tocry site

ralsina.me.txt

@@ -0,0 +1,59 @@
+;;
+;; Domain:     ralsina.me.
+;; Exported:   2024-08-20 14:42:21
+;;
+;; This file is intended for use for informational and archival
+;; purposes ONLY and MUST be edited before use on a production
+;; DNS server.  In particular, you must:
+;;   -- update the SOA record with the correct authoritative name server
+;;   -- update the SOA record with the contact e-mail address information
+;;   -- update the NS record(s) with the authoritative name servers for this domain.
+;;
+;; For further information, please consult the BIND documentation
+;; located on the following website:
+;;
+;; http://www.isc.org/
+;;
+;; And RFC 1035:
+;;
+;; http://www.ietf.org/rfc/rfc1035.txt
+;;
+;; Please note that we do NOT offer technical support for any use
+;; of this zone data, the BIND name server, or any other third-party
+;; DNS software.
+;;
+;; Use at your own risk.
+;; SOA Record
+ralsina.me	3600	IN	SOA	princess.ns.cloudflare.com. dns.cloudflare.com. 2047583154 10000 2400 604800 3600
+
+;; NS Records
+ralsina.me.	86400	IN	NS	princess.ns.cloudflare.com.
+ralsina.me.	86400	IN	NS	tim.ns.cloudflare.com.
+
+;; A Records
+direct.ralsina.me.	1	IN	A	192.241.197.159 ; Points to DigitalOcean VPS for nikola and others
+
+;; CAA Records
+ralsina.me.	1	IN	CAA	0 issuewild "pki.goog; cansignhttpexchanges=yes"
+ralsina.me.	1	IN	CAA	0 issuewild "letsencrypt.org"
+ralsina.me.	1	IN	CAA	0 issuewild "digicert.com; cansignhttpexchanges=yes"
+ralsina.me.	1	IN	CAA	0 issuewild "comodoca.com"
+ralsina.me.	1	IN	CAA	0 issue "pki.goog; cansignhttpexchanges=yes"
+ralsina.me.	1	IN	CAA	0 issue "letsencrypt.org"
+ralsina.me.	1	IN	CAA	0 issue "digicert.com; cansignhttpexchanges=yes"
+ralsina.me.	1	IN	CAA	0 issue "comodoca.com"
+
+;; CNAME Records
+_acme-challenge.ralsina.me.	1	IN	CNAME	ralsina.me.ydzmj.flydns.net.
+*.ralsina.me.	1	IN	CNAME	white-wave-7409.fly.dev.
+ralsina.me.	1	IN	CNAME	white-wave-7409.fly.dev.
+
+;; MX Records
+ralsina.me.	1	IN	MX	75 route2.mx.cloudflare.net.
+ralsina.me.	1	IN	MX	27 route3.mx.cloudflare.net.
+ralsina.me.	1	IN	MX	1 route1.mx.cloudflare.net.
+
+;; TXT Records
+_dmarc.ralsina.me.	1	IN	TXT	"v=DMARC1; p=none; rua=mailto:ralsina@netmanagers.com.ar,mailto:roberto.alsina@gmail.com,mailto:roberto@ralsina.me"
+ralsina.me.	1	IN	TXT	"v=spf1 include:_spf.mx.cloudflare.net ~all"
+ralsina.me.	1	IN	TXT	"google-site-verification=GLjctZfTmZSRp8wt7vx4ko-KaGlqT5hxfUTliYpX9V8"

reverse_proxy/Dockerfile

@@ -1,13 +1,13 @@
-FROM alpine:latest as builder
+FROM alpine:latest AS builder
 WORKDIR /app
 COPY . ./
 # This is where one could build the application code as well.
 
 
-FROM alpine:latest as tailscale
+FROM alpine:latest AS tailscale
 WORKDIR /app
 COPY . ./
-ENV TSFILE=tailscale_1.68.2_amd64.tgz
+ENV TSFILE=tailscale_1.84.0_amd64.tgz
 RUN wget https://pkgs.tailscale.com/stable/${TSFILE} && tar xzf ${TSFILE} --strip-components=1
 COPY . ./
 

reverse_proxy/nginx.conf

@@ -1,23 +1,50 @@
+map $upstream_http_access_control_allow_origin $allow_origin {
+    '' "*";
+}
+
+
 server {
     listen 8080;
     listen [::]:8080;
 
     server_name faaso-prod.ralsina.me;
 
+    add_header 'Access-Control-Allow-Origin' $allow_origin;
+    add_header 'Access-Control-Allow-Headers' '*';
+    add_header 'Access-Control-Allow-Credentials' 'true';
+    add_header 'Allow' 'POST, GET, OPTIONS';
+
+    if ($request_method = 'OPTIONS' ) {
+        return 200;
+    }
+
     location / {
         proxy_pass http://rocky.tail20c16.ts.net:8888;
         proxy_set_header X-Forwarded-Host $http_host;
-      proxy_set_header Host            $host;
-      proxy_set_header Upgrade $http_upgrade;
-      proxy_set_header Connection upgrade;
-      proxy_set_header Accept-Encoding gzip;
-  }
-  error_page 500 502 503 504 /custom_50x.html;
-  location = /custom_50x.html {
-      root /usr/share/nginx/html;
-      internal;
     }
 }
+
+server {
+    listen 8080;
+    listen [::]:8080;
+
+    server_name grafito-demo.ralsina.me;
+
+    add_header 'Access-Control-Allow-Origin' $allow_origin;
+    add_header 'Access-Control-Allow-Headers' '*';
+    add_header 'Access-Control-Allow-Credentials' 'true';
+    add_header 'Allow' 'POST, GET, OPTIONS';
+
+    if ($request_method = 'OPTIONS' ) {
+        return 200;
+    }
+
+    location / {
+        proxy_pass http://rocky.tail20c16.ts.net:1112;
+        proxy_set_header X-Forwarded-Host $http_host;
+    }
+}
+
 server {
     listen 8080;
     listen [::]:8080;
@@ -46,9 +73,13 @@ server {
     server_name ralsina.me;
     server_name faaso.ralsina.me;
     server_name nicolino.ralsina.me;
+    server_name crycco.ralsina.me;
+    server_name nombres.ralsina.me;
+    server_name grafito.ralsina.me;
+    server_name tocry.ralsina.me;
 
     location / {
-      proxy_pass http://pinky.tail20c16.ts.net:8080;
+        proxy_pass http://rocky.tail20c16.ts.net:8080;
         proxy_set_header X-Forwarded-Host $http_host;
         proxy_set_header Host $host;
     }
@@ -66,7 +97,7 @@ server {
     server_name links.ralsina.me;
 
     location / {
-      proxy_pass http://pinky.ralsina.github.beta.tailscale.net:8086;
+        proxy_pass http://rocky.tail20c16.ts.net:8086;
         proxy_set_header X-Forwarded-Host $http_host;
         proxy_set_header Host $host;
     }
@@ -84,7 +115,7 @@ server {
     server_name git.ralsina.me;
 
     location / {
-      proxy_pass http://pinky.ralsina.github.beta.tailscale.net:3000;
+        proxy_pass http://rocky.tail20c16.ts.net:3000;
         proxy_set_header X-Forwarded-Host $http_host;
         proxy_set_header Host $host;
     }
@@ -111,13 +142,13 @@ server {
     }
 
     location / {
-      proxy_pass http://pinky.ralsina.github.beta.tailscale.net:7777;
+        proxy_pass http://rocky.tail20c16.ts.net:7777;
         proxy_set_header X-Forwarded-Host $http_host;
         proxy_set_header Host $host;
     }
 
     location /stream {
-      proxy_pass http://pinky.ralsina.github.beta.tailscale.net:7777;
+        proxy_pass http://rocky.tail20c16.ts.net:7777;
         proxy_set_header Host $host;
         proxy_set_header X-Real-IP $remote_addr;
         proxy_set_header Upgrade $http_upgrade;
@@ -147,14 +178,9 @@ server {
     }
 
     location / {
-      proxy_pass http://pinky.ralsina.github.beta.tailscale.net:8082;
+        proxy_pass http://rocky.tail20c16.ts.net:8082;
         proxy_set_header X-Forwarded-Host $http_host;
     }
-  error_page 403 404 500 502 503 504 /custom_50x.html;
-  location = /custom_50x.html {
-      root /usr/share/nginx/html;
-      internal;
-  }
 }
 
 server {
@@ -164,7 +190,7 @@ server {
     server_name snips.ralsina.me;
 
     location / {
-      proxy_pass http://pinky.ralsina.github.beta.tailscale.net:8091	;
+        proxy_pass http://rocky.tail20c16.ts.net:8091	;
         proxy_set_header X-Forwarded-Host $http_host;
 
         # WebSocket support
@@ -181,12 +207,3 @@ server {
     server_name covers.ralsina.me;
     return 301 https://ralsina.me/stories/covers/;
 }
-
-
-server {
-  listen 8080;
-  listen [::]:8080;
-
-  server_name nombres.ralsina.me;
-  return 301 https://ralsina.me/stories/nombres/;
-}