ThatGuyJack/nginx-proxy-manager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2025-08-03 07:53:39 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
1,258 Commits 11 Branches 78 Tags
677b30d25ea6fc4fb9a57d8f172835e37d626c83
Commit Graph

244 Commits

Author SHA1 Message Date
Zoey
677b30d25e add new darkmode/enable hide_server_tokens/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
Signed-off-by: ƬHE ЯAW ☣ <daraw665@gmail.com>
Co-Authored-By: ƬHE ЯAW ☣ <raw@dopehosting.net>
 2023-05-29 21:00:49 +02:00
Zoey
7e6612467f add modsec 
Signed-off-by: Zoey <zoey@z0ey.de>

Update Dockerfile
 2023-05-29 20:45:08 +02:00
Zoey
57abc84f4a "new" versioning system/dep updates 
Update zoeyvid/nginx-quic Docker tag to v114
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-08 23:01:56 +02:00
renovate[bot]
24db873c34 fix access list/dep updates 
Update dependency @babel/core to v7.21.5
 2023-04-30 15:04:07 +02:00
Zoey
9ca59b9a38 allow to run as non-root (#246) 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-24 23:12:44 +02:00
renovate[bot]
ec29d4ce8d dep updates/remove useless files/fix reachability test? 
Update zoeyvid/nginx-quic Docker tag to v110
Update zoeyvid/nginx-quic Docker tag to v109
Update zoeyvid/nginx-quic Docker tag to v107
Update dependency liquidjs to v10.7.1
Update dependency eslint to v8.38.0
remove empty folder
Delete Hosts.spec.js

Fix for SSL certificate error #2011 by @S-T-3-V-3
 - Keepalive, User Agent + Accept headers
 - Catch added for failed JSON parsing
 - More accurate errors displayed to user

Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-24 23:12:43 +02:00
Zoey
0d9da2b72a merge upstream 2023-04-06 19:07:38 +02:00
Zoey
395909c5cd Merge branch 'developo' into develop 2023-04-06 18:04:57 +02:00
renovate[bot]
80d49cd2a2 dep updates/fix quic 
Update zoeyvid/nginx-quic Docker tag to v103
Update zoeyvid/nginx-quic Docker tag to v101
Update zoeyvid/nginx-quic Docker tag to v99
Update zoeyvid/nginx-quic Docker tag to v97
Update zoeyvid/nginx-quic Docker tag to v96
Update dependency @babel/core to v7.21.4
Update dependency nodemon to v2.0.22
Update dependency eslint to v8.37.0
Update alpine Docker tag to v3.17.3
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-04 11:47:50 +02:00
Jamie Curnow
5d03ede100 Add test for creating a host 2023-03-30 12:44:28 +10:00
Zoey
256a068791 merge upstream 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-22 12:30:58 +01:00
Jamie Curnow
124cb18e17 Fix renewing certs because of permission errors 2023-03-22 13:40:36 +10:00
Jamie Curnow
77eb618758 Fix pip installs running as non-root user 2023-03-22 09:41:59 +10:00
Jamie Curnow
4fdc80be01 Fix logical error with keys and mysql config 2023-03-21 17:59:27 +10:00
Jamie Curnow
c3469de61b Linting fixes 2023-03-21 17:11:16 +10:00
Jamie Curnow
2a07445005 Refactor configuration 
- No longer use config npm package
- Prefer config from env vars, though still has support for config file
- No longer writes a config file for database config
- Writes keys to a new file in /data folder
- Removes a lot of cruft and improves config understanding
 2023-03-21 16:53:39 +10:00
Jamie Curnow
dad3e1da7c Adds support to run processes as a user/group, defined 
with PUID and PGID environment variables

- Detects if image is run with a user in docker command and fails if so
- Adds s6 prepare scripts for adding a 'npmuser'
- Split up and refactor the s6 prepare scripts
- Runs nginx and backend node as 'npmuser'
- Changes ownership of files required at startup
 2023-03-20 16:56:52 +10:00
Zoey
1d9c7b0570 Merge branch 'developo' into develop 2023-03-18 11:30:42 +01:00
Zoey
4af50b7ef5 build everything inside dockerfile/add some scripts 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-18 03:14:56 +01:00
Jamie Curnow
fccbde1371 fix linting 2023-03-17 14:23:12 +10:00
Jamie Curnow
fec36834f7 - Updated objection, knex, liquidjs, signale and sqlite3 packages 
- Changes for objection migration
- Moved common access template code to an include
- Fixed access rules configuration generation
 2023-03-17 14:18:51 +10:00
Jamie Curnow
00aeef75b6 Refactor nginx config functions, some don't need to report errors, save error'd config files as .err for debugging later 2023-03-17 11:34:27 +10:00
Jamie Curnow
b30fcb50c8 Args weren't being passed to htpasswd command, fixes #2692 2023-03-17 08:49:18 +10:00
Zoey
bdae896baf rename ssl to tls/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
Update dependency sqlite3 to v5.1.6
Update dependency style-loader to v3.3.2
Update dependency @babel/core to v7.21.3
 2023-03-15 18:41:19 +01:00
Zoey
7c32b466f6 docker hub changes/disable 0-rtt/enable request limits 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-13 20:55:53 +01:00
Zoey
309e81747e upstream changes (npm/nginx/dependencies) + add eslint 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-09 20:57:13 +01:00
jc21
09d1d3744c Merge pull request #2530 from jmerdich/jmerdich/fix-acl-edit-ssl 2023-03-08 21:08:52 +10:00
jc21
84e0b30f8d Merge pull request #2411 from plantysnake/fix-certbot-plugins 
Bugfix: Fix certbot plugin installation issues
 2023-03-08 20:40:15 +10:00
jc21
30076a0e66 Merge pull request #2635 from skarlcf/security/CVE-2023-23596 
Mitigate CVE-2023-23596
 2023-03-08 08:25:38 +10:00
jc21
42bd39163a Merge pull request #2638 from jlesage/case-insensitive-email-login 
Make sure to lowercase email address entered by the user during login.
 2023-03-08 08:25:09 +10:00
Kamil Skrzypinski
2ff66ee238 Add style required by linter 2023-03-07 17:15:03 +01:00
dependabot[bot]
7b48488c29 Bump express from 4.17.1 to 4.17.3 in /backend 
Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.17.3.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.1...4.17.3)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 10:49:22 +00:00
jc21
edba369ae8 Merge pull request #2497 from NginxProxyManager/dependabot/npm_and_yarn/backend/jsonwebtoken-9.0.0 
Bump jsonwebtoken from 8.5.1 to 9.0.0 in /backend
 2023-03-07 20:48:45 +10:00
jc21
b77d916bdd Merge pull request #2498 from NginxProxyManager/dependabot/npm_and_yarn/backend/liquidjs-10.0.0 
Bump liquidjs from 9.15.0 to 10.0.0 in /backend
 2023-03-07 20:48:36 +10:00
dependabot[bot]
e227f4177b Bump minimist from 1.2.5 to 1.2.8 in /backend 
Bumps [minimist](https://github.com/minimistjs/minimist) from 1.2.5 to 1.2.8.
- [Release notes](https://github.com/minimistjs/minimist/releases)
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](https://github.com/minimistjs/minimist/compare/v1.2.5...v1.2.8)

---
updated-dependencies:
- dependency-name: minimist
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:09 +00:00
dependabot[bot]
88fa7cdfff Bump liquidjs from 9.15.0 to 10.0.0 in /backend 
Bumps [liquidjs](https://github.com/harttle/liquidjs) from 9.15.0 to 10.0.0.
- [Release notes](https://github.com/harttle/liquidjs/releases)
- [Changelog](https://github.com/harttle/liquidjs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/harttle/liquidjs/compare/v9.15.0...v10.0.0)

---
updated-dependencies:
- dependency-name: liquidjs
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:08 +00:00
dependabot[bot]
cf6cc7dcc5 Bump jsonwebtoken from 8.5.1 to 9.0.0 in /backend 
Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) from 8.5.1 to 9.0.0.
- [Release notes](https://github.com/auth0/node-jsonwebtoken/releases)
- [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md)
- [Commits](https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.0)

---
updated-dependencies:
- dependency-name: jsonwebtoken
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:50:55 +00:00
jc21
448c8a2dd5 Merge pull request #2523 from NginxProxyManager/dependabot/npm_and_yarn/backend/json5-2.2.3 
Bump json5 from 2.1.3 to 2.2.3 in /backend
 2023-03-07 16:50:37 +10:00
jc21
634cfe13f1 Merge pull request #2534 from NginxProxyManager/dependabot/npm_and_yarn/backend/knex-2.4.0 
Bump knex from 0.20.15 to 2.4.0 in /backend
 2023-03-07 16:50:30 +10:00
Jocelyn Le Sage
b0fd976b97 Make sure to lowercase email address entered by the user during login. 2023-02-26 22:24:58 -05:00
Kamil Skrzypinski
7fe7e94fbd Mitigate CVE-2023-23596 by changing child_process.exec to child_process.execFile 2023-02-26 20:10:25 +01:00
Zoey
14c2253721 make image smaller + allow long passwd + dep updates + fix compression/misspellings 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-02-24 21:10:51 +01:00
dependabot[bot]
23326895b2 Bump http-cache-semantics from 4.1.0 to 4.1.1 in /backend 
Bumps [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/kornelski/http-cache-semantics/releases)
- [Commits](https://github.com/kornelski/http-cache-semantics/compare/v4.1.0...v4.1.1)

---
updated-dependencies:
- dependency-name: http-cache-semantics
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-03 12:12:01 +00:00
Zoey
45895ac53e enable ssl_early_data, default enable http2, option to enable brotli, fix shellcheck 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-26 18:01:25 +01:00
Zoey
e0be3a5ea3 allow to change dummycert 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-14 17:13:17 +01:00
dependabot[bot]
7ca3a9e7a6 Bump knex from 0.20.15 to 2.4.0 in /backend 
Bumps [knex](https://github.com/knex/knex) from 0.20.15 to 2.4.0.
- [Release notes](https://github.com/knex/knex/releases)
- [Changelog](https://github.com/knex/knex/blob/master/CHANGELOG.md)
- [Commits](https://github.com/knex/knex/compare/0.20.15...2.4.0)

---
updated-dependencies:
- dependency-name: knex
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-11 02:35:51 +00:00
Jake Merdich
c80d099193 ACL changes should not blow away cert config 
When editing an access list, all affected sites get their config updated without certificates, functionally breaking https on those sites until they get a manual config change that rewrites the config properly. Properly fetch the certificate from the DB before `bulkGenerateConfigs` so it gets updated right.

I am not certain whether there are similar bugs in other places that use `bulkGenerateConfigs`.

Should fix #2254
 2023-01-10 01:59:04 -05:00
Zoey
5a89e9e8e8 change paths and make quic be enabled sepperat 2023-01-06 18:06:49 +01:00
dependabot[bot]
b69e493c54 Bump json5 from 2.1.3 to 2.2.3 in /backend 
Bumps [json5](https://github.com/json5/json5) from 2.1.3 to 2.2.3.
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v2.1.3...v2.2.3)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-06 02:33:27 +00:00
Zoey
6c56070a46 rebrand SSL to TLS 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-03 01:09:44 +01:00