Fabio/nginx-proxy-manager
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
1755 commits 8 branches 74 tags 26 MiB
Commit graph

151 commits

Author SHA1 Message Date
Zoey
4bfb9b799a
merge upstream and small changes 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-21 23:08:52 +01:00
Zoey
b31aa14bc4
fix logrotate 2024-01-15 00:58:05 +01:00
Zoey
d63020e1a5
fix multi instances 2024-01-14 00:52:41 +01:00
Zoey
c5f74dc2fd
fix NPM_CERT_ID deprecation check 2024-01-14 00:40:05 +01:00
Zoey
a6797c9f6b
add goaccess 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-14 00:08:36 +01:00
Zoey
f96a4d32a3
remove route53 until https://github.com/certbot/certbot/pull/5781 or similar is merged 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-12 20:30:18 +01:00
Zoey
aa01a85550
fix http challenge 2024-01-12 17:35:34 +01:00
Zoey
3d7877a4a0
merge upstream 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-11 22:27:26 +01:00
Zoey
16ff4c4db9
add php 8.3 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-11 20:56:01 +01:00
Zoey
d1c5808176
improve custom locations 2024-01-02 03:08:16 +01:00
Zoey
58d28b9867
remove domain_names.sort() and trailing spaces 2024-01-01 23:56:28 +01:00
Zoey2936
9baaef45dd
dep update and some small fixes 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-01 21:49:24 +01:00
renovate[bot]
36506eb2e3
dep updates/allow all custom confs 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-12-03 18:07:14 +01:00
Zoey
ca02815920
make crs before/after rules editable 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-11-26 15:03:20 +01:00
Zoey
334127494e
fix Alt-Svc header 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-11-12 15:11:16 +01:00
Zoey
6173d545c8
fix filename 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-11-12 14:02:04 +01:00
Zoey
ef336f6f37
fix default.conf/quic/http3 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-11-12 12:37:06 +01:00
Zoey
7a696a326d
fix file move 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-11-11 22:57:58 +01:00
Zoey
6548a7aea6
fix stream/allow editing modsec conf/readme changes/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-11-11 19:04:55 +01:00
Zoey
fa43fc2daa
fix websockets 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-10-28 22:18:04 +02:00
renovate[bot]
8987ff9c6d
dep updates/header changes/tls changes 
Signed-off-by: Zoey <zoey@z0ey.de>

- dep updates
- upodate nginx/certbot
- improve headers
- change NPM to NPMplus in launch.sh
- when using https backend, only TLSv1 to TLSv1.3 is now allowed, whith secure ciphers
 2023-10-25 22:54:11 +02:00
Zoey
4a4174b7ab remove socks before launching 2023-10-10 21:28:48 +02:00
Zoey
4f32a8b953 fix security_headers again 2023-10-10 21:10:19 +02:00
Zoey
efcca74d67 fix security headers and sockets 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-10-10 19:55:42 +02:00
Zoey
dec9dc990f renewer certbot certs after launch/load env from file/listen on socket/disable http in AIO mode 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-10-10 15:52:14 +02:00
Zoey
fb0bb721f7 rebrand to NPMplus/improve security headers/upsteam changes/dockerlint 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-10-09 20:32:37 +02:00
Zoey
e7b07fc96e
fix #412 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-09-26 22:08:21 +02:00
GitHub
55b173a744
fix certbot run on launch/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>

Update dependency jsonwebtoken to v9.0.2
Update dependency liquidjs to v10.9.2
Update dependency jquery to v3.7.1
 2023-09-02 13:04:35 +02:00
renovate[bot]
f9971aa9d5
remove wait/dep updates 
Update zoeyvid/nginx-quic Docker tag to v183
Update caddy Docker tag to v2.7.4

Update dependency archiver to v5.3.2

Update python Docker tag to v3.11.5

Update dependency eslint to v8.48.0

remove wait

Signed-off-by: Zoey <zoey@z0ey.de>

Update dependency @babel/core to v7.22.11

Update dependency liquidjs to v10.9.1

Update dependency liquidjs to v10.9.0

Update dependency archiver to v6
 2023-08-26 13:14:13 +02:00
renovate[bot]
c3f47eec65
move php sockets/fix healthcheck/update caddy 
Update caddy Docker tag to v2.7.2

Signed-off-by: Zoey <zoey@z0ey.de>
 2023-08-07 13:31:52 +02:00
Zoey
f3775aad21
merge upstream 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-08-02 15:02:30 +02:00
renovate[bot]
66bfcf8f6c
improve many things/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-08-02 10:26:01 +02:00
renovate[bot]
c6ecb61c9b
dep updates/enable ssl_dyn_rec_enable/fix nginx in background/remove tempwrite 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-07-08 20:22:17 +02:00
renovate[bot]
cd058f1382
dep updates/nginxbeautifier/fix quic/http3 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-06-15 22:27:17 +02:00
Zoey
677b30d25e
add new darkmode/enable hide_server_tokens/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
Signed-off-by: ƬHE ЯAW ☣ <daraw665@gmail.com>
Co-Authored-By: ƬHE ЯAW ☣ <raw@dopehosting.net>
 2023-05-29 21:00:49 +02:00
Zoey
7e6612467f
add modsec 
Signed-off-by: Zoey <zoey@z0ey.de>

Update Dockerfile
 2023-05-29 20:45:08 +02:00
Zoey
73842be397
add crowdsec 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-23 21:22:06 +02:00
Zoey
a997eeecf0
merge upstream/dep updates 
Update dependency jquery to v3.7.0
Update zoeyvid/nginx-quic Docker tag to v120
Update zoeyvid/nginx-quic Docker tag to v121
Update zoeyvid/nginx-quic Docker tag to v122
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-13 20:59:01 +02:00
Zoey
57abc84f4a
"new" versioning system/dep updates 
Update zoeyvid/nginx-quic Docker tag to v114
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-08 23:01:56 +02:00
Zoey
c586da6418
improve readme/compose-files/dep-updates 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-04 22:39:48 +02:00
Zoey
9f53ae7593
add caddy as http option to support h2c for redirect/dep updates/some fixes 
Update zoeyvid/nginx-quic Docker tag to v113
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-01 10:25:50 +02:00
Zoey
b2e6cbcb8d
added option to disable http 2023-04-30 23:39:07 +02:00
Zoey
12c631ff3b
allow to disable ipv6/custom ip bindings/custom backend port binding 2023-04-30 20:26:00 +02:00
renovate[bot]
24db873c34
fix access list/dep updates 
Update dependency @babel/core to v7.21.5
 2023-04-30 15:04:07 +02:00
Zoey
9ca59b9a38
allow to run as non-root (#246) 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-24 23:12:44 +02:00
Zoey
0d9da2b72a
merge upstream 2023-04-06 19:07:38 +02:00
Zoey
66b6cca78e
remove zope again and switch to other dnspod plugin 2023-04-06 16:48:40 +02:00
renovate[bot]
80d49cd2a2
dep updates/fix quic 
Update zoeyvid/nginx-quic Docker tag to v103
Update zoeyvid/nginx-quic Docker tag to v101
Update zoeyvid/nginx-quic Docker tag to v99
Update zoeyvid/nginx-quic Docker tag to v97
Update zoeyvid/nginx-quic Docker tag to v96
Update dependency @babel/core to v7.21.4
Update dependency nodemon to v2.0.22
Update dependency eslint to v8.37.0
Update alpine Docker tag to v3.17.3
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-04 11:47:50 +02:00
Zoey
256a068791
merge upstream 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-22 12:30:58 +01:00
Zoey
4af50b7ef5
build everything inside dockerfile/add some scripts 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-18 03:14:56 +01:00
Zoey
7b8f819639
FULLCLEAN: also clean certbot 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-16 17:06:53 +01:00
Zoey
bdae896baf
rename ssl to tls/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
Update dependency sqlite3 to v5.1.6
Update dependency style-loader to v3.3.2
Update dependency @babel/core to v7.21.3
 2023-03-15 18:41:19 +01:00
Zoey
7c32b466f6
docker hub changes/disable 0-rtt/enable request limits 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-13 20:55:53 +01:00
Zoey
309e81747e
upstream changes (npm/nginx/dependencies) + add eslint 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-09 20:57:13 +01:00
Zoey
14c2253721
make image smaller + allow long passwd + dep updates + fix compression/misspellings 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-02-24 21:10:51 +01:00
Zoey
45895ac53e
enable ssl_early_data, default enable http2, option to enable brotli, fix shellcheck 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-26 18:01:25 +01:00
Zoey
e0be3a5ea3
allow to change dummycert 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-14 17:13:17 +01:00
Zoey
5a89e9e8e8
change paths and make quic be enabled sepperat 2023-01-06 18:06:49 +01:00
Zoey
c3f5d93acb
remove php7 & php8.0 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-06 16:30:26 +01:00
Zoey
6c56070a46
rebrand SSL to TLS 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-03 01:09:44 +01:00
Zoey
d7db5527d9
changes on ssl 
Signed-off-by: Zoey <zoey@z0ey.de>
 2022-12-31 21:24:54 +01:00
Zoey
920bce627a add php 
Signed-off-by: Zoey <zoey@z0ey.de>
 2022-12-27 22:44:01 +01:00
Zoey
19a304d9ce init 
Signed-off-by: Zoey <zoey@z0ey.de>
 2022-12-17 14:25:32 +01:00
jc21
bb0f4bfa62
v2.1.0 (#293) 
* Fix wrapping when too many hosts are shown (#207)

* Update npm packages, fixes CVE-2019-10757

* Revert some breaking packages

* Major overhaul

- Docker buildx support in CI
- Cypress API Testing in CI
- Restructured folder layout (insert clean face meme)
- Added Swagger documentation and validate API against that (to be completed)
- Use common base image for all supported archs, which includes updated nginx with ipv6 support
- Updated certbot and changes required for it
- Large amount of Hosts names will wrap in UI
- Updated packages for frontend
- Version bump 2.1.0

* Updated documentation

* Fix JWT expire time going crazy. Now set to 1day

* Backend JS formatting rules

* Remove v1 importer, I doubt anyone is using v1 anymore

* Added backend formatting rules and enforce them
in Jenkins builds

* Fix CI, doesn't need a tty

* Thanks bcrypt. Why can't you just be normal.

* Cleanup after syntax check

Co-authored-by: Marcelo Castagna <margaale@users.noreply.github.com>
 2020-02-19 15:55:06 +11:00
Russ
bf036cbb88 fix ipv6 resolver setup for nginx (#246) 2020-01-06 08:48:43 +10:00
jc21
0bc12f3bdf
Merge from develop v2.0.14 release (#196) 
* Selection of the ssl protocols/ciphers is done using the default server block. (#189)
* Fix wrap for tags (#195)
 2019-09-04 14:51:24 +10:00
Carl Mercier
31aa9c9644 Allow including custom nginx conf files (#178) 
* Allow including custom nginx conf files

Give advanced users more flexibility by allowing them to include custom config files at differents locations in the nginx configuration.

`/data/nginx/custom/root.conf`: Included at the very end of nginx.conf
`/data/nginx/custom/http.conf`: Included at the end of the main `http` block
`/data/nginx/custom/server_proxy.conf`: Included at the end of every proxy `server` block
`/data/nginx/custom/server_redirect.conf`: Included at the end of every redirection `server` block
`/data/nginx/custom/server_stream.conf`: Included at the end of every stream `server` block
`/data/nginx/custom/server_stream_tcp.conf`: Included at the end of every TCP stream `server` block
`/data/nginx/custom/server_stream_udp.conf`: Included at the end of every UDP stream `server` block

* Don't fail if file doesn't exist

* Advanced Nginx settings doc
 2019-08-09 11:19:42 +10:00
Paul Mansfield
ddbfdf6f6e Open up lets Encrypt acme challenge config (#165) 
Since Lets Encrypt don't publish IP ranges that their acme challenge service will be sourced from, we need to allow free access to this location special to override any IP ACLs added by Advanced Custom Nginx Configuration. Due to the way Nginx config is applied, this only applies to the regex and below, keeping the IP ACLs working for the rest of the website.
 2019-07-05 08:32:41 +10:00
OhHeyAlan
9e476e5b24 Only Secure TLS Ciphers & Protocols (#134) 
Disable insecure SSL/TLS ciphers & protocols. Only TLS_1.2 and TLS_1.3 should be enabled.
 2019-05-08 10:01:08 +10:00
Jamie Curnow
b49de0e23e Enable TLS 1.3 by default 2019-05-02 13:03:16 +10:00
Jamie Curnow
dce6423c85 Fixes #103 - Allow for longer domain names 2019-03-15 07:49:08 +10:00
jc21
133d66c2fe
Default Site customisation and new Settings space (#91) 2019-03-04 21:19:36 +10:00
Jamie Curnow
2a3d792591 Fixes #68 - HSTS is now part of the UI 2019-02-18 18:21:45 +10:00
Jamie Curnow
48f2bb4cd8 Fix some ip range stuff 2019-01-03 20:25:01 +10:00
Jamie Curnow
aa270925e9 Additional nginx config for real ip determination 2019-01-03 08:18:48 +10:00
Jamie Curnow
3836f7c40a Fetch ip ranges for CDN servers, Cloudfront and Cloudfare 2019-01-03 17:04:53 +10:00
Jamie Curnow
c97e6ada5b Support for upstream ssl proxy hosts 2018-12-12 09:47:12 +10:00
Jocelyn Le Sage
7f8b185e48 Revert "Use default ciphers for default ssl host to prevent confusing browser errors" 
This reverts commit f9876326c9.

This is to make sure the browser doesn't show a certificate warning (for a connection that will be dropped anyway) by breaking the SSL handshake early.
 2018-11-26 06:38:24 -05:00
Jamie Curnow
a73cbc7116 Whoops, stupid missing semicolon 2018-11-05 13:10:55 +10:00
Jamie Curnow
f9876326c9 Use default ciphers for default ssl host to prevent confusing browser errors 2018-11-05 11:53:46 +10:00
Jamie Curnow
0335370cfb Fixes #19 and also added debug output for dummy ssl generation 2018-11-05 10:58:22 +11:00
jc21
9b852f01e3
Merge pull request #23 from jlesage/default-https-site 
Added default HTTPs site.
 2018-11-05 09:36:29 +10:00
Jocelyn Le Sage
20fd185652 Added default HTTPs site. 2018-11-02 21:12:40 -04:00
Jamie Curnow
c826ed8c1f Fix proto forwarded header to industry standard 2018-10-25 08:51:43 +10:00
Jamie Curnow
eb391959aa Added resolvers auto generation in order for hostnames to work 2018-10-19 16:24:44 +10:00
Jamie Curnow
efa1424cad Fixes #11 - After creating keys the app needs to completely restart due to aggressive module caching 2018-09-12 11:14:06 +10:00
Jamie Curnow
aea34bea75 Fix 2018-08-23 14:49:59 +10:00
Jamie Curnow
c1938f949d Polish 2018-08-23 14:24:28 +10:00
Jamie Curnow
c543a1dc34 Finished importer, advanced nginx config for hosts, custom certs used in nginx templates 2018-08-22 14:31:03 +10:00
Jamie Curnow
8d925deeb0 Access polish, import v1 stsarted 2018-08-21 08:33:51 +10:00
Jamie Curnow
3a9fc8e2ea certificates work 2018-08-17 13:52:47 +10:00
Jamie Curnow
1c57ccdc87 Certificates ui section and permissions 2018-08-02 19:48:47 +10:00
Jamie Curnow
66e25e315b Audit Log items, backend stuff, help pages 2018-08-01 21:18:17 +10:00
Jamie Curnow
f9c003ad1f Path changes 2018-08-01 11:17:31 +10:00
Jamie Curnow
8a2996f651 Split out docs, better error handling when database config doesn't exist 2018-08-01 10:04:34 +10:00
Jamie Curnow
1a23907d28 Update config path to data path 2018-07-31 15:18:09 +10:00
Jamie Curnow
3970d2891f Docker build changes 2018-06-20 09:53:18 +10:00
Jamie Curnow
36896bcfc9 Bypass basic auth for letsencrypt acme requests, reload nginx after ssl renewals 2018-03-16 10:53:50 +10:00
Jamie Curnow
b324110c49 Trying something to fix the auto ssl renewal process 2018-03-16 10:32:35 +10:00
Jamie Curnow
b57d1e5a66 Added Stream forwarding support 2018-02-16 16:57:54 +10:00