Zum Inhalt

xynap Documentation

Uebersicht

Architektur-Uebersicht¶

Systemarchitektur¶

Internet → Hetzner Network (MAC-filtered)
  → br0 (bridge, MAC 10:7c:61:4f:28:62)
    → Host services (Docker Stack auf 46.4.96.105)
      → Traefik v3.0 (Reverse Proxy + CrowdSec + Let's Encrypt)
        → auth-service (SSO, ForwardAuth)
        → platform-api + platform-ui (Hosting Panel)
        → open-webui, ollama, whisper, piper-tts, libretranslate
        → ai-agent, status-page, searxng, qdrant
        → sip-agent, comm-hub (VoIP/WebRTC)
        → mariadb, redis, phpmyadmin
        → hosting-webserver, hosting-php84, hosting-sftp
        → hosting-postfix, hosting-dovecot, hosting-rspamd, hosting-roundcube
    → KVM VMs (geroutete Public IPs via br0)
      → ansitel (46.4.96.150) - Ansitel PBX

Verzeichnisstruktur¶

Produktionspfade¶

Pfad	Zweck
`/etc/xynap/stack/docker-compose.yml`	Production Compose — alle Services
`/etc/xynap/traefik/`	Traefik Config (dynamic routes, TLS)
`/etc/xynap/platform/`	Platform Config (backend.env, infrastructure.json)
`/usr/local/xynap/platform/backend/`	Platform API Source (FastAPI)
`/usr/local/xynap/platform/frontend/`	Platform UI Source (Vue 3)
`/usr/local/xynap/comm-hub/`	Communication Hub
`/usr/local/xynap/voicebot/`	FreeSwitch + AI Brain
`/usr/local/xynap/auth-service/`	SSO Auth-Service
`/var/lib/xynap/`	Persistente Daten (customers, mail, backups)

Home-Verzeichnis (`/home/admin/`)¶

Pfad	Zweck
`installer/`	KVM Host Setup Scripts
`scripts/`	Network Safety Tools, Utilities
`config/`	Referenz-Configs
`docs/`	Dokumentation, Plaene
`domain-ctl/`	PHP CLI fuer Hetzner DNS

Applikations-Module¶

Die Platform API ist modular aufgebaut:

Core-Module (in `app/core/`)¶

Modul	Endpoints	Beschreibung
auth	30+	JWT, TOTP, OAuth2, Telegram 2FA
users	8	Benutzerverwaltung, Rollen
customers	6	Kundenverwaltung
domains	12	Domain-CRUD, DNS Records, Verify
dns-providers	7	Provider-CRUD, Test, Zones
billing	4	Rechnungen, Plaene
tickets	6	Support-Tickets
monitoring	4	System-Health, Container
backups	7	Backup-Schedules, Trigger
ssl	3	ACME, Traefik-Sync
notifications	3	App/Email/Telegram
workflows	8	Workflow-Engine
security	4	CrowdSec Integration

Feature-Module (in `app/modules/`)¶

Modul	Endpoints	Beschreibung
hosting	9	Web-Hosting Sites, Databases
mail	10	Mailboxen, Aliase, DKIM
sip	15+	SIP Trunks, Extensions, Ring Groups
coder	4	AI Coding Agent