diff --git a/nginx/cashu.mutinynet.com b/nginx/cashu.mutinynet.com new file mode 100644 index 0000000..167b2c9 --- /dev/null +++ b/nginx/cashu.mutinynet.com @@ -0,0 +1,32 @@ +server { + server_name cashu.mutinynet.com; + + location / { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Cotent-Length' always; + + proxy_pass http://127.0.0.1:3338; + } + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/mutinynet.com/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/mutinynet.com/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = cashu.mutinynet.com) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name cashu.mutinynet.com; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/nginx/faucet.mutinynet.com b/nginx/faucet.mutinynet.com new file mode 100644 index 0000000..c2900dd --- /dev/null +++ b/nginx/faucet.mutinynet.com @@ -0,0 +1,69 @@ +server { + server_name faucet.mutinynet.com; + + location /api/bolt11 { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Cotent-Length' always; + + proxy_pass http://127.0.0.1:3001; + } + + location /api/ { + + # rate limits for faucet POST + limit_req zone=faucet_limit_zone burst=1; + + # Forward the original client IP + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + proxy_set_header X-Forwarded-Proto $scheme; + + # Other proxy settings + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Port $server_port; + + proxy_pass http://127.0.0.1:3001; + } + + + location / { + if ($request_method = 'OPTIONS') { + add_header 'Access-Control-Allow-Origin' '*'; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range'; + add_header 'Access-Control-Max-Age' 1728000; + add_header 'Content-Type' 'text/plain; charset=utf-8'; + add_header 'Content-Length' 0; + return 204; + } + if ($request_method = 'GET') { + add_header 'Access-Control-Allow-Origin' '*'; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range'; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range'; + } + proxy_pass http://127.0.0.1:3000; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/mutinynet.com/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/mutinynet.com/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + +} +server { + if ($host = faucet.mutinynet.com) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name faucet.mutinynet.com; + listen 80; + return 404; # managed by Certbot + +} diff --git a/nginx/mutinynet.com b/nginx/mutinynet.com new file mode 100644 index 0000000..44deafa --- /dev/null +++ b/nginx/mutinynet.com @@ -0,0 +1,85 @@ +server { + server_name mutinynet.com; + location /api/v1/ws { + proxy_pass http://127.0.0.1:8999/; + proxy_http_version 1.1; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "Upgrade"; + } + + location /api/v1/ { + if ($request_method = 'OPTIONS') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Max-Age' 1728000 always; + add_header 'Content-Type' 'text/plain; charset=utf-8' always; + add_header 'Content-Length' 0 always; + return 204; + } + + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range' always; + + proxy_pass http://127.0.0.1:8999; + } + + + location /api/ { + if ($request_method = 'OPTIONS') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Max-Age' 1728000 always; + add_header 'Content-Type' 'text/plain; charset=utf-8' always; + add_header 'Content-Length' 0 always; + return 204; + } + + if ($request_method = 'GET') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range' always; + } + + if ($request_method = 'POST') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range' always; + } + + proxy_pass http://127.0.0.1:3003/; + } + + # mainnet API + location /ws { + proxy_pass http://127.0.0.1:8999/; + proxy_http_version 1.1; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "Upgrade"; + } + location / { + proxy_pass http://127.0.0.1:8080; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/mutinynet.com/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/mutinynet.com/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = mutinynet.com) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name mutinynet.com; + listen 80; + return 404; # managed by Certbot +} diff --git a/nginx/rgs.mutinynet.com b/nginx/rgs.mutinynet.com new file mode 100644 index 0000000..94987df --- /dev/null +++ b/nginx/rgs.mutinynet.com @@ -0,0 +1,58 @@ +server { + server_name rgs.mutinynet.com; + root /var/www/rgs; + + location / { + if ($request_method = 'OPTIONS') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Max-Age' 1728000 always; + add_header 'Content-Type' 'text/plain; charset=utf-8' always; + add_header 'Content-Length' 0 always; + return 204; + } + if ($request_method = 'GET') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range' always; + } + if ($request_method = 'POST') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range' always; + } + + index index.html; # Default files to serve + } + + location /snapshot { + try_files $uri $uri/ /res/symlinks/$1.bin; + autoindex on; + rewrite ^/snapshot/(\d+)$ /snapshot/$1.bin break; + rewrite ^/snapshot/(\d+)\.bin$ /snapshot/$1 break; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/mutinynet.com/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/mutinynet.com/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + +} +server { + if ($host = rgs.mutinynet.com) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name rgs.mutinynet.com; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/nginx/rpc.mutinynet.com b/nginx/rpc.mutinynet.com new file mode 100644 index 0000000..641382e --- /dev/null +++ b/nginx/rpc.mutinynet.com @@ -0,0 +1,45 @@ +server { + server_name rpc.mutinynet.com; + + location / { + + if ($request_method = 'OPTIONS') { + add_header 'Access-Control-Allow-Origin' '*'; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range'; + add_header 'Access-Control-Max-Age' 1728000; + add_header 'Content-Type' 'text/plain; charset=utf-8'; + add_header 'Content-Length' 0; + return 204; + } + if ($request_method = 'GET') { + add_header 'Access-Control-Allow-Origin' '*' always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range' always; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range' always; + } + + proxy_set_header X-Forwarded-Proto $scheme; + proxy_pass https://127.0.0.1:8081; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/mutinynet.com/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/mutinynet.com/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = rpc.mutinynet.com) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name rpc.mutinynet.com; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/nginx/www.mutinynet.com b/nginx/www.mutinynet.com new file mode 100644 index 0000000..d9f5e35 --- /dev/null +++ b/nginx/www.mutinynet.com @@ -0,0 +1,67 @@ +server { + server_name www.mutinynet.com; + location /api/v1/ws { + proxy_pass http://127.0.0.1:8999/; + proxy_http_version 1.1; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "Upgrade"; + } + location /api/v1 { + rewrite ^/api/v1(.*)$ /api$1 last; + } + location /api/ { + if ($request_method = 'OPTIONS') { + add_header 'Access-Control-Allow-Origin' '*'; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range'; + add_header 'Access-Control-Max-Age' 1728000; + add_header 'Content-Type' 'text/plain; charset=utf-8'; + add_header 'Content-Length' 0; + return 204; + } + if ($request_method = 'GET') { + add_header 'Access-Control-Allow-Origin' '*'; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range'; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range'; + } + if ($request_method = 'POST') { + add_header 'Access-Control-Allow-Origin' '*'; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS'; + add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range'; + add_header 'Access-Control-Expose-Headers' 'Content-Length,Content-Range'; + } + proxy_pass http://127.0.0.1:3003/; + } + + # mainnet API + location /ws { + proxy_pass http://127.0.0.1:8999/; + proxy_http_version 1.1; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "Upgrade"; + } + location / { + proxy_pass http://127.0.0.1:8080; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/mutinynet.com/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/mutinynet.com/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = www.mutinynet.com) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name www.mutinynet.com; + listen 80; + return 404; # managed by Certbot + + +}