hassio-addons/addon-home-panel
1
0
Fork 0
mirror of https://github.com/hassio-addons/addon-home-panel.git synced 2025-05-05 11:21:31 +00:00
Code Issues Projects Releases Packages Wiki Activity

Refactor NGINX configuration and API access (#77)

Browse source
This commit is contained in:
Franck Nijhof 2021-02-02 20:06:27 +01:00 committed by GitHub
parent 526c5cee32
commit ae08cf2d2d
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
8 changed files with 22 additions and 60 deletions
Download patch file Download diff file Expand all files Collapse all files

6
home-panel/config.json
View file

@ -6,10 +6,7 @@
"url": "https://github.com/hassio-addons/addon-home-panel", "url": "https://github.com/hassio-addons/addon-home-panel",
"arch": ["aarch64", "amd64", "armhf", "armv7", "i386"], "arch": ["aarch64", "amd64", "armhf", "armv7", "i386"],
"init": false, "init": false,
"homeassistant": "0.91.4",
"homeassistant_api": true,
"ingress": true, "ingress": true,
"ingress_port": 1337,
"panel_icon": "mdi:home", "panel_icon": "mdi:home",
"ports": { "ports": {
"80/tcp": null "80/tcp": null
@ -27,7 +24,6 @@
"log_level": "list(trace|debug|info|notice|warning|error|fatal)?", "log_level": "list(trace|debug|info|notice|warning|error|fatal)?",
"ssl": "bool", "ssl": "bool",
"certfile": "str", "certfile": "str",
"keyfile": "str", "keyfile": "str"
"leave_front_door_open": "bool?"
} }
} }

37
home-panel/rootfs/etc/cont-init.d/nginx.sh
View file

@ -3,34 +3,15 @@
# Home Assistant Community Add-on: Home Panel # Home Assistant Community Add-on: Home Panel
# Configures NGINX for use with Home Panel # Configures NGINX for use with Home Panel
# ============================================================================== # ==============================================================================
declare port
declare certfile
declare dns_host
declare ingress_interface
declare ingress_port
declare keyfile
port=$(bashio::addon.port 80) # Generate direct access configuration, if enabled.
if bashio::var.has_value "${port}"; then if bashio::var.has_value "$(bashio::addon.port 80)"; then
bashio::config.require.ssl bashio::config.require.ssl
bashio::var.json \
if bashio::config.true 'ssl'; then certfile "$(bashio::config 'certfile')" \
certfile=$(bashio::config 'certfile') keyfile "$(bashio::config 'keyfile')" \
keyfile=$(bashio::config 'keyfile') ssl "^$(bashio::config 'ssl')" \
| tempio \
mv /etc/nginx/servers/direct-ssl.disabled /etc/nginx/servers/direct.conf -template /etc/nginx/templates/direct.gtpl \
sed -i "s#%%certfile%%#${certfile}#g" /etc/nginx/servers/direct.conf -out /etc/nginx/servers/direct.conf
sed -i "s#%%keyfile%%#${keyfile}#g" /etc/nginx/servers/direct.conf
else
mv /etc/nginx/servers/direct.disabled /etc/nginx/servers/direct.conf
fi fi
fi
ingress_port=$(bashio::addon.ingress_port)
ingress_interface=$(bashio::addon.ip_address)
sed -i "s/%%port%%/${ingress_port}/g" /etc/nginx/servers/ingress.conf
sed -i "s/%%interface%%/${ingress_interface}/g" /etc/nginx/servers/ingress.conf
dns_host=$(bashio::dns.host)
sed -i "s/%%dns_host%%/${dns_host}/g" /etc/nginx/includes/resolver.conf

1
home-panel/rootfs/etc/nginx/includes/resolver.conf
View file

@ -1 +0,0 @@
resolver %%dns_host%%;

11
home-panel/rootfs/etc/nginx/nginx.conf
View file

@ -16,9 +16,6 @@ pcre_jit on;
# Write error log to the add-on log. # Write error log to the add-on log.
error_log /proc/1/fd/1 error; error_log /proc/1/fd/1 error;
# Load allowed environment vars
env SUPERVISOR_TOKEN;
# Load dynamic modules. # Load dynamic modules.
include /etc/nginx/modules/*.conf; include /etc/nginx/modules/*.conf;
@ -30,11 +27,7 @@ events {
http { http {
include /etc/nginx/includes/mime.types; include /etc/nginx/includes/mime.types;
log_format homeassistant '[$time_local] $status ' access_log off;
'$http_x_forwarded_for($remote_addr) '
'$request ($http_user_agent)';
access_log /proc/1/fd/1 homeassistant;
client_max_body_size 4G; client_max_body_size 4G;
default_type application/octet-stream; default_type application/octet-stream;
gzip on; gzip on;
@ -49,8 +42,6 @@ http {
'' close; '' close;
} }
include /etc/nginx/includes/resolver.conf;
include /etc/nginx/includes/upstream.conf; include /etc/nginx/includes/upstream.conf;
include /etc/nginx/servers/*.conf; include /etc/nginx/servers/*.conf;
} }

10
home-panel/rootfs/etc/nginx/servers/direct.disabled
View file

@ -1,10 +0,0 @@
server {
listen 80 default_server;
include /etc/nginx/includes/server_params.conf;
include /etc/nginx/includes/proxy_params.conf;
location / {
proxy_pass http://backend;
}
}

2
home-panel/rootfs/etc/nginx/servers/ingress.conf
View file

@ -1,5 +1,5 @@
server { server {
listen %%interface%%:%%port%% default_server; listen 8099 default_server;
include /etc/nginx/includes/server_params.conf; include /etc/nginx/includes/server_params.conf;
include /etc/nginx/includes/proxy_params.conf; include /etc/nginx/includes/proxy_params.conf;

14
home-panel/rootfs/etc/nginx/servers/direct-ssl.disabled → home-panel/rootfs/etc/nginx/templates/direct.gtpl
View file

@ -1,13 +1,19 @@
server { server {
{{ if not .ssl }}
listen 80 default_server;
{{ else }}
listen 80 default_server ssl http2; listen 80 default_server ssl http2;
{{ end }}
include /etc/nginx/includes/server_params.conf; include /etc/nginx/includes/server_params.conf;
include /etc/nginx/includes/ssl_params.conf;
include /etc/nginx/includes/proxy_params.conf; include /etc/nginx/includes/proxy_params.conf;
ssl on; {{ if .ssl }}
ssl_certificate /ssl/%%certfile%%; include /etc/nginx/includes/ssl_params.conf;
ssl_certificate_key /ssl/%%keyfile%%;
ssl_certificate /ssl/{{ .certfile }};
ssl_certificate_key /ssl/{{ .keyfile }};
{{ end }}
location / { location / {
proxy_pass http://backend; proxy_pass http://backend;

1
home-panel/rootfs/etc/services.d/nginx/run
View file

@ -7,5 +7,4 @@
bashio::net.wait_for 8234 bashio::net.wait_for 8234
bashio::log.info "Starting NGinx..." bashio::log.info "Starting NGinx..."
exec nginx exec nginx