From 901f10be6a97aa0cae844dd93757358b9a22ef08 Mon Sep 17 00:00:00 2001
From: mgutzeit <moritz.gutzeit@proton.me>
Date: Tue, 22 Apr 2025 19:20:58 +0200
Subject: [PATCH] feat: removed ddns from nginx role

Soll nicht mehr im Internet stehen
---
 group_vars/all/containers.yml |  2 +-
 roles/nginx/templates/ddns.j2 | 51 -----------------------------------
 2 files changed, 1 insertion(+), 52 deletions(-)
 delete mode 100644 roles/nginx/templates/ddns.j2

diff --git a/group_vars/all/containers.yml b/group_vars/all/containers.yml
index add9956..51274af 100644
--- a/group_vars/all/containers.yml
+++ b/group_vars/all/containers.yml
@@ -1,6 +1,7 @@
 ---
 no_nginx: # es wird kein nginx template nach /etc/nginx/ kopiert
   - jellyfin
+  - ddns
 
 docker:
   containers:
@@ -9,7 +10,6 @@ docker:
       image: qmcgaw/ddns-updater:latest
       port: 7080
       user: 1200
-      url: ddns.mgutzeit.de
     forgejo:
       name: GIT_forgejo
       image: codeberg.org/forgejo/forgejo:9
diff --git a/roles/nginx/templates/ddns.j2 b/roles/nginx/templates/ddns.j2
deleted file mode 100644
index 4754d77..0000000
--- a/roles/nginx/templates/ddns.j2
+++ /dev/null
@@ -1,51 +0,0 @@
-server {
- 
-    server_name {{ docker.containers.ddns.url }};
- 
-    index index.php;
-    location / {
-	proxy_pass http://localhost:{{ docker.containers.ddns.port }}/; # set this to the nextcloud port set in doccker-compose file
-	proxy_set_header Host $host;
-	proxy_set_header X-Real-IP $remote_addr;
-	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
-	proxy_set_header X-Forwarded-Proto $scheme;
- 
-	client_max_body_size 0;
-	add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";
- 
-	access_log /var/log/nginx/ddns.access.log;
-	error_log /var/log/nginx/ddns.error.log;
-    }
- 
-    location = /.well-known/carddav {
-	return 301 $scheme://$host/remote.php/dav;
-    }
- 
-    location = /.well-known/caldav {
-	return 301 $scheme://$host/remote.php/dav;
-    }
-
-    listen 443 ssl; # managed by Certbot
-    ssl_certificate /etc/letsencrypt/live/{{ docker.containers.ddns.url }}/fullchain.pem; # managed by Certbot
-    ssl_certificate_key /etc/letsencrypt/live/{{ docker.containers.ddns.url }}/privkey.pem; # managed by Certbot
-    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
-    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
-    if ($allowed_country = no) {
-	return 444;
-    }
-
-}
-
-server {
-    if ($host = {{ docker.containers.ddns.url }}) {
-        return 301 https://$host$request_uri;
-    } # managed by Certbot
-
-
-    listen 80;
- 
-    server_name {{ docker.containers.ddns.url }};
-    return 404; # managed by Certbot
-
-
-}