Initial commit - existing project files

2022-03-16 12:11:30 +01:00 · 2022-03-16 12:11:30 +01:00 · c49798a9ea
commit c49798a9ea
82 changed files with 4304 additions and 0 deletions
--- a/config/Caddyfile
+++ b/config/Caddyfile
@ -0,0 +1,39 @@
+{
+	# disable admin backend
+	admin off
+	# define the ports by the environment variables
+	http_port {$HTTP_PORT}
+	https_port {$HTTPS_PORT}
+}
+
+https:// {
+	# the tls certificates
+	tls ./config/tls/server.pem ./config/tls/server-key.pem
+	route {
+		# static files
+		file_server /static/* {
+			root {$STATIC_FILES}/..
+		}
+		# favicon
+		redir /favicon.ico /static/favicon.ico
+		# reverse proxy to the (django) application
+		reverse_proxy localhost:{$DJANGO_PORT}
+	}
+	# use compression
+	encode gzip
+	# logging
+	log {
+		output file {$CADDY_ACCESS_LOG}
+		format filter {
+			wrap console
+			fields {
+				common_log delete
+				request>headers delete
+				request>tls delete
+				user_id delete
+				resp_headers delete
+			}
+		}
+		level INFO
+	}
+}
--- a/config/config.sample.sh
+++ b/config/config.sample.sh
@ -0,0 +1,31 @@
+# environment variables
+
+export HTTP_PORT=80 # required by caddy, will be redirected to https
+export HTTPS_PORT=443 # actual port for webinterface
+
+export DJANGO_PORT=8001 # caddy's http port (should be blocked by the firewall)
+
+export DJANGO_SESSION_COOKIE_AGE=600 # auto-logout, in seconds
+export SESSION_CLEAR_INTERVAL=120 # interval for automatic session clearing, in minutes
+
+export DJANGO_LANGUAGE_CODE="en" # the default and fallback language. Currently only de and en are supported.
+export DJANGO_TIME_ZONE="CET"
+
+export CURRENCY_SUFFIX="$" # if you have another currency symbol, you can specify it here
+
+# Do you want to enable password validation? 
+# (numeric PINs as Password will not be seen as valid)
+export DJANGO_ENABLE_PASSWORD_VALIDATION="true"
+
+# database connection (postgresql)
+export PGDB_DB=""     # The name of the databae
+export PGDB_USER=""     # The database user
+export PGDB_PASSWORD='' # The password for the database user
+export PGDB_HOST=""     # The hostname of your database (e.g. example.org or 127.0.0.1)
+export PGDB_PORT=5432   # The port your database is listening on
+
+# log files
+# only change if you know what you are doing
+export CADDY_ACCESS_LOG="$(pwd)/logs/http-access.log"
+export CADDY_LOG="$(pwd)/logs/caddy.log"
+export APPLICATION_LOG="$(pwd)/logs/application.log"
--- a/config/tls/cert-config.sh
+++ b/config/tls/cert-config.sh
@ -0,0 +1,6 @@
+# environment variables for tls generation
+
+export TLS_EXPIRE_AFTER_DAYS=365
+export TLS_COMMON_NAME="localhost"
+export TLS_ALT_NAME1="127.0.0.1"
+export TLS_ALT_NAME2="localhost.localdomain"