community-scripts/ProxmoxVED
5
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Test Patchmon

Browse Source
This commit is contained in:
Michel Roegl-Brunner 2025-10-24 09:28:37 +02:00
parent a4e8e1e44f
commit dc804416b0
1 changed files with 8 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
install/patchmon-install.sh
View File

@ -53,7 +53,8 @@ $STD npm install --omit=dev --no-audit --no-fund --no-save --ignore-scripts
cd /opt/patchmon/backend cd /opt/patchmon/backend
$STD npm install --omit=dev --no-audit --no-fund --no-save --ignore-scripts $STD npm install --omit=dev --no-audit --no-fund --no-save --ignore-scripts
cd /opt/patchmon/frontend cd /opt/patchmon/frontend
$STD npm install --no-audit --no-fund --no-save --ignore-scripts export npm_config_production=false
$STD npm install --no-audit --no-fund --no-save
$STD npm run build $STD npm run build
msg_ok "Configured PatchMon" msg_ok "Configured PatchMon"
@ -127,13 +128,13 @@ cat <<EOF >/etc/nginx/sites-available/patchmon.conf
server { server {
listen 80; listen 80;
server_name $LOCAL_IP; server_name $LOCAL_IP;
# Security headers # Security headers
add_header X-Frame-Options DENY always; add_header X-Frame-Options DENY always;
add_header X-Content-Type-Options nosniff always; add_header X-Content-Type-Options nosniff always;
add_header X-XSS-Protection "1; mode=block" always; add_header X-XSS-Protection "1; mode=block" always;
add_header Referrer-Policy "strict-origin-when-cross-origin" always; add_header Referrer-Policy "strict-origin-when-cross-origin" always;
# Frontend # Frontend
location / { location / {
root /opt/patchmon/frontend/dist; root /opt/patchmon/frontend/dist;
@ -155,11 +156,11 @@ server {
proxy_cache_bypass \$http_upgrade; proxy_cache_bypass \$http_upgrade;
proxy_read_timeout 300s; proxy_read_timeout 300s;
proxy_connect_timeout 75s; proxy_connect_timeout 75s;
# Enable cookie passthrough # Enable cookie passthrough
proxy_pass_header Set-Cookie; proxy_pass_header Set-Cookie;
proxy_cookie_path / /; proxy_cookie_path / /;
# Preserve original client IP # Preserve original client IP
proxy_set_header X-Original-Forwarded-For \$http_x_forwarded_for; proxy_set_header X-Original-Forwarded-For \$http_x_forwarded_for;
if (\$request_method = 'OPTIONS') { if (\$request_method = 'OPTIONS') {
@ -180,7 +181,7 @@ server {
proxy_cache_bypass \$http_upgrade; proxy_cache_bypass \$http_upgrade;
proxy_read_timeout 300s; proxy_read_timeout 300s;
proxy_connect_timeout 75s; proxy_connect_timeout 75s;
# Preserve original client IP # Preserve original client IP
proxy_set_header X-Original-Forwarded-For \$http_x_forwarded_for; proxy_set_header X-Original-Forwarded-For \$http_x_forwarded_for;
if (\$request_method = 'OPTIONS') { if (\$request_method = 'OPTIONS') {
@ -194,7 +195,7 @@ server {
expires 1y; expires 1y;
add_header Cache-Control "public, immutable"; add_header Cache-Control "public, immutable";
} }
# Health check endpoint # Health check endpoint
location /health { location /health {
proxy_pass http://127.0.0.1:3399/health; proxy_pass http://127.0.0.1:3399/health;