Actualizar config.json para TCP passthrough de agentes
All checks were successful
deploy-meshcentral / deploy (push) Successful in 12s
All checks were successful
deploy-meshcentral / deploy (push) Successful in 12s
- Agregar ambos dominios al certificado SSL (APP_DOMAIN y MESH_AGENTS_DOMAIN) - Configurar tlsPort: 443 para que MeshCentral escuche HTTPS - Cambiar TLSOffload a false para que MeshCentral maneje su propio SSL - Actualizar certUrl para apuntar al dominio de agentes - Agregar configuraciones adicionales: minify, localSessionRecording, allowedOrigin - Eliminar variable MESH_PORT no utilizada - Mejorar mensajes de deployment
This commit is contained in:
@@ -11,7 +11,6 @@ jobs:
|
|||||||
APP_NAME: ${{ vars.APP_NAME }}
|
APP_NAME: ${{ vars.APP_NAME }}
|
||||||
APP_DOMAIN: ${{ vars.APP_DOMAIN }}
|
APP_DOMAIN: ${{ vars.APP_DOMAIN }}
|
||||||
MESH_AGENTS_DOMAIN: ${{ vars.MESH_AGENTS_DOMAIN }}
|
MESH_AGENTS_DOMAIN: ${{ vars.MESH_AGENTS_DOMAIN }}
|
||||||
MESH_PORT: ${{ vars.MESH_PORT }}
|
|
||||||
# Authentik OIDC configuration
|
# Authentik OIDC configuration
|
||||||
AUTHENTIK_ISSUER: ${{ vars.AUTHENTIK_ISSUER }}
|
AUTHENTIK_ISSUER: ${{ vars.AUTHENTIK_ISSUER }}
|
||||||
AUTHENTIK_ISSUER_INTERNAL: ${{ vars.AUTHENTIK_ISSUER_INTERNAL }}
|
AUTHENTIK_ISSUER_INTERNAL: ${{ vars.AUTHENTIK_ISSUER_INTERNAL }}
|
||||||
@@ -24,6 +23,7 @@ jobs:
|
|||||||
run: |
|
run: |
|
||||||
echo "ℹ️ Deploying MeshCentral"
|
echo "ℹ️ Deploying MeshCentral"
|
||||||
echo " Domain: ${{ vars.APP_DOMAIN }}"
|
echo " Domain: ${{ vars.APP_DOMAIN }}"
|
||||||
|
echo " Agents Domain: ${{ vars.MESH_AGENTS_DOMAIN }}"
|
||||||
echo " Container: ${{ vars.APP_NAME }}"
|
echo " Container: ${{ vars.APP_NAME }}"
|
||||||
echo " Network: principal"
|
echo " Network: principal"
|
||||||
|
|
||||||
@@ -42,13 +42,18 @@ jobs:
|
|||||||
run: |
|
run: |
|
||||||
tee /srv/meshcentral/data/config.json > /dev/null <<'EOF'
|
tee /srv/meshcentral/data/config.json > /dev/null <<'EOF'
|
||||||
{
|
{
|
||||||
|
"$schema": "https://raw.githubusercontent.com/Ylianst/MeshCentral/master/meshcentral-config-schema.json",
|
||||||
"settings": {
|
"settings": {
|
||||||
"cert": "${{ vars.APP_DOMAIN }}",
|
"plugins": {
|
||||||
"port": 80,
|
"enabled": false
|
||||||
|
},
|
||||||
|
"cert": "${{ vars.APP_DOMAIN }},${{ vars.MESH_AGENTS_DOMAIN }}",
|
||||||
|
"port": 81,
|
||||||
"aliasPort": 443,
|
"aliasPort": 443,
|
||||||
"redirPort": 80,
|
"redirPort": 81,
|
||||||
|
"tlsPort": 443,
|
||||||
"AgentPong": 300,
|
"AgentPong": 300,
|
||||||
"TlsOffload": true,
|
"TLSOffload": false,
|
||||||
"SelfUpdate": false,
|
"SelfUpdate": false,
|
||||||
"AllowFraming": false,
|
"AllowFraming": false,
|
||||||
"WebRTC": true,
|
"WebRTC": true,
|
||||||
@@ -61,7 +66,10 @@ jobs:
|
|||||||
"title": "MeshCentral - Nucleo Rio Frio",
|
"title": "MeshCentral - Nucleo Rio Frio",
|
||||||
"title2": "Remote Management Platform",
|
"title2": "Remote Management Platform",
|
||||||
"newAccounts": false,
|
"newAccounts": false,
|
||||||
"certUrl": "${{ vars.APP_DOMAIN }}",
|
"minify": false,
|
||||||
|
"localSessionRecording": true,
|
||||||
|
"allowedOrigin": false,
|
||||||
|
"certUrl": "https://${{ vars.MESH_AGENTS_DOMAIN }}:443",
|
||||||
"geoLocation": true,
|
"geoLocation": true,
|
||||||
"cookieIpCheck": false,
|
"cookieIpCheck": false,
|
||||||
"allowLoginToken": true,
|
"allowLoginToken": true,
|
||||||
@@ -108,4 +116,5 @@ jobs:
|
|||||||
- name: Deployment complete
|
- name: Deployment complete
|
||||||
run: |
|
run: |
|
||||||
echo "✅ MeshCentral deployed successfully"
|
echo "✅ MeshCentral deployed successfully"
|
||||||
echo " Access at: https://${{ vars.APP_DOMAIN }}"
|
echo " Web UI: https://${{ vars.APP_DOMAIN }}"
|
||||||
|
echo " Agents: https://${{ vars.MESH_AGENTS_DOMAIN }}:443"
|
||||||
|
|||||||
Reference in New Issue
Block a user