 Franzi
|
b5ab21549d
|
bundles/nginx: rename 'proxy' metadata to 'locations', support more generic options, move extras files to metadata
bundlewrap/pipeline/head This commit looks good
|
2021-07-04 19:28:03 +02:00 |
|
|
Franzi
|
68e79b4883
|
bundles/nginx: only add well-known alias for vhosts which use letsencrypt
|
2021-07-01 16:04:46 +02:00 |
|
|
Franzi
|
db83b1614b
|
bundles/nginx: add anonymous timing logging for http requests
bundlewrap/pipeline/head This commit looks good
|
2021-06-05 15:53:02 +02:00 |
|
|
Franzi
|
1fbc08f74b
|
bundles/nginx: add a default security.txt to all vhosts
bundlewrap/pipeline/head This commit looks good
|
2021-06-03 18:57:25 +02:00 |
|
|
Franzi
|
44d42de81c
|
bundles/nginx: only redirect to ssl for sites which actually have ssl enabled
bundlewrap/pipeline/head This commit looks good
|
2021-04-25 09:20:16 +02:00 |
|
|
Franzi
|
d98a1adfd9
|
bundles/ssl: support using a preexisting ssl certificate
|
2021-04-25 09:09:23 +02:00 |
|
|
Franzi
|
6a88040826
|
bundles/nginx: disable Federated Learning of Cohorts for all hosts
bundlewrap/pipeline/head This commit looks good
|
2021-04-16 18:36:50 +02:00 |
|
|
Franzi
|
b52a196c73
|
bundles/nginx: add configuration option for client_max_body_size
bundlewrap/pipeline/head This commit looks good
|
2021-03-30 21:26:25 +02:00 |
|
|
Franzi
|
74d81eb7ba
|
bundles/nginx: support disabling ssl for each vhost individually
bundlewrap/pipeline/head This commit looks good
|
2021-02-20 14:25:27 +01:00 |
|
|
Franzi
|
2aaf7cf8f8
|
bundles/nginx: better ssl
|
2021-01-24 18:44:13 +01:00 |
|
|
Franzi
|
11701a67c8
|
dns: deploy MTA-STS
bundlewrap/pipeline/head This commit looks good
|
2020-11-11 11:41:06 +01:00 |
|
|
Franzi
|
f8bc4b2ad9
|
bundles/php: introduce
|
2020-10-31 13:00:38 +01:00 |
|
|
Franzi
|
e2d8923dee
|
bundles/nginx: use metadata reactor to determine index files
|
2020-10-31 10:41:48 +01:00 |
|
|
Franzi
|
7ea85247e0
|
bundles/nginx: proxy is a dict now, add some more configuration options
bundlewrap/pipeline/head This commit looks good
|
2020-09-22 18:39:38 +02:00 |
|
|
Franzi
|
151d8e92c3
|
bundles/nginx: do not set X-Forwarded-Proto if https is disabled, do not use http2 without ssl
|
2020-09-20 15:46:39 +02:00 |
|
|
Franzi
|
d6799088c4
|
bundles/nginx: add metadata option to disable https
|
2020-09-20 14:36:43 +02:00 |
|
|
Franzi
|
8547948ce6
|
bundles/nginx: also set host header for proxy connections
|
2020-08-19 21:43:37 +02:00 |
|
|
Franzi
|
d7862918a6
|
bundles/nginx: set default X-Frame-Options to SAMEORIGIN
bundlewrap/pipeline/head This commit looks good
|
2020-08-18 15:07:43 +02:00 |
|
|
Franzi
|
17828a29f8
|
bundles/nginx: fix hsts header
bundlewrap/pipeline/head This commit looks good
|
2020-08-14 08:23:41 +02:00 |
|
|
Franzi
|
7986f6ee7d
|
bundles/letsencrypt: remove ocsp stapling
bundlewrap/pipeline/head This commit looks good
This causes problems with weechat and dovecot. Those certificates
are short-lived, so not having OCSP stapling is probably fine.
|
2020-07-26 18:48:37 +02:00 |
|
|
Franzi
|
f7eb0cc150
|
bundles/{letsencrypt,nginx}: fix ocsp stapling
bundlewrap/pipeline/head There was a failure building this commit
|
2020-07-19 12:10:19 +02:00 |
|
|
Franzi
|
de632a7725
|
htz.ex42-1048908: add missing domains
bundlewrap/pipeline/head There was a failure building this commit
|
2020-07-19 11:26:12 +02:00 |
|
|
Franzi
|
94c2c644a6
|
bundles/nginx: support PHP 7.3
|
2020-07-19 11:09:53 +02:00 |
|
|
Franzi
|
85b3adf671
|
add proxy feature to nginx
|
2020-06-01 11:31:13 +02:00 |
|
|
Franzi
|
3523edbcb4
|
bundles/nginx: ensure we're doing letsencrypt, since we're enforcing ssl
|
2020-06-01 11:17:52 +02:00 |
|
|
Franzi
|
36c8b90c4b
|
bundles/nginx: switch to TLS 1.2 and 1.3 only
bundlewrap/pipeline/head There was a failure building this commit
|
2020-06-01 11:01:00 +02:00 |
|
|
Franzi
|
c4330f866b
|
bundles/nginx: add deployment of vhost configs
|
2020-06-01 10:52:52 +02:00 |
|