Merge branch 'linuxserver:master' into master

linuxserver · Jan 31, 2025 · 3d03b6d · 3d03b6d
2 parents 647ee20 + 212a7d5
commit 3d03b6d
Show file tree

Hide file tree

Showing 12 changed files with 332 additions and 10 deletions.
diff --git a/babybuddy.subdomain.conf.sample b/babybuddy.subdomain.conf.sample
@@ -1,4 +1,4 @@
-## Version 2024/07/16
+## Version 2024/12/29
 # make sure that your babybuddy container is named babybuddy
 # make sure that your dns has a cname set for babybuddy
 
@@ -43,4 +43,14 @@ server {
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
     }
+
+    location ~ ^/api/ {
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app babybuddy;
+        set $upstream_port 8000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
 }
diff --git a/calibre-web.subdomain.conf.sample b/calibre-web.subdomain.conf.sample
@@ -64,13 +64,15 @@ server {
 
     # Feed for Kobo
     location /kobo/ {
-        include /config/nginx/proxy.conf;
         include /config/nginx/resolver.conf;
         set $upstream_app calibre-web;
         set $upstream_port 8083;
         set $upstream_proto http;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+        proxy_set_header X-Forwarded-Host $http_host;
         proxy_set_header X-Scheme $scheme;
-        proxy_buffer_size 32k;
+        proxy_buffer_size 128k;
+        proxy_buffers 4 256k;
+        proxy_busy_buffers_size 256k;
     }
 }
diff --git a/calibre-web.subfolder.conf.sample b/calibre-web.subfolder.conf.sample
@@ -51,13 +51,14 @@ location ^~ /calibre-web/opds/ {
 
 # Feed for Kobo
 location ^~ /calibre-web/kobo/ {
-    include /config/nginx/proxy.conf;
     include /config/nginx/resolver.conf;
     set $upstream_app calibre-web;
     set $upstream_port 8083;
     set $upstream_proto http;
     proxy_pass $upstream_proto://$upstream_app:$upstream_port;
     proxy_set_header X-Scheme $scheme;
     proxy_set_header X-Script-Name /calibre-web;
-    proxy_buffer_size 32k;
+    proxy_buffer_size 128k;
+    proxy_buffers 4 256k;
+    proxy_busy_buffers_size 256k;
 }
diff --git a/cryptgeon.subdomain.conf.sample b/cryptgeon.subdomain.conf.sample
@@ -0,0 +1,45 @@
+## Version 2025/01/10
+# make sure that your cryptgeon container is named cryptgeon
+# make sure that your dns has a cname set for cryptgeon
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name cryptgeon.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app cryptgeon;
+        set $upstream_port 8000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+    }
+ }
diff --git a/frigate.subdomain.conf.sample b/frigate.subdomain.conf.sample
@@ -1,6 +1,7 @@
-## Version 2024/07/16
+## Version 2025/01/16
 # make sure that your frigate container is named frigate
 # make sure that your dns has a cname set for frigate
+# if you are on a version older than 0.14.0 set upstream_port to 5000 and upstream_proto to http
 
 server {
     listen 443 ssl;
@@ -38,8 +39,8 @@ server {
         include /config/nginx/proxy.conf;
         include /config/nginx/resolver.conf;
         set $upstream_app frigate;
-        set $upstream_port 5000;
-        set $upstream_proto http;
+        set $upstream_port 8971;
+        set $upstream_proto https;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
     }

diff --git a/hoarder.subdomain.conf.sample b/hoarder.subdomain.conf.sample
@@ -0,0 +1,56 @@
+## Version 2024/07/16
+# make sure that your hoarder container is named hoarder
+# make sure that your dns has a cname set for hoarder
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name hoarder.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app hoarder;
+        set $upstream_port 3000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+
+    location ~ (/hoarder)?/api {
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app hoarder;
+        set $upstream_port 3000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+}
diff --git a/immich_server.subdomain.conf.sample b/immich_server.subdomain.conf.sample
@@ -0,0 +1,57 @@
+## Version 2025/01/30
+# make sure that your immich container is named immich_server
+# make sure that your dns has a cname set for immich
+# immich v1.118+ only. For earlier versions, change $upstream_port to 3001 
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name immich.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app immich_server;
+        set $upstream_port 2283;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+
+    location ~ (/immich)?/api {
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app immich_server;
+        set $upstream_port 2283;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+}
diff --git a/jellyfin.subdomain.conf.sample b/jellyfin.subdomain.conf.sample
@@ -1,4 +1,4 @@
-## Version 2024/08/22
+## Version 2025/01/11
 # make sure that your jellyfin container is named jellyfin
 # make sure that your dns has a cname set for jellyfin
 # if jellyfin is running in bridge mode and the container is named "jellyfin", the below config should work as is
@@ -22,6 +22,7 @@ server {
         set $upstream_app jellyfin;
         set $upstream_port 8096;
         set $upstream_proto http;
+        add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
         proxy_set_header Range $http_range;
@@ -34,6 +35,7 @@ server {
         set $upstream_app jellyfin;
         set $upstream_port 8096;
         set $upstream_proto http;
+        add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always;
         proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
     }

diff --git a/jellyfin.subfolder.conf.sample b/jellyfin.subfolder.conf.sample
@@ -1,4 +1,4 @@
-## Version 2023/02/05
+## Version 2025/01/11
 # make sure that your jellyfin container is named jellyfin
 # if jellyfin is running in bridge mode and the container is named "jellyfin", the below config should work as is
 # if not, replace the line "set $upstream_app jellyfin;" with "set $upstream_app <containername>;"
@@ -15,6 +15,7 @@ location ^~ /jellyfin/ {
     set $upstream_app jellyfin;
     set $upstream_port 8096;
     set $upstream_proto http;
+    add_header Access-Control-Allow-Origin "luna://com.webos.service.config" always;
     proxy_pass $upstream_proto://$upstream_app:$upstream_port;
 
     proxy_set_header Range $http_range;

diff --git a/onetimesecret.subdomain.conf.sample b/onetimesecret.subdomain.conf.sample
@@ -0,0 +1,45 @@
+## Version 2025/01/07
+# make sure that your onetimesecret container is named onetimesecret
+# make sure that your dns has a cname set for onetimesecret
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name onetimesecret.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app onetimesecret;
+        set $upstream_port 3000;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+    }
+}
diff --git a/romm.subdomain.conf.sample b/romm.subdomain.conf.sample
@@ -0,0 +1,46 @@
+## Version 2024/10/26
+# make sure that your romM container is named romm
+# make sure that your dns has a cname set for romm
+
+server {
+    listen 443 ssl;
+    listen [::]:443 ssl;
+
+    server_name romm.*;
+
+    include /config/nginx/ssl.conf;
+
+    client_max_body_size 0;
+
+    # enable for ldap auth (requires ldap-location.conf in the location block)
+    #include /config/nginx/ldap-server.conf;
+
+    # enable for Authelia (requires authelia-location.conf in the location block)
+    #include /config/nginx/authelia-server.conf;
+
+    # enable for Authentik (requires authentik-location.conf in the location block)
+    #include /config/nginx/authentik-server.conf;
+
+    location / {
+        # enable the next two lines for http auth
+        #auth_basic "Restricted";
+        #auth_basic_user_file /config/nginx/.htpasswd;
+
+        # enable for ldap auth (requires ldap-server.conf in the server block)
+        #include /config/nginx/ldap-location.conf;
+
+        # enable for Authelia (requires authelia-server.conf in the server block)
+        #include /config/nginx/authelia-location.conf;
+
+        # enable for Authentik (requires authentik-server.conf in the server block)
+        #include /config/nginx/authentik-location.conf;
+
+        include /config/nginx/proxy.conf;
+        include /config/nginx/resolver.conf;
+        set $upstream_app romm;
+        set $upstream_port 8080;
+        set $upstream_proto http;
+        proxy_pass $upstream_proto://$upstream_app:$upstream_port;
+
+    }
+}