chore: update deployment
This commit is contained in:
@@ -423,9 +423,9 @@
|
|||||||
pause:
|
pause:
|
||||||
seconds: 10
|
seconds: 10
|
||||||
|
|
||||||
- name: Health check - Summary endpoint (HTTPS)
|
- name: Health check - Nginx ping endpoint (HTTPS)
|
||||||
uri:
|
uri:
|
||||||
url: "https://{{ ansible_host }}/health/summary"
|
url: "https://{{ ansible_host }}/ping"
|
||||||
method: GET
|
method: GET
|
||||||
return_content: yes
|
return_content: yes
|
||||||
status_code: 200
|
status_code: 200
|
||||||
|
|||||||
@@ -25,7 +25,7 @@ final readonly class ProductionSecurityMiddleware implements HttpMiddleware
|
|||||||
/**
|
/**
|
||||||
* Routes that should be blocked in production
|
* Routes that should be blocked in production
|
||||||
*/
|
*/
|
||||||
private const BLOCKED_ROUTES = [
|
private const array BLOCKED_ROUTES = [
|
||||||
'/admin/discovery',
|
'/admin/discovery',
|
||||||
'/admin/routes',
|
'/admin/routes',
|
||||||
'/admin/performance',
|
'/admin/performance',
|
||||||
@@ -38,7 +38,7 @@ final readonly class ProductionSecurityMiddleware implements HttpMiddleware
|
|||||||
/**
|
/**
|
||||||
* Routes that require IP whitelist in production
|
* Routes that require IP whitelist in production
|
||||||
*/
|
*/
|
||||||
private const IP_RESTRICTED_ROUTES = [
|
private const array IP_RESTRICTED_ROUTES = [
|
||||||
'/admin',
|
'/admin',
|
||||||
'/analytics',
|
'/analytics',
|
||||||
'/health',
|
'/health',
|
||||||
@@ -48,7 +48,7 @@ final readonly class ProductionSecurityMiddleware implements HttpMiddleware
|
|||||||
/**
|
/**
|
||||||
* Allowed IPs for admin access in production
|
* Allowed IPs for admin access in production
|
||||||
*/
|
*/
|
||||||
private const ALLOWED_IPS = [
|
private const array ALLOWED_IPS = [
|
||||||
'127.0.0.1',
|
'127.0.0.1',
|
||||||
'::1',
|
'::1',
|
||||||
// Add your office/home IP here for production admin access
|
// Add your office/home IP here for production admin access
|
||||||
|
|||||||
Reference in New Issue
Block a user