marcio.fernandes/nextcloud
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ingress/internal: relax security
All checks were successful
/ continuous-deploy (push) Successful in 23s
Details

Browse Source 
ingress/public: disabled authentik-forward-auth (problems with phone clients)
middlewares/rate-limit: increase values
middlewares/security-headers:- added sts -  fix nextcloud warning Some headers are not set correctly on your instance - The Strict-Transport-Security HTTP header is not set (should be at least 15552000 seconds). For enhanced security, it is recommended to enable HSTS
This commit is contained in:
Márcio Fernandes
2026-04-16 19:47:11 +00:00
parent 663049fb89
commit 5acca5d4c7
3 changed files with 15 additions and 57 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
deploy/infra/ingress-web-public.yaml
View File

@@ -21,6 +21,9 @@ spec:
- name: ak-outpost-authentik-embedded-outpost
namespace: id-limbosolutions-com
port: 9000
middlewares:
- name: nextcloud-security-headers
- name: rate-limit
# PUBLIC SHARES (NO SSO)
@@ -63,7 +66,7 @@ spec:
- name: nextcloud
port: 8080
middlewares:
- name: authentik-forward-auth
# - name: authentik-forward-auth
- name: nextcloud-security-headers
- name: rate-limit