add vhost example

update docs url, remove /etc/ssl as writable directory
2018-05-16 02:43:13 -06:00 · 2018-05-16 02:34:04 -06:00
2 changed files with 27 additions and 2 deletions
--- a/dist/etc/goldilocks/goldilocks.vhost.yml
+++ b/dist/etc/goldilocks/goldilocks.vhost.yml
@ -0,0 +1,25 @@
+tcp:
+  bind:
+    - 80
+    - 443
+
+tls:
+  modules:
+    - type: acme
+      domains:
+        - '*'
+      email: 'jon@example.com'
+      challenge_type: 'http-01'
+
+http:
+  trust_proxy: false
+  allow_insecure: false
+  primary_domain: example.com
+  modules:
+    - type: static
+      domains:
+        - '*'
+      root: '/srv/www/:hostname'
+
+mdns:
+  disabled: true
--- a/dist/etc/systemd/system/goldilocks.service
+++ b/dist/etc/systemd/system/goldilocks.service
@ -1,6 +1,6 @@
 [Unit]
 Description=Goldilocks Internet Server
-Documentation=https://git.daplie.com/Daplie/goldilocks.js
+Documentation=https://git.coolaj86.com/coolaj86/goldilocks.js
 After=network-online.target
 Wants=network-online.target systemd-networkd-wait-online.service

@ -46,7 +46,7 @@ ProtectSystem=full
 # … except TLS/SSL, ACME, and Let's Encrypt certificates
 #   and /var/log/goldilocks, because we want a place where logs can go.
 #   This merely retains r/w access rights, it does not add any new. Must still be writable on the host!
-ReadWriteDirectories=/etc/goldilocks /etc/ssl /srv/www /var/log/goldilocks /opt/goldilocks
+ReadWriteDirectories=/etc/goldilocks /srv/www /var/log/goldilocks /opt/goldilocks
 # you may also want to add other directories such as /opt/goldilocks /etc/acme /etc/letsencrypt

 # Note: in v231 and above ReadWritePaths has been renamed to ReadWriteDirectories
Author	SHA1	Message	Date
AJ ONeal	b66a872ab4	add vhost example	2018-05-16 02:43:13 -06:00
AJ ONeal	c7207c0f59	update docs url, remove /etc/ssl as writable directory	2018-05-16 02:34:04 -06:00