YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
6901 commits 33 branches 409 tags 24 MiB
Commit graph

53 commits

Author SHA1 Message Date
Alexandre Aubin
bcb803c0c3 Add new setting to enable experimental security features 2021-08-18 22:10:25 +02:00
Alexandre Aubin
c8d2ae0606 [fix] nginx conf: we need those conf.inc to be there during the init 2021-08-08 20:13:00 +02:00
Tagada
f3166b71b4 [enh] Add settings to block webadmin from outside 2021-07-12 18:32:12 +02:00
cyxae
30421954a4
Add an option to disable the 'YunoHost' panel overlay in web apps (#1071) 
* Add an option to disable the 'YunoHost' panel overlay in apps

* set default value for overlay as true

* Add a hook to auto-update nginx conf + fix deprecated 'service regen-conf'

* Change name of setting to ssowat.panel_overlay.enabled

* [fix] Duplicate function

* Quote var, just in case the var is empty for some reason

Co-authored-by: ljf (zamentur) <zamentur@users.noreply.github.com>
Co-authored-by: Alexandre Aubin <alex.aubin@mailoo.org>
 2021-04-02 02:21:29 +02:00
Alexandre Aubin
ba884d5b6d Get rid of yunohost.local in main domain nginx conf ... because this interfer with using yunohost.local for postinstall. Just let it be handled by the default vhost 2020-10-03 16:32:31 +02:00
Alexandre Aubin
ac9182d69f Move redirect to /yunohost/admin to a separate nginx conf file to allow customizing it more easily 2020-06-25 21:42:46 +02:00
Alexandre Aubin
d8c2f436f9
Merge branch 'stretch-unstable' into misc-optimizations 2020-04-29 18:14:05 +02:00
Alexandre Aubin
319898baf7 Feed domain list to regen-conf hooks directly through env to avoid having to call 'yunohost domain list' 2020-04-25 03:49:30 +02:00
Alexandre Aubin
cf32853f81 Fetch all cert-status at once because running a yunohost command takes ~3ish seconds per call 2020-04-25 03:44:26 +02:00
Alexandre Aubin
6d42baff38 Be more robust against broken config or service failing to start, show info to help debugging 2020-04-21 04:48:13 +02:00
Kayou
887304919e
Merge pull request #917 from YunoHost/fix-acme-challenge-snippet 
Get rid of domain-specific acme-challenge snippet, use a single snippet included in every conf
 2020-04-09 21:07:50 +02:00
Alexandre Aubin
be8427d5a1
Gotta generate security.conf.inc during .deb deployment because it's needed by yunohost_admin.conf 2020-04-08 12:15:01 +02:00
Alexandre Aubin
3a7b93d8aa Get rid of domain-specific acme-challenge snippet, use a single snippet including in every conf 2020-04-06 18:09:14 +02:00
Alexandre Aubin
af415e38e6 Factorize ciphers and headers configuration into a common file for all vhosts 2020-03-23 22:43:29 +01:00
Alexandre Aubin
97e5d3b992 Remove those random sudo which are useless yet triggers LDAP warning when LDAP is in bad state 2019-11-28 00:10:40 +01:00
Alexandre Aubin
1fc9f7ddad Fix yunohost_admin.conf initialization 2019-04-11 14:27:09 +02:00
Alexandre Aubin
dcff10f6f8 Simplify setting usage in regenconf hooks 2019-03-22 16:31:45 +01:00
Alexandre Aubin
fee79820e0 Rename nginx and ssh compatibility setting for consistency 2019-03-22 16:15:11 +01:00
Alexandre Aubin
a1d85b6350
Merge branch 'stretch-unstable' into featureCipherStrategy 2019-02-25 00:56:20 +01:00
Alexandre Aubin
d495d315c0 [fix] Loading only one helper file leads to errors because missing getopts 2019-02-16 16:36:35 +01:00
Romuald du Song
aaf6dba8d7 fix yunhost admin config filename 2019-02-14 23:03:27 +01:00
Romuald du Song
12d0e0e1de add instruction to rebuild yunohost-admin conf 2019-02-14 22:34:35 +01:00
Romuald du Song
e0aaf6f8a1 add trace for process check 2019-02-09 11:56:33 +01:00
Romuald du Song
8e1034771a use setting security_ciphers_compatibility to define security configurations 2019-02-04 23:01:16 +01:00
frju365
fa66a7b8c7 OCSP Stapling (#533) 
* [enh] Jinja templating
* [enh] try to enable OCSP
* typo
* [mod] use jq (json parsing)
* typo
* well escaping "" :)
* [fix] if 2d part condition
* We need to include this for ynh_render_template to be available >.> ...
* Simplify code
* Gotta export domain too...
* Remove quotes in variable itself..
* Replace previous code blocks by new code
 2018-10-27 16:38:25 +02:00
Alexandre Aubin
1de1b43e2f Avoid breaking the regen-conf if there's no .well-known mail autoconfig.xml to list 2018-07-25 19:14:51 +00:00
Bram
7ef1387d8f
Merge pull request #495 from pitchum/experiments-by-pitchum 
[enh] Add MUA autoconfig.
 2018-07-23 07:00:08 +02:00
Laurent Peuch
20d6c30503 [fix] sometime nginx is not running 2018-06-30 11:39:01 +02:00
pitchum
a7e85dbbba [enh] Add MUA autoconfig. 2018-06-25 09:45:13 +02:00
opi
8763712575 [fix] Restart Nginx breaks web admin. Reload instead and fixes #330. 2016-05-18 11:04:29 +02:00
Jérôme Lebleu
13ed77a6ca [fix] Set default values for force and dry_run in conf_regen hooks 2016-04-22 12:18:25 +02:00
Jérôme Lebleu
cdf3c13bf5 [enh] Add a dry-run option for service_regen_conf 2016-04-19 20:52:45 +02:00
Jérôme Lebleu
d24cd494f3 [fix] Update package first install and call some conf_regen hooks with init 2016-04-16 19:32:18 +02:00
Jérôme Lebleu
6c3de740aa [enh] Restart services as needed only in conf_regen hooks 2016-04-16 18:36:20 +02:00
Jérôme Lebleu
d851237dc2 [enh] Update nginx conf_regen hook and simplify plain conf files copy 2016-04-16 16:43:13 +02:00
Jérôme Lebleu
96d4eb3396 [clean] Move conf_regen hooks to prevent issue while updating them 2016-04-11 17:30:57 +02:00
Julien Malik
1300f4c0ca [fix] fix lintian script-not-executable 2016-03-12 00:20:52 +01:00
julienmalik
9d6f9d4c07 Merge pull request #121 from infertux/nginx_server_tokens 
[fix] Don't emit Nginx version
 2016-02-29 12:11:20 +01:00
Cédric Félizard
fe26478e03 Don't emit Nginx version 
http://nginx.org/en/docs/http/ngx_http_core_module.html#server_tokens
 2016-02-29 10:39:13 +00:00
julienmalik
b20bd7311d [fix] misssing sudo when removing files in /etc/nginx 2016-02-25 12:18:40 +01:00
julienmalik
8196717e96 [fix] missing brackets for testing saferemove output 2016-02-25 12:18:01 +01:00
Jérôme Lebleu
ec590bdef8 [fix] Restart the service if reloading fails in conf_regen (bugfix #195) 2016-02-21 18:11:27 +01:00
Jérôme Lebleu
13dd9b4f89 [fix] Use --output-as instead of deprecated options 2015-11-30 18:35:41 +01:00
kload
eea9b2e3af [fix] Do not mind notices and warnings when parsing command response 2015-10-31 18:03:51 +01:00
kload
0e76b82360 [fix] begin serial at 00 for SSL cert generation 2015-10-02 23:34:05 +02:00
kload
29b0088ffc [fix] Do not increment serial unless YunoHost is postinstalled 2015-10-01 18:10:35 -04:00
kload
91ad01b839 [fix] Compatibility with the new moulinette '--plain' option 2015-10-01 16:38:22 -04:00
kload
0ed2081f89 [enh] Make postinstall and main domain change regen-conf friendly 2015-10-01 16:36:30 -04:00
kload
15533c7c6f [fix] Various fixes on configuration regeneration 2015-09-30 19:36:55 -04:00
kload
8a2c607933 [fix] Remove unused domain configurations on impacted services 2015-09-30 19:02:15 -04:00