7 Commits

Author	SHA1	Message	Date
João Pedro Toledo Goncalves	35138518b2	feat(script): add auto-heal for corrupt git repo	2026-01-27 09:11:30 -03:00
João Pedro Toledo Goncalves	9c4aee8c86	fix(script): improve regex to avoid matching proxy_ssl_server_name	2026-01-27 09:07:52 -03:00
João Pedro Toledo Goncalves	de93649846	feat: implement Zero-Touch deployment (internal git sync + dynamic config symlinks)	2026-01-26 20:00:22 -03:00
João Pedro	c184dd69ec	fix: refactor for Portainer GitOps compatibility (Dockerized configs + named volumes)	2026-01-26 17:46:38 -03:00
João Pedro	b7de67ad0f	feat: Implement Git Auto-Sync (Cron/Script)	2026-01-26 16:18:06 -03:00
João Pedro	3a5d73a485	feat(proxy): Implement Zero-Downtime Reload Strategy ... - Added scripts/reload.sh and reload.ps1 for safe configuration updates - Implemented 'nginx -t' validation before reload to prevent crashes - Leveraged 'nginx -s reload' for process-level Blue-Green updates - Updated documentation (README.md, GEMINI.md) with new usage instructions - Fixed nginx.conf to properly scope snippet includes - Restored missing SSL components (options-ssl-nginx.conf, dhparams) to enable local validation	2026-01-22 16:39:02 -03:00
João Pedro	cd1a164114	feat(infra): Full migration to containerized NGINX with WAF and Auto-SSL ... Major infrastructure upgrade implementing: 1. Architecture - Containerized NGINX with custom Alpine build (Brotli + Headers More) - ModSecurity WAF (OWASP CRS) as a sidecar/frontend service - Fail2ban service monitoring logs for bot/attack mitigation 2. SSL Automation - Integrated Certbot with custom daily validation scripts - Automatic 3-day expiry detection and renewal - Smart ACME challenge injection for all sites 3. Configuration - Migrated 28 site configs to modular structure (conf.d/) - Created reusable snippets (Rate Limiting, Security Maps, Caching) - Fixed deprecated HTTP/2 syntax and ModSecurity directives 4. Documentation - Added GEMINI.md with full architectural overview - Cleanup of legacy files	2026-01-22 13:14:18 -03:00