♻️: refactor allowlist

roles/nginx/templates/vhosts/btf.mateu.be.conf.j2

@@ -1,4 +1,3 @@
-{% set allowed_ips=['10.233.212.2/32','10.233.212.64/27', '2a01:e0a:9bd:2811::/64', '2a01:e0a:9bd:2810::/64', '2a01:e0a:fc:ebc0::/64', '2a01:cb00:8a0a:b700::/64', '2a01:e0a:d19:ef90::/64', '2001:910:13c8::/48', '2a01:e0a:bde:d350::/64', '2a01:cb00:f55:2d00::/64'] -%}
 server {
 {% include './templates/header.conf.j2' %}
 
@@ -6,10 +5,6 @@ server {
 		root /net/;
 		fancyindex on;
 		fancyindex_exact_size off;
-		{% for allowed_ip in allowed_ips -%}
-		allow {{ allowed_ip }};
-		{% endfor -%}
-		deny all;
 	}
 }
 

roles/nginx/templates/vhosts/garage.mateu.be.conf.j2

@@ -2,7 +2,7 @@ server {
 {% include './templates/header.conf.j2' %}
 
 	location / {
-		proxy_pass http://s3_backend_{{ item.split('.')|join('_') }};
+		proxy_pass http://s3_backend_{{ item.host.split('.')|join('_') }};
 		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 		proxy_set_header Host $host;
 		# Disable buffering to a temporary file.
@@ -10,7 +10,7 @@ server {
 	}
 }
 
-upstream s3_backend_{{ item.split('.')|join('_') }} {
+upstream s3_backend_{{ item.host.split('.')|join('_') }} {
 	# If you have a garage instance locally.
 	server [::1]:3900;
 }

roles/nginx/templates/vhosts/web.garage.mateu.be.conf.j2

@@ -2,13 +2,13 @@ server {
 {% include './templates/header.conf.j2' %}
 
 	location / {
-		proxy_pass http://web_backend_{{ item.split('.')|join('_') }};
+		proxy_pass http://web_backend_{{ item.host.split('.')|join('_') }};
 		proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 		proxy_set_header Host $host;
 	}
 }
 
-upstream web_backend_{{ item.split('.')|join('_') }} {
+upstream web_backend_{{ item.host.split('.')|join('_') }} {
 	# If you have a garage instance locally.
 	server [::1]:3902;
 }