Compare commits
6 Commits
f8a0a6444e
...
main
| Author | SHA1 | Date | |
|---|---|---|---|
|
d5fd7dde5b | ||
|
|
bbb517b3d1 | ||
|
|
c354fbf626 | ||
|
|
6d01dd0bbb | ||
|
|
e6b6fcffd6 | ||
|
|
f21c0e2536 |
20
config.yaml
20
config.yaml
@@ -1,6 +1,6 @@
|
|||||||
server:
|
server:
|
||||||
listenAddress: ":80"
|
listenAddress: ":80"
|
||||||
exposedAddress: "birdy.greact.online:50051" # без схемы
|
exposedAddress: "https://brd.greact.online:443" # домен, через который ходит UI и клиенты
|
||||||
stunPorts:
|
stunPorts:
|
||||||
- 3478
|
- 3478
|
||||||
logLevel: "info"
|
logLevel: "info"
|
||||||
@@ -8,24 +8,16 @@ server:
|
|||||||
authSecret: "0xO0NE2nsyAv3QWM6lYfYMKZ+TJ4BG4N93kpbCWYISg="
|
authSecret: "0xO0NE2nsyAv3QWM6lYfYMKZ+TJ4BG4N93kpbCWYISg="
|
||||||
dataDir: "/var/lib/netbird"
|
dataDir: "/var/lib/netbird"
|
||||||
|
|
||||||
auth: # вложено под server
|
auth:
|
||||||
issuer: "https://birdy.greact.online/oauth2"
|
issuer: "https://brd.greact.online/oauth2"
|
||||||
localAuthDisabled: false
|
localAuthDisabled: false
|
||||||
signKeyRefreshEnabled: true
|
signKeyRefreshEnabled: true
|
||||||
dashboardRedirectURIs:
|
dashboardRedirectURIs:
|
||||||
- "https://birdy.greact.online/nb-auth"
|
- "https://brd.greact.online/nb-auth"
|
||||||
- "https://birdy.greact.online/nb-silent-auth"
|
- "https://brd.greact.online/nb-silent-auth"
|
||||||
cliRedirectURIs:
|
cliRedirectURIs:
|
||||||
- "http://localhost:53000/"
|
- "http://localhost:53000/"
|
||||||
|
|
||||||
reverseProxy:
|
store:
|
||||||
trustedHTTPProxies:
|
|
||||||
- "172.16.0.0/12" # Docker-подсеть (покрывает NPM-контейнер в сети proxy)
|
|
||||||
|
|
||||||
store: # вложено под server
|
|
||||||
engine: "sqlite"
|
engine: "sqlite"
|
||||||
encryptionKey: "0xO0NE2nsyAv3QWM6lYfYMKZ+TJ4BG4N93kpbCWYISg="
|
encryptionKey: "0xO0NE2nsyAv3QWM6lYfYMKZ+TJ4BG4N93kpbCWYISg="
|
||||||
|
|
||||||
relay:
|
|
||||||
exposedAddress: "rel://birdy.greact.online:33080" # отдельный адрес для relay
|
|
||||||
secret: "0xO0NE2nsyAv3QWM6lYfYMKZ+TJ4BG4N93kpbCWYISg="
|
|
||||||
|
|||||||
@@ -1,14 +1,14 @@
|
|||||||
NETBIRD_MGMT_API_ENDPOINT=https://birdy.greact.online
|
NETBIRD_MGMT_API_ENDPOINT=https://brd.greact.online
|
||||||
NETBIRD_MGMT_GRPC_API_ENDPOINT=grpc://birdy.greact.online:50051
|
NETBIRD_MGMT_GRPC_API_ENDPOINT=https://brd.greact.online
|
||||||
|
|
||||||
AUTH_AUDIENCE=netbird-dashboard
|
AUTH_AUDIENCE=netbird-dashboard
|
||||||
AUTH_CLIENT_ID=netbird-dashboard
|
AUTH_CLIENT_ID=netbird-dashboard
|
||||||
AUTH_CLIENT_SECRET=
|
AUTH_CLIENT_SECRET=
|
||||||
AUTH_AUTHORITY=https://birdy.greact.online/oauth2
|
AUTH_AUTHORITY=https://brd.greact.online/oauth2
|
||||||
USE_AUTH0=false
|
USE_AUTH0=false
|
||||||
AUTH_SUPPORTED_SCOPES=openid profile email groups
|
AUTH_SUPPORTED_SCOPES=openid profile email groups
|
||||||
AUTH_REDIRECT_URI=/nb-auth
|
AUTH_REDIRECT_URI=/nb-auth
|
||||||
AUTH_SILENT_REDIRECT_URI=/nb-silent-auth
|
AUTH_SILENT_REDIRECT_URI=/nb-silent-auth
|
||||||
LETSENCRYPT_DOMAIN=none
|
LETSENCRYPT_DOMAIN=
|
||||||
LETSENCRYPT_EMAIL=example@local
|
LETSENCRYPT_EMAIL=
|
||||||
NGINX_SSL_PORT=443
|
NGINX_SSL_PORT=
|
||||||
|
|||||||
@@ -6,10 +6,6 @@ services:
|
|||||||
container_name: netbird-server
|
container_name: netbird-server
|
||||||
expose:
|
expose:
|
||||||
- "80" # Management API + OAuth2 + Signal -- внутрь proxy-сети
|
- "80" # Management API + OAuth2 + Signal -- внутрь proxy-сети
|
||||||
ports:
|
|
||||||
- "50051:80" # management gRPC
|
|
||||||
- "33080:33080" # relay (TCP)
|
|
||||||
- "3478:3478/udp" # STUN
|
|
||||||
volumes:
|
volumes:
|
||||||
- netbird_data:/var/lib/netbird # именованный volume (не bind-mount)
|
- netbird_data:/var/lib/netbird # именованный volume (не bind-mount)
|
||||||
networks:
|
networks:
|
||||||
|
|||||||
Reference in New Issue
Block a user