gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
16e16a6180
secubox-openwrt/luci-app-vhost-manager/root/usr/share/rpcd/acl.d/luci-app-vhost-manager.json
CyberMind-FR 77d40a1f89 feat: implement VHost Manager - nginx reverse proxy and SSL management 
Implements a comprehensive virtual host management system for OpenWrt with
nginx reverse proxy and Let's Encrypt SSL certificate integration.

Features:
- Virtual host management with nginx reverse proxy configuration
- Backend connectivity testing before deployment
- SSL/TLS certificate provisioning via acme.sh and Let's Encrypt
- Certificate expiry monitoring with color-coded warnings
- HTTP Basic Authentication support
- WebSocket protocol support with upgrade headers
- Real-time nginx access log viewer per domain
- Automatic nginx configuration generation and reload

Components:
- RPCD backend (luci.vhost-manager): 11 ubus methods for vhost and cert management
  * status, list_vhosts, get_vhost, add_vhost, update_vhost, delete_vhost
  * test_backend, request_cert, list_certs, reload_nginx, get_access_logs
- 4 JavaScript views: overview, vhosts, certificates, logs
- ACL with read/write permissions for all ubus methods
- UCI config with global settings and vhost sections
- Comprehensive README with API docs, examples, and troubleshooting

Configuration:
- Nginx vhost configs generated in /etc/nginx/conf.d/vhosts/
- SSL certificates managed via ACME in /etc/acme/{domain}/
- Access logs per domain: /var/log/nginx/{domain}.access.log
- HTTP Basic Auth htpasswd files in /etc/nginx/htpasswd/

Architecture follows SecuBox standards:
- RPCD naming convention (luci. prefix)
- Menu paths match view file structure
- All JavaScript in strict mode
- Backend connectivity validation
- Comprehensive error handling

Dependencies: nginx-ssl, acme, curl

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2025-12-24 10:37:01 +01:00

40 lines
737 B
JSON
Raw Blame History

{
"luci-app-vhost-manager": {
"description": "Grant access to LuCI VHost Manager",
"read": {
"ubus": {
"luci.vhost-manager": [
"status",
"list_vhosts",
"get_vhost",
"test_backend",
"list_certs",
"get_access_logs"
]
},
"uci": ["vhost_manager", "nginx"],
"file": {
"/etc/nginx/conf.d/*": ["read"],
"/etc/acme/*": ["read"],
"/var/log/nginx/*": ["read"]
}
},
"write": {
"ubus": {
"luci.vhost-manager": [
"add_vhost",
"update_vhost",
"delete_vhost",
"request_cert",
"reload_nginx"
]
},
"uci": ["vhost_manager", "nginx"],
"file": {
"/etc/nginx/conf.d/*": ["write"],
"/etc/nginx/.htpasswd_*": ["write"]
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink