Floke/Brancheneinstufung2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[30388f42] Infrastructure Hardening: Repaired CE/Connector DB schema, fixed frontend styling build, implemented robust echo shield in worker v2.1.1, and integrated Lead Engine into gateway.

Browse Source
This commit is contained in:
Floke
2026-03-07 14:08:42 +00:00
parent efcaa57cf0
commit ae2303b733
404 changed files with 24100 additions and 13301 deletions
Download Patch File Download Diff File Expand all files Collapse all files

218
nginx-proxy.conf
View File

@@ -34,58 +34,58 @@ http {
proxy_set_header X-Real-IP $remote_addr;
}
location /b2b/ {
# Der Trailing Slash am Ende ist wichtig!
proxy_pass http://b2b-app:3002/;
proxy_set_header Host $host;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
# location /b2b/ {
# # Der Trailing Slash am Ende ist wichtig!
# proxy_pass http://b2b-assistant:3002/;
# proxy_set_header Host $host;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# Explicit timeouts for this location
proxy_read_timeout 1200s;
proxy_connect_timeout 1200s;
proxy_send_timeout 1200s;
}
# # Explicit timeouts for this location
# proxy_read_timeout 1200s;
# proxy_connect_timeout 1200s;
# proxy_send_timeout 1200s;
# }
location /market/ {
# Der Trailing Slash am Ende ist wichtig!
proxy_pass http://market-frontend:80/;
proxy_set_header Host $host;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
# location /market/ {
# # Der Trailing Slash am Ende ist wichtig!
# proxy_pass http://market-frontend:80/;
# proxy_set_header Host $host;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# Explicit timeouts for this location
proxy_read_timeout 1200s;
proxy_connect_timeout 1200s;
proxy_send_timeout 1200s;
}
# # Explicit timeouts for this location
# proxy_read_timeout 1200s;
# proxy_connect_timeout 1200s;
# proxy_send_timeout 1200s;
# }
location /gtm/ {
# Der Trailing Slash am Ende ist wichtig!
proxy_pass http://gtm-app:3005/;
proxy_set_header Host $host;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
# location /gtm/ {
# # Der Trailing Slash am Ende ist wichtig!
# proxy_pass http://gtm-app:3005/;
# proxy_set_header Host $host;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# Explicit timeouts for this location
proxy_read_timeout 1200s;
proxy_connect_timeout 1200s;
proxy_send_timeout 1200s;
}
# # Explicit timeouts for this location
# proxy_read_timeout 1200s;
# proxy_connect_timeout 1200s;
# proxy_send_timeout 1200s;
# }
location /content/ {
# Content Engine
# Der Trailing Slash am Ende ist wichtig!
proxy_pass http://content-app:3006/;
proxy_set_header Host $host;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
# location /content/ {
# # Content Engine
# # Der Trailing Slash am Ende ist wichtig!
# proxy_pass http://content-app:3006/;
# proxy_set_header Host $host;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# Explicit timeouts for this location
proxy_read_timeout 1200s;
proxy_connect_timeout 1200s;
proxy_send_timeout 1200s;
}
# # Explicit timeouts for this location
# proxy_read_timeout 1200s;
# proxy_connect_timeout 1200s;
# proxy_send_timeout 1200s;
# }
location /ce/ {
# Company Explorer (Robotics Edition)
@@ -102,82 +102,96 @@ http {
proxy_send_timeout 1200s;
}
location /ca/ {
# Competitor Analysis Agent
# Der Trailing Slash am Ende ist wichtig!
proxy_pass http://competitor-analysis:8000/;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
# location /ca/ {
# # Competitor Analysis Agent
# # Der Trailing Slash am Ende ist wichtig!
# proxy_pass http://competitor-analysis:8000/;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# Explicit timeouts
proxy_read_timeout 1200s;
proxy_connect_timeout 1200s;
proxy_send_timeout 1200s;
}
location /tr/ {
# Transcription Tool (Meeting Assistant)
# KEIN Trailing Slash, damit der /tr/ Pfad erhalten bleibt!
proxy_pass http://transcription-app:8001;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
# # Explicit timeouts
# proxy_read_timeout 1200s;
# proxy_connect_timeout 1200s;
# proxy_send_timeout 1200s;
# }
# location /tr/ {
# # Transcription Tool (Meeting Assistant)
# # KEIN Trailing Slash, damit der /tr/ Pfad erhalten bleibt!
# proxy_pass http://transcription-app:8001;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# Increase limit for large MP3 uploads
client_max_body_size 500M;
# # Increase limit for large MP3 uploads
# client_max_body_size 500M;
# Explicit timeouts
proxy_read_timeout 1800s;
proxy_connect_timeout 1800s;
proxy_send_timeout 1800s;
}
# # Explicit timeouts
# proxy_read_timeout 1800s;
# proxy_connect_timeout 1800s;
# proxy_send_timeout 1800s;
# }
location ~ ^/heatmap/api/(.*)$ {
proxy_pass http://heatmap-backend:8000/api/$1$is_args$args;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
# location ~ ^/heatmap/api/(.*)$ {
# proxy_pass http://heatmap-backend:8000/api/$1$is_args$args;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# proxy_set_header X-Forwarded-Proto $scheme;
# }
location /heatmap/ {
# Heatmap Tool
proxy_pass http://heatmap-frontend:5173;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
# location /heatmap/ {
# # Heatmap Tool
# proxy_pass http://heatmap-frontend:5173;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# }
location /lead/ {
# Lead Engine (TradingTwins)
# Proxying external service on host
proxy_pass http://192.168.178.6:8501/;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
# location /lead/ {
# # Lead Engine (TradingTwins)
# proxy_pass http://lead-engine:8501/;
# proxy_set_header Host $host;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
# Websocket support for Streamlit
proxy_http_version 1.1;
# # Websocket support for Streamlit
# proxy_http_version 1.1;
# Explicit timeouts
proxy_read_timeout 86400; # Long timeout for stream
# # Explicit timeouts
# proxy_read_timeout 86400; # Long timeout for stream
# }
location /feedback/ {
# Public endpoint for Teams Feedback actions
auth_basic off; # Must be public for external links
proxy_pass http://lead-engine:8004/;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
}
location /connector/ {
# SuperOffice Connector Webhook
# Disable Basic Auth for Webhooks as SO cannot provide it easily
# SuperOffice Connector Webhook & Dashboard
auth_basic off;
# Forward to FastAPI app
# Trailing Slash STRIPS the /connector/ prefix!
# So /connector/dashboard -> /dashboard
proxy_pass http://connector-superoffice:8000/;
# Standard Proxy Headers
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
# Websocket Support (just in case)
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
}
}