Skip to content

Features/nginx custom #46

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 10 commits into from
Oct 15, 2025
Merged

Features/nginx custom #46

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
b9028da
feat: update DomainDialog to DomainDialogV2 with advanced configurati…
nguyenthuyendieu4 Oct 14, 2025
1a6ee41
feat: Implement Access Lists management UI and functionality
nguyenthuyendieu4 Oct 14, 2025
1d22e08
feat: Enhance security by validating usernames and escaping passwords…
nguyenthuyendieu4 Oct 15, 2025
a32345a
Update database struct for docker composer
nguyenthuyendieu4 Oct 15, 2025
766e09a
fix: Update docker-compose configuration for improved security and co…
nguyenthuyendieu4 Oct 15, 2025
e4c1440
fix: Update volume paths in docker-compose for local development
nguyenthuyendieu4 Oct 15, 2025
fb72f69
fix: Correct migration path in docker-compose configuration
nguyenthuyendieu4 Oct 15, 2025
c188e3e
feat: Add WebSocket support headers in Nginx configuration
nguyenthuyendieu4 Oct 15, 2025
123a2e2
feat: Implement Backup Service with backup scheduling and nginx confi…
nguyenthuyendieu4 Oct 15, 2025
0cc60e9
fix: Update volume definitions in docker-compose for consistency and …
nguyenthuyendieu4 Oct 15, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 2 additions & 1 deletion .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -46,4 +46,5 @@ landing/*
.pnpm-store/
.seeded
*.md
/docs/*
/docs/*
test-*
2 changes: 1 addition & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -601,7 +601,7 @@ curl -X POST http://localhost:3001/api/auth/login \

## 📄 License

This project is licensed under the **MIT License** - see the [LICENSE](LICENSE) file for details.
This project is licensed under the **License** - see the [LICENSE](LICENSE) file for details.

## 👥 Support & Community

Expand Down
5 changes: 5 additions & 0 deletions apps/api/prisma/migrations/20251014043307_add_domain_advanced_settings/migration.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
-- AlterTable
ALTER TABLE "domains" ADD COLUMN "customLocations" JSONB,
ADD COLUMN "grpcEnabled" BOOLEAN NOT NULL DEFAULT false,
ADD COLUMN "hstsEnabled" BOOLEAN NOT NULL DEFAULT false,
ADD COLUMN "http2Enabled" BOOLEAN NOT NULL DEFAULT true;
74 changes: 74 additions & 0 deletions apps/api/prisma/migrations/20251014102338_add_access_lists_management/migration.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,74 @@
-- CreateEnum
CREATE TYPE "AccessListType" AS ENUM ('ip_whitelist', 'http_basic_auth', 'combined');

-- CreateTable
CREATE TABLE "access_lists" (
"id" TEXT NOT NULL,
"name" TEXT NOT NULL,
"description" TEXT,
"type" "AccessListType" NOT NULL,
"enabled" BOOLEAN NOT NULL DEFAULT true,
"allowedIps" TEXT[] DEFAULT ARRAY[]::TEXT[],
"createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
"updatedAt" TIMESTAMP(3) NOT NULL,

CONSTRAINT "access_lists_pkey" PRIMARY KEY ("id")
);

-- CreateTable
CREATE TABLE "access_list_auth_users" (
"id" TEXT NOT NULL,
"accessListId" TEXT NOT NULL,
"username" TEXT NOT NULL,
"passwordHash" TEXT NOT NULL,
"description" TEXT,
"createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
"updatedAt" TIMESTAMP(3) NOT NULL,

CONSTRAINT "access_list_auth_users_pkey" PRIMARY KEY ("id")
);

-- CreateTable
CREATE TABLE "access_list_domains" (
"id" TEXT NOT NULL,
"accessListId" TEXT NOT NULL,
"domainId" TEXT NOT NULL,
"enabled" BOOLEAN NOT NULL DEFAULT true,
"createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
"updatedAt" TIMESTAMP(3) NOT NULL,

CONSTRAINT "access_list_domains_pkey" PRIMARY KEY ("id")
);

-- CreateIndex
CREATE UNIQUE INDEX "access_lists_name_key" ON "access_lists"("name");

-- CreateIndex
CREATE INDEX "access_lists_type_idx" ON "access_lists"("type");

-- CreateIndex
CREATE INDEX "access_lists_enabled_idx" ON "access_lists"("enabled");

-- CreateIndex
CREATE INDEX "access_list_auth_users_accessListId_idx" ON "access_list_auth_users"("accessListId");

-- CreateIndex
CREATE UNIQUE INDEX "access_list_auth_users_accessListId_username_key" ON "access_list_auth_users"("accessListId", "username");

-- CreateIndex
CREATE INDEX "access_list_domains_accessListId_idx" ON "access_list_domains"("accessListId");

-- CreateIndex
CREATE INDEX "access_list_domains_domainId_idx" ON "access_list_domains"("domainId");

-- CreateIndex
CREATE UNIQUE INDEX "access_list_domains_accessListId_domainId_key" ON "access_list_domains"("accessListId", "domainId");

-- AddForeignKey
ALTER TABLE "access_list_auth_users" ADD CONSTRAINT "access_list_auth_users_accessListId_fkey" FOREIGN KEY ("accessListId") REFERENCES "access_lists"("id") ON DELETE CASCADE ON UPDATE CASCADE;

-- AddForeignKey
ALTER TABLE "access_list_domains" ADD CONSTRAINT "access_list_domains_accessListId_fkey" FOREIGN KEY ("accessListId") REFERENCES "access_lists"("id") ON DELETE CASCADE ON UPDATE CASCADE;

-- AddForeignKey
ALTER TABLE "access_list_domains" ADD CONSTRAINT "access_list_domains_domainId_fkey" FOREIGN KEY ("domainId") REFERENCES "domains"("id") ON DELETE CASCADE ON UPDATE CASCADE;
74 changes: 74 additions & 0 deletions apps/api/prisma/schema.prisma
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -183,12 +183,19 @@ model Domain {
realIpCloudflare Boolean @default(false) // Use Cloudflare IP ranges
realIpCustomCidrs String[] @default([]) // Custom CIDR ranges for set_real_ip_from

// Advanced Configuration
hstsEnabled Boolean @default(false) // HTTP Strict Transport Security
http2Enabled Boolean @default(true) // Enable HTTP/2
grpcEnabled Boolean @default(false) // Enable gRPC/gRPCs support
customLocations Json? // Custom location blocks configuration

// Relations
upstreams Upstream[]
loadBalancer LoadBalancerConfig?
sslCertificate SSLCertificate?
modsecCRSRules ModSecCRSRule[]
modsecRules ModSecRule[]
accessLists AccessListDomain[]

createdAt DateTime @default(now())
updatedAt DateTime @updatedAt
Expand Down Expand Up @@ -454,6 +461,73 @@ model AclRule {
@@map("acl_rules")
}

// Access Lists Management Models

enum AccessListType {
ip_whitelist
http_basic_auth
combined // Both IP and Basic Auth
}

model AccessList {
id String @id @default(cuid())
name String @unique
description String? @db.Text
type AccessListType
enabled Boolean @default(true)

// IP Whitelist configuration
allowedIps String[] @default([]) // List of allowed IP addresses/CIDR

// HTTP Basic Auth configuration
authUsers AccessListAuthUser[]

// Relations to domains
domains AccessListDomain[]

createdAt DateTime @default(now())
updatedAt DateTime @updatedAt

@@index([type])
@@index([enabled])
@@map("access_lists")
}

model AccessListAuthUser {
id String @id @default(cuid())
accessListId String
accessList AccessList @relation(fields: [accessListId], references: [id], onDelete: Cascade)

username String
passwordHash String // Plain text password - will be hashed by htpasswd tool with apr1/MD5 format
description String?

createdAt DateTime @default(now())
updatedAt DateTime @updatedAt

@@unique([accessListId, username])
@@index([accessListId])
@@map("access_list_auth_users")
}

model AccessListDomain {
id String @id @default(cuid())
accessListId String
accessList AccessList @relation(fields: [accessListId], references: [id], onDelete: Cascade)
domainId String
domain Domain @relation(fields: [domainId], references: [id], onDelete: Cascade)

enabled Boolean @default(true)

createdAt DateTime @default(now())
updatedAt DateTime @updatedAt

@@unique([accessListId, domainId])
@@index([accessListId])
@@index([domainId])
@@map("access_list_domains")
}

model PerformanceMetric {
id String @id @default(cuid())
domain String
Expand Down
Loading