yflory
|
25bd9243fb
|
Merge branch 'main' into staging
|
2024-06-24 16:51:04 +02:00 |
|
mathilde-cryptpad
|
5ae741926b
|
update Nginx examples with the new http2 option
|
2024-06-18 09:58:51 +02:00 |
|
nisbet-hubbard
|
bcaccab029
|
add a location block dedicated to the websocket to improve performances
|
2024-05-25 11:09:10 +08:00 |
|
mathilde-cryptpad
|
c9600c12ab
|
add a location block dedicated to the websocket to improve performances
|
2024-05-22 14:39:23 +02:00 |
|
yflory
|
86776894cc
|
Merge branch 'main' into staging
|
2024-05-16 17:20:32 +02:00 |
|
yflory
|
0604b708dc
|
Only allow loading onlyoffice fonts + update nginx #1472
|
2024-04-17 15:12:27 +02:00 |
|
nisbet-hubbard
|
623b47f097
|
Suport .mjs files content-type
|
2024-04-16 22:24:53 +08:00 |
|
yflory
|
f5478c10da
|
Fix nginx advenced config issue
|
2024-01-31 12:13:44 +01:00 |
|
yflory
|
df19bf0264
|
Suport .mjs files content-type in nginx config
|
2024-01-31 11:56:00 +01:00 |
|
yflory
|
79caca130b
|
Merge pull request #1295 from cryptpad/drawio-image
Drawio image
|
2024-01-29 17:29:33 +01:00 |
|
yflory
|
d2252049c3
|
Update example nginx
|
2024-01-29 17:26:24 +01:00 |
|
David Benque
|
06f4b8e590
|
Add licensing information to new files
|
2023-12-19 11:38:26 +00:00 |
|
yflory
|
f9e6c8d142
|
tMerge branch 'main' into 5.6-rc
|
2023-12-18 14:07:13 +01:00 |
|
Mathilde Grünig
|
6c9a99a5e4
|
remove debugging.md, almost empty file
|
2023-12-08 09:57:08 +01:00 |
|
Wolfgang Ginolas
|
d42539b3b2
|
Merge remote-tracking branch 'origin/staging' into drawio-image
|
2023-12-06 09:08:32 +01:00 |
|
nisbet-hubbard
|
3ea05fddb7
|
Edit for consistency
|
2023-12-06 15:53:18 +08:00 |
|
nisbet-hubbard
|
0f7cc0f8a7
|
Create example.httpd.conf
|
2023-12-06 15:24:32 +08:00 |
|
Mathilde Grünig
|
078095c3e2
|
reimplement proper service logging after mistake in e80b6c2
|
2023-11-24 11:52:57 +01:00 |
|
Wolfgang Ginolas
|
7f55498bcc
|
Update draw.io dependency and remove unneeded CSP headers
|
2023-11-01 09:19:46 +01:00 |
|
Wolfgang Ginolas
|
304fc6e970
|
Upgrade draw.io to 21.7.5
|
2023-11-01 09:19:45 +01:00 |
|
David Benque
|
8f0a6319a5
|
Apply headers
|
2023-10-20 15:35:26 +01:00 |
|
yflory
|
6c6220edfc
|
Fix comments in nginx file
|
2023-10-03 12:04:55 +02:00 |
|
yflory
|
1c2764dbb8
|
Revert revert "have 2 distinctives Nginx examples, default & advanced"
This reverts commit 9fa981cfd8 .
|
2023-10-03 11:51:12 +02:00 |
|
yflory
|
d6a60075cd
|
Fix DrawIO hash
|
2023-10-03 11:40:55 +02:00 |
|
Mathilde Grünig
|
57dda59c4d
|
change NodeJS path to match new recommended installation method
|
2023-09-18 11:52:26 +02:00 |
|
Mathilde Grünig
|
87dc6e66d4
|
replace tabs by spaces, not rendered properly by GitHub
|
2023-09-05 13:22:15 +02:00 |
|
Mathilde Grünig
|
53f53d1a7e
|
fix two little header issues in Nginx advanced example
|
2023-09-05 13:21:16 +02:00 |
|
Mathilde Grünig
|
c756909a89
|
add new default Nginx example config file
|
2023-09-05 13:19:25 +02:00 |
|
Mathilde Grünig
|
bccfb28ac9
|
move old default Nginx example config to advanced file
|
2023-09-05 13:17:12 +02:00 |
|
Wolfgang Ginolas
|
a3772cf92c
|
Fix typo in example.nginx.conf
|
2023-08-10 16:00:46 +02:00 |
|
yflory
|
dc6bbec19f
|
Recovery page trailing slash redirect in nginx conf #1143
|
2023-07-18 17:35:18 +02:00 |
|
yflory
|
8b1aaaa9a7
|
Add missing trailing slash redirect for the diagram app
|
2023-07-13 11:12:31 +02:00 |
|
yflory
|
c10fc37645
|
Merge branch 'totp-ui' into 5.4-rc
|
2023-07-11 10:30:36 +02:00 |
|
yflory
|
b2788744de
|
Merge branch 'drawio-bower' into 5.4-rc
|
2023-06-30 12:45:54 +02:00 |
|
Wolfgang Ginolas
|
00af2c3efb
|
Update example nginx config for diagram
|
2023-06-29 11:22:41 +02:00 |
|
Mathilde Grünig
|
f5fb24031e
|
replace xwiki-labs by cryptpad
|
2023-05-16 14:54:39 +02:00 |
|
ansuz
|
bf548c1022
|
updated nginx config for new API server features
|
2023-05-11 17:06:46 +05:30 |
|
ansuz
|
493bf1346c
|
Merge tag '5.3.0' into 5.3-auth
|
2023-05-06 15:26:21 +05:30 |
|
ansuz
|
c27ff40db1
|
proxy requests for blocks to the API server
|
2023-05-06 14:41:22 +05:30 |
|
David Benque
|
d585d17359
|
Merge pull request #1004 from xwiki-labs/embedding-difficulty
invert NGINX settings to forbid remote embedding by default
|
2023-04-25 11:43:59 +01:00 |
|
Mathilde Grünig
|
166c20e081
|
add two lines explanation on hardening
|
2023-03-30 13:29:43 +02:00 |
|
Mathilde Grünig
|
2cd56842ec
|
add various systemd hardening directives
|
2023-03-30 10:17:19 +02:00 |
|
Mathilde Grünig
|
e80b6c2127
|
remove deprecated syslog parameters, now handled by journald
|
2023-03-30 10:16:18 +02:00 |
|
Mathilde Grünig
|
5df480b9f3
|
update latest stable Node version
|
2023-03-30 10:15:50 +02:00 |
|
ansuz
|
ee5d270d6a
|
Merge branch 'basic-auth' into authentication
|
2023-03-20 13:44:10 +05:30 |
|
ansuz
|
50c84949c8
|
invert NGINX settings to forbid remote embedding by default
|
2023-02-13 12:47:18 +05:30 |
|
Mathilde Grünig
|
0d7f1509b6
|
Add FreeBSD rc.d init script
|
2023-02-03 08:25:17 +01:00 |
|
Ente
|
c9fd6359aa
|
Send HTTP credentials when fetching blobs
With this change media-tag now sends HTTP credentials when fetching
blobs. Also changed the example nginx config to send
Access-Control-Allow-Credentials CORS headers. For this to work, we can
no longer use '*' for Access-Control-Allow-Origin [1][2]: Therefore the
example config was changed to set Access-Control-Allow-Origin to the
sandbox domain only.
Fixes:
- #705: Blob fetch fails with 401 Unauthorized when HTTP basic auth is enabled [3]
Referenes:
[1]: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin
[2]: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS/Errors/CORSNotSupportingCredentials
[3]: https://github.com/xwiki-labs/cryptpad/issues/705
|
2022-12-14 11:27:51 +01:00 |
|
Mathilde Grünig
|
37ccaddbbe
|
2nd thought on HTTP/80, not needed in the end
|
2022-12-07 14:04:00 +01:00 |
|
Mathilde Grünig
|
1b731e2643
|
Add future-proof Nginx configuration
- support IPv6
- 80 to 443 redirect
- TLS generation
- better SSL sessions
- longer HSTS (2 years)
- OCSP stapling
|
2022-12-07 13:56:12 +01:00 |
|