ThatGuyJack/nginx-proxy-manager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2025-08-04 00:13:33 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
1,479 Commits 11 Branches 78 Tags
c546e853a82ec17dc3377511494c54b055b192e8
Commit Graph

140 Commits

Author SHA1 Message Date
Zoey
e9421dd5f9 add SKIP_IP_RANGES/improve crowdsec docs/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-02-11 02:49:36 +01:00
Zoey
4bfb9b799a merge upstream and small changes 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-21 23:08:52 +01:00
Zoey
04dd76f9eb Merge remote-tracking branch 'upstream/develop' into develop 2024-01-20 14:31:51 +01:00
Jamie Curnow
db23c9a52f Refactor certbot plugins install 
- Added a script to install every single plugin, used in development and debugging
- Improved certbot plugin install commands
- Adjusted some version for plugins to install properly
- It's noted that some plugins require deps that do not match other plugins,
  however these use cases should be extremely rare
 2024-01-18 12:26:55 +10:00
Zoey
f96a4d32a3 remove route53 until https://github.com/certbot/certbot/pull/5781 or similar is merged 
Signed-off-by: Zoey <zoey@z0ey.de>
 2024-01-12 20:30:18 +01:00
Jamie Curnow
834fb1a361 Add missing args to certbot command, was causing failures in rovokation 2024-01-12 17:04:55 +10:00
jc21
1be87f48c1 Merge pull request #3392 from stevecrozz/auto-renew-uses-bulitin-renew 
Make auto-renew use built-in renew function
 2024-01-12 12:15:37 +10:00
Zoey
93216d93e4 Merge remote-tracking branch 'upstream/develop' into develop 2024-01-11 21:36:01 +01:00
Stephen Crosby
9c54d1b718 Provide the token model for certificate renewal 2024-01-10 20:08:36 -08:00
Stephen Crosby
f7d1c490b3 Run renews sequentially 2024-01-10 20:08:36 -08:00
Stephen Crosby
fe4bd9fed6 Make auto-renew use built-in renew function 2024-01-10 20:08:29 -08:00
Jamie Curnow
e69684919c Use nginxproxymanager/nginx-full image base 
which has been updated with bookworm, python 3.8, certbot 2.8.0 and node 20

Moved rootfs scripts as /bin is a symlink in bookworm
 2024-01-10 12:59:51 +10:00
Zoey
58d28b9867 remove domain_names.sort() and trailing spaces 2024-01-01 23:56:28 +01:00
Jocelyn Le Sage
388fff84f2 Fixes for the server reachability test. 
- Do not apply HTTPs redirection for challenge used by the test.
- Set the `User-Agent` to avoid 403 answer from site24x7.com.
- Handle JSON parsing failure of the received body.
- Better handling of different error cases.
 2023-12-19 17:22:33 -05:00
Zoey
c534fa150d try reload again instead of quit and restart 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-11-19 18:13:15 +01:00
Zoey
efcca74d67 fix security headers and sockets 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-10-10 19:55:42 +02:00
Zoey
fb0bb721f7 rebrand to NPMplus/improve security headers/upsteam changes/dockerlint 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-10-09 20:32:37 +02:00
renovate[bot]
6e62aa2ea1 dep updates/merge #3190 from upstream/fix #407 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-09-25 22:03:10 +02:00
GitHub
55b173a744 fix certbot run on launch/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>

Update dependency jsonwebtoken to v9.0.2
Update dependency liquidjs to v10.9.2
Update dependency jquery to v3.7.1
 2023-09-02 13:04:35 +02:00
Devedse
6f8db95249 Added force renewal + --dns-duckdns-no-txt-restore 2023-08-24 13:21:01 +02:00
Zoey
da025cedaa Merge branch 'develop-o' into develop 2023-08-02 10:40:13 +02:00
renovate[bot]
66bfcf8f6c improve many things/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-08-02 10:26:01 +02:00
renovate[bot]
c6ecb61c9b dep updates/enable ssl_dyn_rec_enable/fix nginx in background/remove tempwrite 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-07-08 20:22:17 +02:00
Joe Manifold
f39e527680 drop --user on pip install dns plugin godaddy 
Do not install dns_plugin into the user site because it will lack sys.path precedence to urllib3 in /opt/certbot/lib/python3.7/site-packages
 2023-06-01 11:02:06 -07:00
Zoey
677b30d25e add new darkmode/enable hide_server_tokens/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
Signed-off-by: ƬHE ЯAW ☣ <daraw665@gmail.com>
Co-Authored-By: ƬHE ЯAW ☣ <raw@dopehosting.net>
 2023-05-29 21:00:49 +02:00
Zoey
7e6612467f add modsec 
Signed-off-by: Zoey <zoey@z0ey.de>

Update Dockerfile
 2023-05-29 20:45:08 +02:00
Zoey
57abc84f4a "new" versioning system/dep updates 
Update zoeyvid/nginx-quic Docker tag to v114
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-08 23:01:56 +02:00
Zoey
9ca59b9a38 allow to run as non-root (#246) 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-24 23:12:44 +02:00
renovate[bot]
ec29d4ce8d dep updates/remove useless files/fix reachability test? 
Update zoeyvid/nginx-quic Docker tag to v110
Update zoeyvid/nginx-quic Docker tag to v109
Update zoeyvid/nginx-quic Docker tag to v107
Update dependency liquidjs to v10.7.1
Update dependency eslint to v8.38.0
remove empty folder
Delete Hosts.spec.js

Fix for SSL certificate error #2011 by @S-T-3-V-3
 - Keepalive, User Agent + Accept headers
 - Catch added for failed JSON parsing
 - More accurate errors displayed to user

Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-24 23:12:43 +02:00
Zoey
0d9da2b72a merge upstream 2023-04-06 19:07:38 +02:00
Zoey
395909c5cd Merge branch 'developo' into develop 2023-04-06 18:04:57 +02:00
Jamie Curnow
124cb18e17 Fix renewing certs because of permission errors 2023-03-22 13:40:36 +10:00
Jamie Curnow
77eb618758 Fix pip installs running as non-root user 2023-03-22 09:41:59 +10:00
Jamie Curnow
2a07445005 Refactor configuration 
- No longer use config npm package
- Prefer config from env vars, though still has support for config file
- No longer writes a config file for database config
- Writes keys to a new file in /data folder
- Removes a lot of cruft and improves config understanding
 2023-03-21 16:53:39 +10:00
Jamie Curnow
dad3e1da7c Adds support to run processes as a user/group, defined 
with PUID and PGID environment variables

- Detects if image is run with a user in docker command and fails if so
- Adds s6 prepare scripts for adding a 'npmuser'
- Split up and refactor the s6 prepare scripts
- Runs nginx and backend node as 'npmuser'
- Changes ownership of files required at startup
 2023-03-20 16:56:52 +10:00
Zoey
1d9c7b0570 Merge branch 'developo' into develop 2023-03-18 11:30:42 +01:00
Jamie Curnow
fccbde1371 fix linting 2023-03-17 14:23:12 +10:00
Jamie Curnow
fec36834f7 - Updated objection, knex, liquidjs, signale and sqlite3 packages 
- Changes for objection migration
- Moved common access template code to an include
- Fixed access rules configuration generation
 2023-03-17 14:18:51 +10:00
Jamie Curnow
00aeef75b6 Refactor nginx config functions, some don't need to report errors, save error'd config files as .err for debugging later 2023-03-17 11:34:27 +10:00
Zoey
309e81747e upstream changes (npm/nginx/dependencies) + add eslint 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-09 20:57:13 +01:00
jc21
09d1d3744c Merge pull request #2530 from jmerdich/jmerdich/fix-acl-edit-ssl 2023-03-08 21:08:52 +10:00
jc21
84e0b30f8d Merge pull request #2411 from plantysnake/fix-certbot-plugins 
Bugfix: Fix certbot plugin installation issues
 2023-03-08 20:40:15 +10:00
jc21
30076a0e66 Merge pull request #2635 from skarlcf/security/CVE-2023-23596 
Mitigate CVE-2023-23596
 2023-03-08 08:25:38 +10:00
Kamil Skrzypinski
2ff66ee238 Add style required by linter 2023-03-07 17:15:03 +01:00
Jocelyn Le Sage
b0fd976b97 Make sure to lowercase email address entered by the user during login. 2023-02-26 22:24:58 -05:00
Kamil Skrzypinski
7fe7e94fbd Mitigate CVE-2023-23596 by changing child_process.exec to child_process.execFile 2023-02-26 20:10:25 +01:00
Zoey
e0be3a5ea3 allow to change dummycert 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-14 17:13:17 +01:00
Jake Merdich
c80d099193 ACL changes should not blow away cert config 
When editing an access list, all affected sites get their config updated without certificates, functionally breaking https on those sites until they get a manual config change that rewrites the config properly. Properly fetch the certificate from the DB before `bulkGenerateConfigs` so it gets updated right.

I am not certain whether there are similar bugs in other places that use `bulkGenerateConfigs`.

Should fix #2254
 2023-01-10 01:59:04 -05:00
Zoey
5a89e9e8e8 change paths and make quic be enabled sepperat 2023-01-06 18:06:49 +01:00
Zoey
6c56070a46 rebrand SSL to TLS 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-03 01:09:44 +01:00