42 lines
1.3 KiB
YAML
42 lines
1.3 KiB
YAML
http:
|
|
middlewares:
|
|
authelia:
|
|
forwardAuth:
|
|
address: "http://authelia:9091/api/verify?rd=https%3A%2F%2Fauthelia.example.de%2F"
|
|
trustForwardHeader: true
|
|
authResponseHeaders:
|
|
- "Remote-User"
|
|
- "Remote-Groups"
|
|
- "Remote-Email"
|
|
- "Remote-Name"
|
|
florianhoss:
|
|
redirectRegex:
|
|
regex: "^https://fhoss.de|www.fhoss.de|www.florianhoss.de(/?.*)"
|
|
replacement: "https://florianhoss.de${1}"
|
|
permanent: true
|
|
helmuthoss:
|
|
redirectRegex:
|
|
regex: "^https://www.helmuthoss.de(/?.*)"
|
|
replacement: "https://helmuthoss.de${1}"
|
|
permanent: true
|
|
secure-headers:
|
|
headers:
|
|
frameDeny: true
|
|
browserXssFilter: true
|
|
contentTypeNosniff: true
|
|
forceSTSHeader: true
|
|
stsIncludeSubdomains: true
|
|
stsPreload: true
|
|
stsSeconds: 63072000
|
|
customFrameOptionsValue: "SAMEORIGIN"
|
|
referrerPolicy: "strict-origin"
|
|
tls:
|
|
options:
|
|
default:
|
|
sniStrict: true
|
|
minVersion: "VersionTLS12"
|
|
cipherSuites:
|
|
- "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384"
|
|
- "TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384"
|
|
- "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305"
|
|
- "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305"
|