| Age | Commit message (Collapse) | Author | Lines |
|
- Caddyfile: extract repeated header blocks into (noindex)/(crawler_bypass)
snippets (adapted JSON verified byte-identical to previous config)
- CLAUDE.md: add mosquitone-admin/microblog to repos table; document that
proxy auth is disabled (PROXY_NO_AUTH=1) with JP-only IP filter instead
- Deploy.md/caddy/README.md: reflect all-service deploy and forward proxy
- tests/check.sh: shell/python syntax, repos.txt<->hooks<->sessions.txt
consistency, app.py COMMANDS vs run-command.sh whitelist, secrets check
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
|
|
Replace standalone Squid container with caddy-forwardproxy plugin so the
proxy shares Caddy's existing ports and TLS. HTTP on :80 and HTTPS on :443.
Auth is read from the same vpn/users.conf at Caddy startup via entrypoint.sh.
DNS: add proxy to setup-route53.py WEB_SUBDOMAINS.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
|
- proxy/: Squid container with HTTPS port, Basic auth from vpn/users.conf
- caddy/Caddyfile: add proxy.yyamashita.com block (RSA cert for compat)
- git/hooks: add proxy/deploy.sh to post-receive hook
- CLAUDE.md: document proxy setup and client config
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
|
- vpn/: Dockerfile, docker-compose.yml, swanctl.conf.tpl, entrypoint.sh
- install.sh: Caddy 証明書流用 + コンテナ起動
- renew-cert.sh: 証明書更新 + swanctl ホットリロード
- caddy/Caddyfile: vpn.yyamashita.com 追加(Let's Encrypt 証明書取得用)
- post-receive: vpn/deploy.sh を追加
- setup-route53.py: WEB_SUBDOMAINS に vpn を追加
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
|
- caddy/Caddyfile: admin.yyamashita.com → hetzner-admin.yyamashita.com
- mail/dns/setup-route53.py: add A record for primary, CNAME records for
all web service subdomains pointing to hetzner.yyamashita.com
- CLAUDE.md: update access URL
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
|
Basic Auth protected web UI with buttons to restart services and reboot.
SSH key with authorized_keys command= restriction limits executable commands.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
|
- mail/ ディレクトリ追加: Postfix + OpenDKIM の Docker コンテナ
- mail/domains.txt で送信ドメインを管理(現在: golive.yyamashita.com)
- install.sh が domains.txt から KeyTable/SigningTable を動的生成
- setup-route53.py で SPF/DKIM/DMARC を Route 53 に一括設定
- post-receive フックに mail/deploy.sh を追加
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
|
- lighttpd.conf: exempt static files from CGI rewrite
- deploy.sh: add --build to rebuild image on config changes
- CLAUDE.md, Deploy.md: add cgit directory and deploy notes
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
|
- server/authorized_keys: root SSH keys managed in repo
- server/requirements.md: list of required tools/packages
- git/install.sh: now also applies authorized_keys on install
- CLAUDE.md: repo overview for Claude Code
- Deploy.md: simplified
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|