ThatGuyJack/nginx-proxy-manager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2025-05-04 04:52:28 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,474 Commits 7 Branches 75 Tags
Commit Graph

1474 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
jc21
95665ca378
Merge pull request #2513 from NginxProxyManager/dependabot/npm_and_yarn/docs/json5-2.2.2 
Bump json5 from 2.1.3 to 2.2.2 in /docs
 2023-03-07 19:22:26 +10:00
jc21
09d6cf7c48
Merge pull request #2648 from NginxProxyManager/dependabot/npm_and_yarn/backend/minimist-1.2.8 
Bump minimist from 1.2.5 to 1.2.8 in /backend
 2023-03-07 19:22:17 +10:00
jc21
2addc48a9b
Merge pull request #2649 from NginxProxyManager/dependabot/npm_and_yarn/frontend/minimist-1.2.8 
Bump minimist from 1.2.5 to 1.2.8 in /frontend
 2023-03-07 19:22:07 +10:00
dependabot[bot]
ebf07a7912
Bump json5 from 2.1.3 to 2.2.2 in /docs 
Bumps [json5](https://github.com/json5/json5) from 2.1.3 to 2.2.2.
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v2.1.3...v2.2.2)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:52:21 +00:00
dependabot[bot]
abe6493244
Bump express from 4.17.1 to 4.17.3 in /docs 
Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.17.3.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](https://github.com/expressjs/express/compare/4.17.1...4.17.3)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:40 +00:00
dependabot[bot]
9f192ab275
Bump decode-uri-component from 0.2.0 to 0.2.1 in /docs 
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.1.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.1)

---
updated-dependencies:
- dependency-name: decode-uri-component
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:33 +00:00
jc21
52e013d289
Merge pull request #2410 from NginxProxyManager/dependabot/npm_and_yarn/docs/loader-utils-2.0.4 
Bump loader-utils from 2.0.3 to 2.0.4 in /docs
 2023-03-07 16:51:30 +10:00
dependabot[bot]
331da3841e
Bump minimist from 1.2.5 to 1.2.8 in /frontend 
Bumps [minimist](https://github.com/minimistjs/minimist) from 1.2.5 to 1.2.8.
- [Release notes](https://github.com/minimistjs/minimist/releases)
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](https://github.com/minimistjs/minimist/compare/v1.2.5...v1.2.8)

---
updated-dependencies:
- dependency-name: minimist
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:11 +00:00
dependabot[bot]
e227f4177b
Bump minimist from 1.2.5 to 1.2.8 in /backend 
Bumps [minimist](https://github.com/minimistjs/minimist) from 1.2.5 to 1.2.8.
- [Release notes](https://github.com/minimistjs/minimist/releases)
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](https://github.com/minimistjs/minimist/compare/v1.2.5...v1.2.8)

---
updated-dependencies:
- dependency-name: minimist
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:09 +00:00
dependabot[bot]
88fa7cdfff
Bump liquidjs from 9.15.0 to 10.0.0 in /backend 
Bumps [liquidjs](https://github.com/harttle/liquidjs) from 9.15.0 to 10.0.0.
- [Release notes](https://github.com/harttle/liquidjs/releases)
- [Changelog](https://github.com/harttle/liquidjs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/harttle/liquidjs/compare/v9.15.0...v10.0.0)

---
updated-dependencies:
- dependency-name: liquidjs
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:08 +00:00
dependabot[bot]
f3b3072711
Bump async from 3.2.0 to 3.2.2 in /docs 
Bumps [async](https://github.com/caolan/async) from 3.2.0 to 3.2.2.
- [Release notes](https://github.com/caolan/async/releases)
- [Changelog](https://github.com/caolan/async/blob/master/CHANGELOG.md)
- [Commits](https://github.com/caolan/async/compare/v3.2.0...v3.2.2)

---
updated-dependencies:
- dependency-name: async
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:51:02 +00:00
dependabot[bot]
cf6cc7dcc5
Bump jsonwebtoken from 8.5.1 to 9.0.0 in /backend 
Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) from 8.5.1 to 9.0.0.
- [Release notes](https://github.com/auth0/node-jsonwebtoken/releases)
- [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md)
- [Commits](https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.0)

---
updated-dependencies:
- dependency-name: jsonwebtoken
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-07 06:50:55 +00:00
jc21
448c8a2dd5
Merge pull request #2523 from NginxProxyManager/dependabot/npm_and_yarn/backend/json5-2.2.3 
Bump json5 from 2.1.3 to 2.2.3 in /backend
 2023-03-07 16:50:37 +10:00
jc21
634cfe13f1
Merge pull request #2534 from NginxProxyManager/dependabot/npm_and_yarn/backend/knex-2.4.0 
Bump knex from 0.20.15 to 2.4.0 in /backend
 2023-03-07 16:50:30 +10:00
jc21
7597515c20
Merge pull request #2564 from NginxProxyManager/dependabot/npm_and_yarn/frontend/ua-parser-js-0.7.33 
Bump ua-parser-js from 0.7.28 to 0.7.33 in /frontend
 2023-03-07 16:50:18 +10:00
jc21
93f57aece5
Merge pull request #2583 from NginxProxyManager/dependabot/npm_and_yarn/docs/http-cache-semantics-4.1.1 
Bump http-cache-semantics from 4.1.0 to 4.1.1 in /docs
 2023-03-07 16:49:58 +10:00
jc21
ef6da1bbe1
Merge pull request #2584 from NginxProxyManager/dependabot/npm_and_yarn/backend/http-cache-semantics-4.1.1 
Bump http-cache-semantics from 4.1.0 to 4.1.1 in /backend
 2023-03-07 16:49:50 +10:00
jc21
4ad9e68886
Merge pull request #2585 from NginxProxyManager/dependabot/npm_and_yarn/frontend/http-cache-semantics-4.1.1 
Bump http-cache-semantics from 4.1.0 to 4.1.1 in /frontend
 2023-03-07 16:49:44 +10:00
jc21
9b35e7c188
Merge pull request #2644 from NginxProxyManager/dependabot/npm_and_yarn/docs/dns-packet-5.4.0 
Bump dns-packet from 5.2.2 to 5.4.0 in /docs
 2023-03-07 16:49:28 +10:00
campingwoelfe
2aa6e55d6b
Update certbot-dns-ionos plugin 2023-03-06 15:31:39 +01:00
Marcell Fülöp
6ed64153e7
fix: add oidc logger and replace console logging 2023-03-06 13:01:38 +00:00
Marcell Fülöp
d0d36a95ec
fix: add oidc-config setting via setup.js rather than migrations 2023-03-06 09:33:01 +00:00
dependabot[bot]
1ac28410ff
Bump dns-packet from 5.2.2 to 5.4.0 in /docs 
Bumps [dns-packet](https://github.com/mafintosh/dns-packet) from 5.2.2 to 5.4.0.
- [Release notes](https://github.com/mafintosh/dns-packet/releases)
- [Changelog](https://github.com/mafintosh/dns-packet/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mafintosh/dns-packet/compare/v5.2.2...5.4.0)

---
updated-dependencies:
- dependency-name: dns-packet
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-02 21:13:16 +00:00
Jocelyn Le Sage
b0fd976b97 Make sure to lowercase email address entered by the user during login. 2023-02-26 22:24:58 -05:00
Kamil Skrzypinski
7fe7e94fbd Mitigate CVE-2023-23596 by changing child_process.exec to child_process.execFile 2023-02-26 20:10:25 +01:00
Marcell Fülöp
fd49644f21 fix: linter 2023-02-26 13:34:58 +00:00
Marcell Fülöp
ef64edd943 fix: add database migration for oidc-config setting 2023-02-26 13:24:47 +00:00
Marcell Fülöp
df5ab361e3 chore: update comments, remove debug logging 2023-02-24 22:27:27 +00:00
Marcell Fülöp
6f98fa61e4 refactor: satisfy linter requirements 2023-02-24 21:15:17 +00:00
Marcell Fülöp
baee4641db chore: improve error handling 2023-02-24 18:54:38 +00:00
Marcell Fülöp
bc0b466a8e refactor: improve code structure 2023-02-24 16:30:45 +00:00
Marcell FÜLÖP
8350271e6f chore: add message texts 2023-02-24 15:22:45 +00:00
Marcell FÜLÖP
457d1a75ba chore: improve oidc setting ui 2023-02-24 15:17:48 +00:00
Marcell FÜLÖP
3e2a411dfb chore: add oidc setting db entry during setup 2023-02-24 15:17:23 +00:00
Marcell FÜLÖP
caeb2934f0 FEAT: Add Open ID Connect authentication method 
* add `oidc-config` setting allowing an admin user to configure parameters
* modify login page to show another button when oidc is configured
* add dependency `openid-client` `v5.4.0`
* add backend route to process "OAuth2 Authorization Code" flow
  initialisation
* add backend route to process callback of above flow
* sign in the authenticated user with internal jwt token if internal
  user with email matching the one retrieved from oauth claims exists

Note: Only Open ID Connect Discovery is supported which most modern
Identity Providers offer.

Tested with Authentik 2023.2.2 and Keycloak 18.0.2
 2023-02-24 15:15:17 +00:00
dependabot[bot]
8864960eb4
Bump http-cache-semantics from 4.1.0 to 4.1.1 in /frontend 
Bumps [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/kornelski/http-cache-semantics/releases)
- [Commits](https://github.com/kornelski/http-cache-semantics/compare/v4.1.0...v4.1.1)

---
updated-dependencies:
- dependency-name: http-cache-semantics
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-03 12:12:27 +00:00
dependabot[bot]
23326895b2
Bump http-cache-semantics from 4.1.0 to 4.1.1 in /backend 
Bumps [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/kornelski/http-cache-semantics/releases)
- [Commits](https://github.com/kornelski/http-cache-semantics/compare/v4.1.0...v4.1.1)

---
updated-dependencies:
- dependency-name: http-cache-semantics
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-03 12:12:01 +00:00
dependabot[bot]
d2f707b76d
Bump http-cache-semantics from 4.1.0 to 4.1.1 in /docs 
Bumps [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/kornelski/http-cache-semantics/releases)
- [Commits](https://github.com/kornelski/http-cache-semantics/compare/v4.1.0...v4.1.1)

---
updated-dependencies:
- dependency-name: http-cache-semantics
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-03 05:19:25 +00:00
Blaž Zupan
a7f0c3b730 Use ssl_reject_handshake to reject requests to default https site 
Instead of creating a dummy certificate, we can return an SSL protocol error, which will generate a descriptive error message in the browser.
 2023-02-02 19:19:37 -08:00
dependabot[bot]
a9e84f1750
Bump ua-parser-js from 0.7.28 to 0.7.33 in /frontend 
Bumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from 0.7.28 to 0.7.33.
- [Release notes](https://github.com/faisalman/ua-parser-js/releases)
- [Changelog](https://github.com/faisalman/ua-parser-js/blob/master/changelog.md)
- [Commits](https://github.com/faisalman/ua-parser-js/compare/0.7.28...0.7.33)

---
updated-dependencies:
- dependency-name: ua-parser-js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-27 04:36:34 +00:00
dependabot[bot]
7ca3a9e7a6
Bump knex from 0.20.15 to 2.4.0 in /backend 
Bumps [knex](https://github.com/knex/knex) from 0.20.15 to 2.4.0.
- [Release notes](https://github.com/knex/knex/releases)
- [Changelog](https://github.com/knex/knex/blob/master/CHANGELOG.md)
- [Commits](https://github.com/knex/knex/compare/0.20.15...2.4.0)

---
updated-dependencies:
- dependency-name: knex
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-11 02:35:51 +00:00
Jake Merdich
c80d099193
ACL changes should not blow away cert config 
When editing an access list, all affected sites get their config updated without certificates, functionally breaking https on those sites until they get a manual config change that rewrites the config properly. Properly fetch the certificate from the DB before `bulkGenerateConfigs` so it gets updated right.

I am not certain whether there are similar bugs in other places that use `bulkGenerateConfigs`.

Should fix #2254
 2023-01-10 01:59:04 -05:00
Jérôme Groven
35aba13122 Add Online (online.net) DNS provider 2023-01-09 09:19:08 +01:00
dependabot[bot]
b69e493c54
Bump json5 from 2.1.3 to 2.2.3 in /backend 
Bumps [json5](https://github.com/json5/json5) from 2.1.3 to 2.2.3.
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v2.1.3...v2.2.3)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-06 02:33:27 +00:00
Tobia De Koninck
99d73a2da8 Update certbot desec plugin fixes #2485 2022-12-28 11:26:33 +01:00
BitsOfAByte
3c23aa935e
Load events configuration from custom file 2022-12-02 21:32:04 +00:00
plantysnake
8dee139810 Fix linter issues 2022-11-21 01:46:42 +03:00
plantysnake
6349cb6094 Fix cerbot plugin installation issues 2022-11-18 15:06:19 +03:00
dependabot[bot]
452838b04a
Bump loader-utils from 2.0.3 to 2.0.4 in /docs 
Bumps [loader-utils](https://github.com/webpack/loader-utils) from 2.0.3 to 2.0.4.
- [Release notes](https://github.com/webpack/loader-utils/releases)
- [Changelog](https://github.com/webpack/loader-utils/blob/v2.0.4/CHANGELOG.md)
- [Commits](https://github.com/webpack/loader-utils/compare/v2.0.3...v2.0.4)

---
updated-dependencies:
- dependency-name: loader-utils
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-18 00:00:12 +00:00
Jamie Curnow
fd30cfe98b Fix linting 2022-11-15 07:54:48 +10:00