http:
  middlewares:
    authelia:
      forwardAuth:
        address: "http://authelia:9091/api/verify?rd=https%3A%2F%2Fauthelia.unjx.de%2F"
        trustForwardHeader: true
        authResponseHeaders:
          - "Remote-User"
          - "Remote-Groups"
          - "Remote-Email"
          - "Remote-Name"
    florianhoss:
      redirectRegex:
        regex: "^https://fhoss.de|www.fhoss.de|www.florianhoss.de(/?.*)"
        replacement: "https://florianhoss.de${1}"
        permanent: true
    helmuthoss:
      redirectRegex:
        regex: "^https://www.helmuthoss.de(/?.*)"
        replacement: "https://helmuthoss.de${1}"
        permanent: true
    secure-headers:
      headers:
        frameDeny: true
        browserXssFilter: true
        contentTypeNosniff: true
        forceSTSHeader: true
        stsIncludeSubdomains: true
        stsPreload: true
        stsSeconds: 63072000
        customFrameOptionsValue: "SAMEORIGIN"
        referrerPolicy: "strict-origin"
tls:
  options:
    default:
      sniStrict: true
      minVersion: "VersionTLS12"
      cipherSuites:
        - "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384"
        - "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384"
        - "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305"
        - "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305"