functional state) 2022-05-24 11:42:45 +02:00
etc-letsencrypt.mount Initial commit (non functional state) 2022-05-24 11:42:45 +02:00
etc-letsencrypt.timer Initial commit (non functional state) 2022-05-24 11:42:45 +02:00
install.sh Remove webssh (has its own repo) and add support for root install 2022-08-19 20:28:42 +02:00
lighttpd-webssh.conf Initial commit (non functional state) 2022-05-24 11:42:45 +02:00
README.md Remove webssh (has its own repo) and add support for root install 2022-08-19 20:28:42 +02:00
start-lighttpd.conf Initial commit (non functional state) 2022-05-24 11:42:45 +02:00
wait-for-dns.conf Initial commit (non functional state) 2022-05-24 11:42:45 +02:00

README.md

Frontal web configuration

This repository contains units and config files for our frontal web starting (at boot). We start lighttpd with a WebSSH instance running (for web remote access if need be). We must manually unlock certificates volume, then start nginx.

Files

  • lighttpd-webssh.conf is a sub-conf file for lighttpd, making it serve WebSSH.
  • etc-letsencrypt.mount allows to unlock and mount encrypted certificates volume.
    • Relevant information should be added to /etc/crypttab.
  • etc-letsencrypt.timer is a timer to automatically start previous unit, but this is currently not used.
  • start-lighttpd.conf is a drop-in Systemd unit file, which starts lighttpd should nginx fail to start.
    • This is not intended for starting process, more in case of failed (remote) restart of nginx.
  • wait-for-dns.conf is a drop-in Systemd unit file, which prevents nginx to start before DNS server is operational.

Installation

  • install.sh script copies Systemd files to their destination and sets lighttpd conf (and creates a certificate if needed).

TODO

  • Finish install script