2022-04-28 16:41:42 +02:00
|
|
|
[tls.options]
|
|
|
|
[tls.options.tls12]
|
|
|
|
minVersion = "VersionTLS12"
|
|
|
|
cipherSuites = [
|
|
|
|
"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
|
|
|
|
"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305",
|
|
|
|
"TLS_AES_256_GCM_SHA384",
|
|
|
|
"TLS_CHACHA20_POLY1305_SHA256",
|
|
|
|
"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256"
|
|
|
|
]
|
|
|
|
curvePreferences = ["CurveP521","CurveP384", "CurveP256"]
|
|
|
|
|
|
|
|
[http]
|
|
|
|
[http.middlewares.hardening.headers]
|
|
|
|
browserXssFilter = true
|
|
|
|
contentTypeNosniff = true
|
|
|
|
forceSTSHeader = true
|
|
|
|
frameDeny = true
|
|
|
|
stsIncludeSubdomains = true
|
|
|
|
stsPreload = true
|
2022-09-13 19:50:02 +02:00
|
|
|
customFrameOptionsValue = "ALLOW-FROM https://code.oasis21.org https://cloud.oasis21.org"
|
2022-04-28 16:41:42 +02:00
|
|
|
referrerPolicy = "same-origin"
|
|
|
|
permissionsPolicy = "vibrate='self'"
|
|
|
|
stsSeconds = 315360000
|
|
|
|
|
|
|
|
[http.middlewares.compression.compress]
|
|
|
|
excludedContentTypes = ["text/event-stream"]
|
|
|
|
|
|
|
|
[http.middlewares.allowFrameAndCORS.headers]
|
2022-09-13 19:50:02 +02:00
|
|
|
customFrameOptionsValue = "ALLOW-FROM https://code.oasis21.org"
|
|
|
|
contentSecurityPolicy = "frame-ancestors * cloud.oasis21.org"
|
2022-04-28 16:41:42 +02:00
|
|
|
accessControlAllowHeaders = ["*"]
|
|
|
|
accessControlAllowMethods = ["GET", "POST", "OPTIONS"]
|
|
|
|
accessControlAllowOriginList = ["*"]
|
|
|
|
accessControlExposeHeaders = ["*"]
|
2022-09-23 14:41:28 +02:00
|
|
|
|
|
|
|
[http.routers]
|
|
|
|
[http.routers.coopoasis]
|
|
|
|
entrypoints = "websecure"
|
|
|
|
rule = "Host(`coopoasis.oasis21.org`)"
|
|
|
|
service = "coopoasis"
|
|
|
|
|
|
|
|
[http.services]
|
|
|
|
[http.services.coopoasis.loadBalancer]
|
|
|
|
[[http.services.coopoasis.loadBalancer.servers]]
|
|
|
|
url = "http://172.16.7.12/"
|