diff options
| author | rinpatch <rinpatch@sdf.org> | 2018-12-18 21:39:36 +0300 | 
|---|---|---|
| committer | rinpatch <rinpatch@sdf.org> | 2018-12-18 21:39:36 +0300 | 
| commit | ef318fb8a96ddf276393f4ec81d3242dd7c6a4d4 (patch) | |
| tree | a030123a4bbe071613e87c41bee00333727208dc /installation/openbsd | |
| parent | 059dd6f681caf14ee9d288ec14b82132be29ae2c (diff) | |
| parent | 443d59baa05165c3b5b7ab14f3eabd6f2eba09f2 (diff) | |
| download | pleroma-ef318fb8a96ddf276393f4ec81d3242dd7c6a4d4.tar.gz pleroma-ef318fb8a96ddf276393f4ec81d3242dd7c6a4d4.zip | |
Merge branch 'develop' into fix/formatter-ignore-html-chars
Diffstat (limited to 'installation/openbsd')
| -rw-r--r-- | installation/openbsd/httpd.conf | 36 | ||||
| -rwxr-xr-x | installation/openbsd/rc.d/pleromad | 34 | ||||
| -rw-r--r-- | installation/openbsd/relayd.conf | 44 | 
3 files changed, 114 insertions, 0 deletions
| diff --git a/installation/openbsd/httpd.conf b/installation/openbsd/httpd.conf new file mode 100644 index 000000000..82f4803fd --- /dev/null +++ b/installation/openbsd/httpd.conf @@ -0,0 +1,36 @@ +# +# Default httpd.conf file for Pleroma on OpenBSD +# Simple installation instructions +# 1. Place file in /etc +# 2. Replace <IPv4 address> with your public IP address +# 3. If using IPv6, uncomment IPv6 lines and replace <IPv6 address> with your public IPv6 address +# 4. Check file using 'doas httpd -n' +# 5. Enable and start httpd: +#      # doas rcctl enable httpd +#      # doas rcctl start httpd +# + +ext_inet="<IPv4 address>" +#ext_inet6="<IPv6 address>" + +server "default" { +    listen on $ext_inet port 80 # Comment to disable listening on IPv4 +#    listen on $ext_inet6 port 80 # Comment to disable listening on IPv6 +    listen on 127.0.0.1 port 80 # Do NOT comment this line + +    log syslog +    directory no index + +    location "/.well-known/acme-challenge/*" { +        root "/acme" +        request strip 2 +    } + +    location "/robots.txt" { root "/htdocs/local/" } +    location "/*" { block return 302 "https://$HTTP_HOST$REQUEST_URI" } +} + +types { +    include "/usr/share/misc/mime.types" +} + diff --git a/installation/openbsd/rc.d/pleromad b/installation/openbsd/rc.d/pleromad new file mode 100755 index 000000000..19ac4bb51 --- /dev/null +++ b/installation/openbsd/rc.d/pleromad @@ -0,0 +1,34 @@ +#!/bin/ksh +# +# Default init file for Pleroma on OpenBSD +# +# Simple installation instructions: +# 1. Install Pleroma per wiki instructions +# 2. Place this pleromad file in /etc/rc.d +# 3. Enable and start Pleroma +#	# doas rcctl enable pleromad +#	# doas rcctl start pleromad +# + +daemon="/usr/local/bin/elixir" +daemon_flags="--detached -S /usr/local/bin/mix phx.server" +daemon_user="_pleroma" + +. /etc/rc.d/rc.subr + +rc_reload=NO +pexp="phx.server" + +rc_check() { +	pgrep -q -U _pleroma -f "phx.server" +} + +rc_start() { +	${rcexec} "cd pleroma; ${daemon} ${daemon_flags}" +} + +rc_stop() { +	pkill -q -U _pleroma -f "phx.server" +} + +rc_cmd $1 diff --git a/installation/openbsd/relayd.conf b/installation/openbsd/relayd.conf new file mode 100644 index 000000000..31c2c1129 --- /dev/null +++ b/installation/openbsd/relayd.conf @@ -0,0 +1,44 @@ +# +# Default relayd.conf file for Pleroma on OpenBSD +# Simple installation instructions: +# 1. Place in /etc +# 2. Replace <ipaddr> with your public IPv4 address +# 3. If using IPv6i, uncomment IPv6 lines and replace <ip6addr> with your public IPv6 address +# 4. Check file using 'doas relayd -n' +# 5. Reload/start relayd +#      # doas rcctl enable relayd +#      # doas rcctl start relayd +# + +ext_inet="<ipaddr>" +#ext_inet6="<ip6addr>" + +table <pleroma_server> { 127.0.0.1 } +table <httpd_server> { 127.0.0.1 } + +http protocol plerup { # Protocol for upstream pleroma server +    #tcp { nodelay, sack, socket buffer 65536, backlog 128 } # Uncomment and adjust as you see fit +    tls ciphers "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA0-POLY1305" +    tls ecdhe secp384r1 + +    # Forward some paths to the local server (as pleroma won't respond to them as you might want) +    pass request quick path "/robots.txt" forward to <httpd_server> + +    # Append a bunch of headers +    match request header append "X-Forwarded-For" value "$REMOTE_ADDR" # This two header and the next one are not strictl required by pleroma but adding them won't hurt +    match request header append "X-Forwarded-By" value "$SERVER_ADDR:$SERVER_PORT" + +    match request header append "Connection" value "upgrade" + +} + +relay wwwtls { +    listen on $ext_inet port https tls # Comment to disable listening on IPv4 +#    listen on $ext_inet6 port https tls # Comment to disable listening on IPv6 + +    protocol plerup + +    forward to <pleroma_server> port 4000 check http "/" code 200 +    forward to <httpd_server> port 80 check http "/robots.txt" code 200 +} + | 
