dep updates/close #674 and parts of #673

Signed-off-by: Zoey <zoey@z0ey.de>
2025-08-02 15:33:32 +00:00 · 2024-02-28 12:24:24 +00:00
parent 2a5a6a4ee5
commit 9e39ddb26b
11 changed files with 23 additions and 20 deletions
--- a/2
+++ b/2
@@ -56,7 +56,7 @@ RUN apk upgrade --no-cache -a && \
    echo "#APPSEC_FAILURE_ACTION=deny # see https://github.com/crowdsecurity/lua-cs-bouncer/issues/63" | tee -a /src/crowdsec-nginx-bouncer/lua-mod/config_example.conf && \
    sed -i "s|BOUNCING_ON_TYPE=all|BOUNCING_ON_TYPE=ban|g" /src/crowdsec-nginx-bouncer/lua-mod/config_example.conf

-FROM zoeyvid/nginx-quic:261
+FROM zoeyvid/nginx-quic:262
 SHELL ["/bin/ash", "-eo", "pipefail", "-c"]

 ARG CRS_VER=v4.0.0
--- a/backend/package.json
+++ b/backend/package.json
@@ -6,12 +6,12 @@
  "dependencies": {
    "@apidevtools/json-schema-ref-parser": "11.1.0",
    "ajv": "6.12.6",
-    "archiver": "6.0.2",
+    "archiver": "7.0.0",
    "batchflow": "0.4.0",
    "bcrypt": "5.1.1",
    "body-parser": "1.20.2",
    "compression": "1.7.4",
-    "express": "4.18.2",
+    "express": "4.18.3",
    "express-fileupload": "1.4.3",
    "gravatar": "1.8.2",
    "jsonwebtoken": "9.0.2",
--- a/backend/templates/_brotli.conf
+++ b/backend/templates/_brotli.conf
@@ -1,4 +1,4 @@
-{% if http2_support -%}
+{% if http2_support == 1 or http2_support == true -%}
    # Enable Brotli
    include conf.d/include/brotli.conf;
-{% endif %}
+{% endif %}
--- a/backend/templates/_listen.conf
+++ b/backend/templates/_listen.conf
@@ -3,17 +3,18 @@
  listen 80;
  listen [::]:80;

-{% if certificate %}
+{% if certificate and certificate_id > 0 %}
  listen 443 ssl;
  listen [::]:443 ssl;
-{% if hsts_subdomains %}
+
  listen 443 quic;
  listen [::]:443 quic;

+{% if hsts_subdomains == 1 or hsts_subdomains == true %}
  more_set_headers 'Alt-Svc: h3=":443"; ma=86400';
-{% endif %}
-{% endif %}
-{% unless hsts_subdomains %}
+{% else %}
  more_clear_headers "Alt-Svc";
-{% endunless %}
+  http3 off;
+{% endif %}
+{% endif %}
  server_name {{ domain_names | join: " " }};
--- a/backend/templates/dead_host.conf
+++ b/backend/templates/dead_host.conf
@@ -1,6 +1,6 @@
 {% include "_header_comment.conf" %}

-{% if enabled %}
+{% if enabled == 1 or enabled == true %}
 server {
 {% include "_listen.conf" %}
 {% include "_certificates.conf" %}
@@ -11,7 +11,7 @@ server {
 {{ advanced_config }}
  include conf.d/include/acme-challenge.conf;
  include conf.d/include/block-exploits.conf;
-{% if use_default_location %}
+{% if use_default_location == 1 or use_default_location == true %}
  location / {
    include conf.d/include/acme-challenge.conf;
    root /html/404;
--- a/backend/templates/proxy_host.conf
+++ b/backend/templates/proxy_host.conf
@@ -1,6 +1,6 @@
 {% include "_header_comment.conf" %}

-{% if enabled %}
+{% if enabled == 1 or enabled == true %}
 server {
  set $forward_scheme {{ forward_scheme }};
  set $server         "{{ forward_host }}";
@@ -33,7 +33,7 @@ server {

 {{ advanced_config }}

-{% if use_default_location %}
+{% if use_default_location == 1 or use_default_location == true %}
  location / {
    include conf.d/include/acme-challenge.conf;

--- a/backend/templates/redirection_host.conf
+++ b/backend/templates/redirection_host.conf
@@ -1,6 +1,6 @@
 {% include "_header_comment.conf" %}

-{% if enabled %}
+{% if enabled == 1 or enabled == true %}
 server {
 {% include "_listen.conf" %}
 {% include "_certificates.conf" %}
@@ -11,7 +11,7 @@ server {
 {{ advanced_config }}
  include conf.d/include/acme-challenge.conf;
  include conf.d/include/block-exploits.conf;
-{% if use_default_location %}
+{% if use_default_location == 1 or use_default_location == true %}
  location / {
    include conf.d/include/acme-challenge.conf;
    {% if preserve_path == 1 or preserve_path == true %}
--- a/backend/templates/stream.conf
+++ b/backend/templates/stream.conf
@@ -2,7 +2,7 @@
 # {{ incoming_port }} TCP: {{ tcp_forwarding }} UDP: {{ udp_forwarding }}
 # ------------------------------------------------------------

-{% if enabled %}
+{% if enabled == 1 or enabled == true %}
 {% if tcp_forwarding == 1 or tcp_forwarding == true -%}
 server {
  listen {{ incoming_port }};
--- a/frontend/package.json
+++ b/frontend/package.json
@@ -4,7 +4,7 @@
  "description": "A beautiful interface for creating Nginx endpoints",
  "main": "js/index.js",
  "dependencies": {
-    "@babel/core": "7.23.9",
+    "@babel/core": "7.24.0",
    "babel-core": "6.26.3",
    "babel-loader": "8.3.0",
    "babel-preset-env": "1.7.0",
--- a/rootfs/etc/logrotate
+++ b/rootfs/etc/logrotate
@@ -6,6 +6,6 @@
        compress
        sharedscripts
        postrotate
-                nginx -s reload
+            if [ -f /usr/local/nginx/logs/nginx.pid ]; then nginx -s reload fi
        endscript
 }
--- a/rootfs/usr/local/bin/start.sh
+++ b/rootfs/usr/local/bin/start.sh
@@ -364,6 +364,8 @@ fi
 if [ "$LOGROTATE" = "true" ]; then
    apk add --no-cache logrotate
    sed -i "s|rotate [0-9]\+|rotate $LOGROTATIONS|g" /etc/logrotate
+    touch /data/nginx/access.log \
+          /data/nginx/stream.log
 elif [ "$FULLCLEAN" = "true" ]; then
    rm -vrf /data/etc/logrotate.status \
            /data/nginx/access.log \