ThatGuyJack/nginx-proxy-manager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2025-10-31 07:43:33 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,121 Commits 12 Branches 78 Tags
215083f6cfba70ca6190367ec3d6e4a6791b0cbb
Commit Graph

92 Commits

Author SHA1 Message Date
Jamie Curnow
215083f6cf Certificates Renewal + SSE 
- Certificate renewal is just a re-request as it's forced already
- Rejig the routes for readability
- Added Server Side Events so that the UI would invalidate the
cache when changes happen on the backend, such as certs being
provided or failing
- Added a SSE Token, which has the same shelf life as normal token
but can't be used interchangeably. The reason for this is, the
SSE endpoint needs a token for auth as a Query param, so it would
be stored in log files. If someone where to get a hold of that,
it's pretty useless as it can't be used to change anything, only
to listen for events until it expires
- Added test endpoint for SSE testing only availabe in debug mode
 2023-03-07 16:42:26 +10:00
Jamie Curnow
0244187c29 Improved pdns dev config 2023-03-05 22:36:14 +10:00
Jamie Curnow
e433bdaeec Fix for pdns startup 2023-02-26 01:17:34 +10:00
Jamie Curnow
5f27b9243f Use json log format in ci 2023-02-25 22:58:38 +10:00
Jamie Curnow
6b7ae48570 Fixes for start-dev and optimisations 2023-02-25 22:52:42 +10:00
Jamie Curnow
ecbc55f318 Updated to latest s6-overlay 2023-02-24 18:31:46 +10:00
Jamie Curnow
80315bd50e Fix hot reloading backend with new updates to Task 2023-02-19 15:11:22 +10:00
Jamie Curnow
5e5f0de0e2 - Added upstream objects 
- Renamed host templates to nginx templates
- Generate upstream templates
- Better nginx error reporting when reloading
- Use tparse for golang test reporting
 2023-01-04 15:53:52 +10:00
Jamie Curnow
3c0af95468 Fixes 2022-07-14 21:53:11 +10:00
Jamie Curnow
e4a97d4813 Use node 16 2022-05-22 23:54:40 +10:00
Jamie Curnow
2110ecc382 Moved v3 code from NginxProxyManager/nginx-proxy-manager-3 to NginxProxyManager/nginx-proxy-manager 2022-05-12 08:47:31 +10:00
Omer Cohen
ac25171420 Update resolvers.conf to break dns cache 
By default, nginx caches answers using the TTL value of a response.
In a dynamic environment containers can get recreated with new IPs,
reducing the validity of the cache allows refreshing these IPs

https://nginx.org/en/docs/http/ngx_http_core_module.html#resolver
 2022-02-16 09:31:56 +02:00
Jamie Curnow
5edb16f36e Fix failing pip installs, downgrade setuptools 2022-01-17 21:46:26 +10:00
Jamie Curnow
818b9595aa Use renamed nginx-full docker images 2022-01-11 08:57:24 +10:00
Jamie Curnow
c78f641e85 Revert #1614 
as it breaks some existing services
 2022-01-11 08:54:40 +10:00
jc21
7e451bce0b Merge pull request #1688 from jlesage/resolvers-fix 
Fixed generation of resolvers.conf.
 2022-01-02 22:05:32 +10:00
jc21
b9ef11e8bf Merge pull request #1614 from the1ts/feature/proxy-header-additions 
Feature: Add two new headers to proxy.conf
 2022-01-02 16:11:50 +10:00
Jocelyn Le Sage
849bdcda7b Fixed generation of resolvers.conf. 
This fixes scenarios where `resolv.conf` generated by dhcpcd has a nameserver with `%interface` appended to its IPv6 address.
For example, a line like this must be properly handled:
nameserver fe80::7747:4aff:fe9a:8cb1%br0
 2021-12-26 21:49:55 -05:00
Jocelyn Le Sage
5aae8cd0e3 Fixed the access log path to match the HTTP one. This also fixes its handling by logrotate. 2021-12-26 20:56:42 -05:00
Paul Mansfield
3dfe23836c Add two new headers to proxy.conf 
Fixes #1609. Adding both  X-Forwarded-Host  and X-Forwarded-Port, this is vital for some services behind a proxy (used to allow creation of absolute links in html). I've had to include at least the Host version in the past for jenkins and nexus.
Been running locally for 24 hours, does not appear to break any of my 15+ services currently running behind NPM would allow people to host those services without the need for advanced configuration
 2021-11-29 13:48:39 +00:00
chaptergy
1f879f67a9 Reverts back to proxy_pass without variables 2021-11-09 13:57:39 +01:00
Julian Reinhardt
3d80759a21 Renames the $upstream variables and does not append $request_ui if capture group exists in location 2021-11-04 10:08:15 +01:00
Julian Reinhardt
4ada0feae3 Removes swagger container and adds exposed port for DB in dev env 2021-11-02 11:33:22 +01:00
Julian Reinhardt
ca59e585d8 Uses variable in proxy_pass for normal proxy hosts 2021-10-25 14:58:02 +02:00
chaptergy
f63441921f Sets the cert chain to prefer ISRG Root X1 2021-10-12 16:11:47 +02:00
Jamie Curnow
5e9ff4d2bf Add healthcheck back for ci containers 2021-08-23 09:29:11 +10:00
jc21
daa71764b6 Merge pull request #1338 from bmbvenom/patch-1 
remove dummy cert references to Nginx Proxy Manager
 2021-08-23 08:52:01 +10:00
Jamie Curnow
6a6c2ef192 Remove healthchecks and mention how to optin to them in docs 2021-08-23 08:50:07 +10:00
bmbvenom
320315956d remove dummy cert references to Nginx Proxy Manager 
Based on this issue: https://github.com/jc21/nginx-proxy-manager/issues/1024
 2021-08-21 22:37:14 -07:00
Jamie Curnow
62eb3fcd85 Updated docker base image location 2021-08-17 11:28:30 +10:00
jc21
ab40e4e2cf Merge pull request #1036 from BjoernAkAManf/master 
Allows hostname instead of ip for streams
 2021-08-16 13:40:40 +10:00
David Dosoudil
b1ceda3af4 Update letsencrypt.ini to support ECDSA keys 
Since we have newer certbot available, it's time to support more modern and safer ECDSA keys instead of RSA.
 2021-08-07 20:05:53 +10:00
chaptergy
d34691152c Fixes renewal unused http certificates 2021-08-04 14:07:53 +02:00
chaptergy
cea80b482e Fixes certificate renewal for dns challenges 2021-08-04 13:47:44 +02:00
Jamie Curnow
f2acb9e150 Tweaks to s6 scripts 2021-07-25 21:09:02 +10:00
chaptergy
fbae107c04 Changes owner of logs to root on every container start 2021-07-23 09:11:43 +02:00
jc21
9458cfbd1a Merge pull request #1229 from demize/auth_request-fix 
Disable auth_request in letsencrypt-acme-challenge.conf
 2021-07-18 21:54:59 +10:00
jc21
e91019feb9 Merge pull request #1140 from jc21/adds-logrotation 
Adds logrotation
 2021-07-12 07:54:02 +10:00
demize
4b2c0115db Add to letsencrypt-acme-challenge.conf to allow for ACME challenges on proxy hosts using auth_requests 2021-07-10 15:02:09 -04:00
chaptergy
b7b150a979 Run logrotation binary from program 2021-06-29 21:18:29 +02:00
chaptergy
bd3a13b2a5 Also rotate other logs 2021-06-18 10:43:56 +02:00
chaptergy
289d179142 Adds logrotate 2021-06-18 09:38:48 +02:00
chaptergy
deca493912 Splits access and error logs for each host 2021-06-18 09:38:48 +02:00
chaptergy
d16bf7d6c0 Adds explicit names to dev containers 2021-06-18 09:38:48 +02:00
Daniel Sörlöv
3e744b6b2d Update ssl-ciphers.conf 
Removing support (by default) for all the unsecure protocols. This should be the default and if needed additional support can be configured. As this is a security feature it should be aligned with a moderate policy. This is updated using the latest recomendation as found on https://ssl-config.mozilla.org/#server=nginx&version=1.17.7&config=intermediate&openssl=1.1.1d&guideline=5.6
 2021-06-17 15:17:13 +02:00
chaptergy
df5836e573 Sets real_ip ranges to local network only 2021-06-07 08:30:39 +02:00
Jamie Curnow
717105f243 Revert installing certbot. This is handled by base image jc21/nginx-full now 
Update path of certbot, and use the pip instead
 2021-05-07 13:49:31 +10:00
Jamie Curnow
a02d4ec46f Use certbot from pip instead of apt 2021-05-06 19:10:40 +10:00
Jamie Curnow
655477316b Version bump, contributors added, apt tweak 2021-05-06 11:32:54 +10:00
Jamie Curnow
f2f653e345 Remove platform specific determination 2021-04-29 11:19:59 +10:00