Fabio/nginx-proxy-manager
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
1742 commits 8 branches 74 tags 26 MiB
Commit graph

171 commits

Author SHA1 Message Date
Devedse
6f8db95249 Added force renewal + --dns-duckdns-no-txt-restore 2023-08-24 13:21:01 +02:00
Zoey
da025cedaa
Merge branch 'develop-o' into develop 2023-08-02 10:40:13 +02:00
renovate[bot]
66bfcf8f6c
improve many things/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-08-02 10:26:01 +02:00
renovate[bot]
c6ecb61c9b
dep updates/enable ssl_dyn_rec_enable/fix nginx in background/remove tempwrite 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-07-08 20:22:17 +02:00
Joe Manifold
f39e527680
drop --user on pip install dns plugin godaddy 
Do not install dns_plugin into the user site because it will lack sys.path precedence to urllib3 in /opt/certbot/lib/python3.7/site-packages
 2023-06-01 11:02:06 -07:00
Zoey
677b30d25e
add new darkmode/enable hide_server_tokens/dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
Signed-off-by: ƬHE ЯAW ☣ <daraw665@gmail.com>
Co-Authored-By: ƬHE ЯAW ☣ <raw@dopehosting.net>
 2023-05-29 21:00:49 +02:00
Zoey
7e6612467f
add modsec 
Signed-off-by: Zoey <zoey@z0ey.de>

Update Dockerfile
 2023-05-29 20:45:08 +02:00
Zoey
57abc84f4a
"new" versioning system/dep updates 
Update zoeyvid/nginx-quic Docker tag to v114
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-05-08 23:01:56 +02:00
Zoey
9ca59b9a38
allow to run as non-root (#246) 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-24 23:12:44 +02:00
renovate[bot]
ec29d4ce8d
dep updates/remove useless files/fix reachability test? 
Update zoeyvid/nginx-quic Docker tag to v110
Update zoeyvid/nginx-quic Docker tag to v109
Update zoeyvid/nginx-quic Docker tag to v107
Update dependency liquidjs to v10.7.1
Update dependency eslint to v8.38.0
remove empty folder
Delete Hosts.spec.js

Fix for SSL certificate error #2011 by @S-T-3-V-3
 - Keepalive, User Agent + Accept headers
 - Catch added for failed JSON parsing
 - More accurate errors displayed to user

Signed-off-by: Zoey <zoey@z0ey.de>
 2023-04-24 23:12:43 +02:00
Zoey
0d9da2b72a
merge upstream 2023-04-06 19:07:38 +02:00
Zoey
395909c5cd
Merge branch 'developo' into develop 2023-04-06 18:04:57 +02:00
Jamie Curnow
124cb18e17
Fix renewing certs because of permission errors 2023-03-22 13:40:36 +10:00
Jamie Curnow
77eb618758
Fix pip installs running as non-root user 2023-03-22 09:41:59 +10:00
Jamie Curnow
2a07445005
Refactor configuration 
- No longer use config npm package
- Prefer config from env vars, though still has support for config file
- No longer writes a config file for database config
- Writes keys to a new file in /data folder
- Removes a lot of cruft and improves config understanding
 2023-03-21 16:53:39 +10:00
Jamie Curnow
dad3e1da7c
Adds support to run processes as a user/group, defined 
with PUID and PGID environment variables

- Detects if image is run with a user in docker command and fails if so
- Adds s6 prepare scripts for adding a 'npmuser'
- Split up and refactor the s6 prepare scripts
- Runs nginx and backend node as 'npmuser'
- Changes ownership of files required at startup
 2023-03-20 16:56:52 +10:00
Zoey
1d9c7b0570
Merge branch 'developo' into develop 2023-03-18 11:30:42 +01:00
Jamie Curnow
fccbde1371
fix linting 2023-03-17 14:23:12 +10:00
Jamie Curnow
fec36834f7
- Updated objection, knex, liquidjs, signale and sqlite3 packages 
- Changes for objection migration
- Moved common access template code to an include
- Fixed access rules configuration generation
 2023-03-17 14:18:51 +10:00
Jamie Curnow
00aeef75b6
Refactor nginx config functions, some don't need to report errors, save error'd config files as .err for debugging later 2023-03-17 11:34:27 +10:00
Zoey
309e81747e
upstream changes (npm/nginx/dependencies) + add eslint 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-03-09 20:57:13 +01:00
jc21
09d1d3744c
Merge pull request #2530 from jmerdich/jmerdich/fix-acl-edit-ssl 2023-03-08 21:08:52 +10:00
jc21
84e0b30f8d
Merge pull request #2411 from plantysnake/fix-certbot-plugins 
Bugfix: Fix certbot plugin installation issues
 2023-03-08 20:40:15 +10:00
jc21
30076a0e66
Merge pull request #2635 from skarlcf/security/CVE-2023-23596 
Mitigate CVE-2023-23596
 2023-03-08 08:25:38 +10:00
Kamil Skrzypinski
2ff66ee238 Add style required by linter 2023-03-07 17:15:03 +01:00
Jocelyn Le Sage
b0fd976b97 Make sure to lowercase email address entered by the user during login. 2023-02-26 22:24:58 -05:00
Kamil Skrzypinski
7fe7e94fbd Mitigate CVE-2023-23596 by changing child_process.exec to child_process.execFile 2023-02-26 20:10:25 +01:00
Zoey
e0be3a5ea3
allow to change dummycert 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-14 17:13:17 +01:00
Jake Merdich
c80d099193
ACL changes should not blow away cert config 
When editing an access list, all affected sites get their config updated without certificates, functionally breaking https on those sites until they get a manual config change that rewrites the config properly. Properly fetch the certificate from the DB before `bulkGenerateConfigs` so it gets updated right.

I am not certain whether there are similar bugs in other places that use `bulkGenerateConfigs`.

Should fix #2254
 2023-01-10 01:59:04 -05:00
Zoey
5a89e9e8e8
change paths and make quic be enabled sepperat 2023-01-06 18:06:49 +01:00
Zoey
6c56070a46
rebrand SSL to TLS 
Signed-off-by: Zoey <zoey@z0ey.de>
 2023-01-03 01:09:44 +01:00
Zoey
d7db5527d9
changes on ssl 
Signed-off-by: Zoey <zoey@z0ey.de>
 2022-12-31 21:24:54 +01:00
Zoey
920bce627a add php 
Signed-off-by: Zoey <zoey@z0ey.de>
 2022-12-27 22:44:01 +01:00
Zoey
19a304d9ce init 
Signed-off-by: Zoey <zoey@z0ey.de>
 2022-12-17 14:25:32 +01:00
plantysnake
8dee139810 Fix linter issues 2022-11-21 01:46:42 +03:00
plantysnake
6349cb6094 Fix cerbot plugin installation issues 2022-11-18 15:06:19 +03:00
Jamie Curnow
fd30cfe98b Fix linting 2022-11-15 07:54:48 +10:00
Jamie Curnow
6f281fef42 Workaround for cloudflare plugin install (#2381) 2022-11-15 07:48:57 +10:00
Ivan Kristianto
366fcf0bed Fix nginx/certificates search query 2022-02-12 12:46:06 +07:00
jc21
d7e0ae0fa0
Merge pull request #1701 from jc21/escape-credential-backslashes 
Correctly escape backslashes in dns plugin credentials
 2022-01-02 15:29:31 +10:00
jc21
29ee48530c
Merge pull request #1703 from luoweihua7/develop 
fetch cloudflare ipv4/ipv6 fail #1405
 2022-01-02 15:28:58 +10:00
chaptergy
c803ec7e26 Adds delay after reloading nginx before requesting ssl certificate using http challenge 2021-12-30 13:21:21 +01:00
Larify
7e67f33766 fetch cloudflare ipv4/ipv6 fail #1405 2021-12-30 11:50:21 +08:00
chaptergy
9dd5644183 Correctly escape backslashes in dns plugin credentials 2021-12-29 16:30:49 +01:00
jc21
d45f39aae3
Merge pull request #1538 from jc21/adds-http-challenge-test 
Adds buttons to test availability of server from public internet
 2021-11-10 09:15:26 +10:00
jc21
a517e80236
Merge pull request #1567 from jc21/removes-renew-delay 
Removes random delay when renewing certificates with the renew now button
 2021-11-08 12:26:34 +10:00
Julian Reinhardt
cf4d1f73fa Uses letsencrypt config file everywhere 2021-11-06 22:31:13 +01:00
Julian Reinhardt
5f29f6b039 Removes random delay when renewing certificates with the renew now button 2021-11-05 14:20:12 +01:00
Julian Reinhardt
38ec0f9f95 Adds logs to backend when testing http challenge 2021-11-04 11:16:23 +01:00
Julian Reinhardt
9efe6cfb39 Minor fixes 2021-10-31 13:41:29 +01:00
Julian Reinhardt
c86a1a50bd Fixes formatting 2021-10-31 00:28:43 +02:00
Julian Reinhardt
c55476b196 Adds buttons to test availability of server from public internet 2021-10-31 00:19:18 +02:00
chaptergy
4e3c7749af Removes sorting of domain names when creating a certificate 2021-10-12 16:18:11 +02:00
chaptergy
6d8c4218f1 Replaces fixed certbot plugin version with optional version requirements 2021-10-07 17:13:48 +02:00
Rahul Somasundaram
ca6561bf6c
updated debug statement 2021-09-01 11:50:51 +05:30
Rahul Somasundaram
273a81471d
Revert "updated debug statement" 
This reverts commit 8b07a67133.
 2021-09-01 11:47:47 +05:30
Rahul Somasundaram
8b07a67133
updated debug statement 2021-09-01 11:46:10 +05:30
Rahul Somasundaram
32089ea272
deferenced symlinks and downloaded the certs from live directory 2021-09-01 11:41:27 +05:30
Rahul Somasundaram
658acd147c
updated certificate path 2021-09-01 07:38:11 +05:30
Rahul Somasundaram
f302ff71c9
corrected message 2021-08-30 16:36:13 +05:30
Rahul Somasundaram
8944609b63
fixed linting 2021-08-24 07:28:17 +05:30
Rahul Somasundaram
be87c45f27
thrown exception for non LE certificates 2021-08-24 06:01:08 +05:30
Rahul Somasundaram
7b67ef3015
fixed linting 2021-08-23 09:17:42 +05:30
Rahul Somasundaram
e5a3b5ee2f
added endpoint to download certificates 2021-08-23 09:03:24 +05:30
Jamie Curnow
4f10d129c2 Reload nginx after access list change. Fixes #1328 2021-08-19 08:55:53 +10:00
chaptergy
83c5c55f32
Fixes creation of certificates using the http challenge 2021-08-06 10:56:06 +02:00
Jamie Curnow
842cff130b Re-add missing certbot force renewal flag 
and cleaned up this horrible file a bit
 2021-07-01 09:57:26 +10:00
chaptergy
3f1415dad1
Use the certbot command from the PATH variable 2021-06-18 09:22:42 +02:00
chaptergy
41ef35f0d0
Fixes duckdns certbot 2021-06-07 08:27:01 +02:00
jc21
f575400bc8
Merge pull request #1081 from vipergts450/vipergts450-custom_location-patch 
Vipergts450 custom location patch
 2021-06-07 12:46:23 +10:00
vipergts450
69ee6b1699
Update nginx.js 2021-05-07 23:38:32 -04:00
vipergts450
ca1ea042b2
Update nginx.js 2021-05-07 23:31:51 -04:00
vipergts450
f26df7d9bb
Update nginx.js 2021-05-07 22:43:22 -04:00
Jamie Curnow
717105f243 Revert installing certbot. This is handled by base image jc21/nginx-full now 
Update path of certbot, and use the pip instead
 2021-05-07 13:49:31 +10:00
vipergts450
6a46e88f8f
Fix renderLocations to accept more parameters from host 
Amend renderLocations to pass more host parameters into the custom locations to match the requirements set for the default location. This will apply all parameters set in the UI to all custom locations.
 2021-05-06 22:29:21 -04:00
vipergts450
e4e94d5be0
Update nginx.js 
Adds ability for custom location templates to handle includes
 2021-05-06 14:50:09 -04:00
Héctor Pelayo
d636502eaa Add DuckDNS certbot plugin 
Uses https://github.com/infinityofspace/certbot_dns_duckdns certbot plugin to implement DuckDNS DNS challenge in order to obtain Wildcard certificates.

Requires that the user inserts his duckDNS token in "Credentials File Content" input box.
 2021-04-26 20:25:24 +02:00
Orko Garai
7e7032c051 Prevent activating nginx config after editing disabled proxy host 2021-02-18 23:05:30 +00:00
jc21
4c60dce169
Merge pull request #796 from lightglitch/patch-1 
Fix dead hosts verification count
 2021-01-03 20:14:36 +10:00
Mário Franco
bee2ceb667
Fix dead hosts verification count 2021-01-02 04:58:14 +00:00
chaptergy
6af13d4f40 Removes explicit privkeytype check and adds passphrase error 2020-12-14 12:08:39 +01:00
chaptergy
1518ecd1e9 Adds autoremove of failed certificate creations in DB 2020-11-06 12:29:38 +01:00
chaptergy
cb014027bb Makes sure credentials folder exist every time before saving credentials 2020-11-04 19:31:40 +01:00
chaptergy
60a40197f1 Always install additional dependencies for dns plugins 2020-11-03 21:59:18 +01:00
jc21
96f401cba6
Merge pull request #664 from chaptergy/fixes-expiring-hosts-renewal 
Adds certbot plugin installation check on startup
 2020-10-19 08:50:44 +10:00
MarceloLagos
190cd2d6bb
Update certificate.js 2020-10-17 23:46:18 -06:00
MarceloLagos
7ba58bdbd3
Update certificate.js 2020-10-17 23:27:12 -06:00
chaptergy
08ab62108f Fixes eslint errors 2020-10-17 12:54:38 +02:00
chaptergy
1028de8158 Adds certbot plugin installation check on startup 2020-10-17 12:13:08 +02:00
James Morgan
0df0545777 Allows auth information from AccessList not to be passed to proxied hosts. Resolves issue #153. 
Signed-off-by: James Morgan <jmorgan.au+github@gmail.com>
 2020-10-15 10:23:09 +11:00
jc21
5830bd73b9
Merge pull request #608 from Philip-Mooney/master 
Fix for access list getAll when not granted all permissions
 2020-10-15 08:33:58 +10:00
chaptergy
ac9f052309 Fixes linting errors 2020-10-14 09:55:45 +02:00
chaptergy
049e424957 Adds special case for Route53 2020-10-14 09:20:52 +02:00
chaptergy
3fec135fe5 Fixes ESlint formatting errors 2020-10-08 14:38:19 +02:00
chaptergy
95208a50a7 Increases timeouts in front- and backend 2020-10-08 13:21:17 +02:00
chaptergy
514b13fcc2 Fixes build issues due to globally used file 2020-10-06 16:12:12 +02:00
chaptergy
093b48ad7b Implements backend changes to allow more dns challenges 2020-10-06 14:52:06 +02:00
Philip Mooney
3e10b7b2b1 Fix for access list getAll when not granted all permissions 2020-09-19 22:16:16 +01:00
jc21
87f61b8527
Merge pull request #572 from jipjan/features/dns-cloudflare 
Add DNS CloudFlare with wildcard support
 2020-09-03 14:01:05 +10:00
jc21
bf8beb50b4
Merge pull request #559 from jlesage/remove-webroot-certbot-arg 
Removed the hardcoded `--webroot` certbot argument to better support DNS challenge
 2020-08-25 08:44:00 +10:00