Commit Graph

147 Commits

Author SHA1 Message Date
Eric Nemchik
0d92109b68 Unify auth config approach 2023-02-05 16:45:56 -06:00
Eric Nemchik
3ef896e611 overwrite header from proxy.conf to not include $server_port 2023-02-05 14:14:29 -06:00
Eric Nemchik
e057a7ce0d Unify auth config approach 2023-02-05 12:05:18 -06:00
Eric Nemchik
db4e661126
Update authelia-location.conf.sample 2023-02-03 09:14:53 -06:00
driz
c137a66726
Update root/defaults/nginx/authentik-server.conf
Co-authored-by: Eric Nemchik <eric@nemchik.com>
2023-02-02 10:33:15 -05:00
driz
7be5f1caec
Update authentik-location.conf 2023-02-02 10:32:51 -05:00
Eric Nemchik
777fa62481 Add new headers 2023-02-01 19:35:23 -06:00
driz
a95a0f639a
Update authentik-location.conf 2023-02-01 17:17:59 -05:00
driz
c686dfee47
Update authentik-server.conf 2023-02-01 17:17:42 -05:00
driz
38e1845e73
Add files via upload 2023-02-01 17:09:59 -05:00
Eric Nemchik
5e47b02496 Update Authelia configs and include site-confs sample for Authelia 2023-02-01 11:50:56 -06:00
Eric Nemchik
3980ee1ecf Formatting (tabs) 2023-01-21 08:13:33 -06:00
Eric Nemchik
cf21b8c68e replace nginx service location in renewal hooks 2023-01-20 23:32:43 -06:00
Eric Nemchik
7b9c67838f Fix directadmin conf prefix 2022-12-13 17:22:31 +00:00
Eric Nemchik
77d02ad824 Revamp certbot init 2022-12-08 15:22:14 +00:00
Eric Nemchik
ed5efcfa75 Remove defunct cloudxns plugin 2022-12-03 15:30:41 +00:00
Eric Nemchik
c5b8744d3b Brace for impact 2022-11-29 15:18:56 +00:00
Eric Nemchik
3db8f51eb0 Shellcheck and formatting 2022-11-22 20:55:25 +00:00
Eric Nemchik
53db9755b2 Switch to certbot-dns-duckdns 2022-10-06 19:59:02 +00:00
Eric Nemchik
3fb6e3f54d Update cpanel and gandi dns plugin handling.
Minor adjustments to init logic.
2022-10-06 14:58:47 +00:00
Feilner
51dc4ce7b2 use certbot file hooks instead of command line hooks 2022-10-05 19:41:49 +00:00
Eric Nemchik
0de67cc224 Add godaddy and porkbun dns plugins
Also add missing python packages for dns plugins that are already supported
2022-10-04 17:51:32 -05:00
Eric Nemchik
c82e0fef4d Add default_server back to default site conf's https listen 2022-10-03 18:13:08 +00:00
Maximilian Senftleben
207256ad66 Added do (domainoffensive) validation plugin for certbot. closes #262
# Conflicts:
#	readme-vars.yml
#	root/etc/cont-init.d/50-certbot
2022-09-22 23:55:32 +02:00
aptalca
090934e854
Merge pull request #248 from j-brewer/master
Added acmedns validation plugin for certbot
2022-09-22 16:24:35 -04:00
Eric Nemchik
b346b4610c
Update authelia-server.conf.sample 2022-09-22 14:02:22 -05:00
Eric Nemchik
c51ae10f47
Update authelia-server.conf.sample 2022-09-22 13:50:02 -05:00
Duck42
132666a2a0 Added acmedns validation plugin for certbot 2022-09-22 12:56:45 -05:00
Eric Nemchik
96f746d5ce Remove error_pages 2022-09-01 18:34:35 -05:00
Eric Nemchik
ea2d9b30eb nginx conf tweaks 2022-08-23 09:30:30 -05:00
aptalca
2f4c1fed51 remove workaround for authelia CVE-2021-32637
fixed upstream a long time ago
2022-08-22 09:31:02 -04:00
Eric Nemchik
6123952de7 Use standard nginx.conf from lsio alpine nginx base image 2022-08-20 09:40:38 -05:00
Corey Ramirez-Gomez
e22a083d7a Add Dynu DNS Support 2022-08-10 09:27:53 +00:00
Robin Dadswell
3893db4077 New: Azure DNS support 2022-04-17 22:09:14 +01:00
Potterer
a9fd11ff77
Add Loopia DNS Support (#226) 2022-04-09 17:14:35 +01:00
aptalca
eb7df9d9fc
Merge branch 'master' into standalone-dns-validation 2022-04-05 19:08:28 -04:00
quietsy
665eace79f Ignore plex unauthorized requests 2022-01-11 09:19:16 +02:00
quietsy
251917b23f Added a fail2ban jail for nginx unauthorized 2022-01-09 17:16:11 +02:00
Marcel Hofer
1ff4691000
Merge branch 'master' into standalone-dns-validation 2021-12-12 01:06:20 +01:00
quietsy
4929672e62 Move maxmind to a new mod 2021-12-04 20:57:16 +02:00
Marcel Hofer
2878d84050 Merge remote-tracking branch 'linuxserver/master' into standalone-dns-validation
# Conflicts:
#	readme-vars.yml
#	root/etc/cont-init.d/50-config
2021-11-24 22:02:24 +01:00
Questionario
96e0fc7838
Update infomaniak.ini 2021-11-22 08:04:05 +01:00
Questionario
671d51a345
Create infomaniak.ini 2021-11-22 07:46:55 +01:00
Marcel Hofer
85efd12ba4
Merge branch 'master' into standalone-dns-validation 2021-11-20 19:47:43 +01:00
aptalca
48f6b00530
Merge branch 'master' into dnspod-support 2021-11-20 12:08:46 -05:00
Marcel Hofer
f307dbbfb7
Merge branch 'master' into standalone-dns-validation 2021-11-16 21:12:06 +01:00
dongshuzhao
bf21716886 Update dnspod.ini document address
resolve linuxserver/docker-swag#98
2021-11-13 01:04:17 +08:00
FarisZR
9b169f5da2 add desec config 2021-11-12 16:22:13 +03:00
dongshuzhao
08c23bde51 Add DnsPod support.
resolve linuxserver/docker-swag#98
2021-11-12 16:58:47 +08:00
Marcel Hofer
0ce2ae551a Add support for standalone DNS validation 2021-11-06 16:07:51 +01:00
Eric Nemchik
66a4c1203b Mitigate https://httpoxy.org/ vulnerabilities.
Ref: https://www.nginx.com/blog/mitigating-the-httpoxy-vulnerability-with-nginx#Defeating-the-Attack-using-NGINX-and-NGINX-Plus
2021-10-26 08:33:36 -05:00
obsidiangroup
0ffa850cdc Fixed HE DNS validation.
Fixed HE DNS validation to adhere to certbot/certbot PR#8131 (https://github.com/certbot/certbot/pull/8131)
2021-10-06 13:41:58 -04:00
obsidiangroup
aa9990b496 Added support for Hurricane Electric (HE) DNS validation
Adds support for Hurricane Electric's Free DNS Service validation.
2021-10-05 19:23:25 -04:00
quietsy
b309e1ce45 Add an optional header to opt out of Google FLoC 2021-09-19 22:37:47 +03:00
aptalca
31190157fb add ionos dns plugin 2021-08-01 12:51:47 -04:00
aptalca
224abb686d update authelia-server.conf for resolver and CVE 2021-05-28 17:40:28 -04:00
aptalca
012e729f49 emergency fixes to default and proxy.conf 2021-05-18 11:47:01 -04:00
aptalca
12386fbfc7 fix typos 2021-05-14 17:07:21 -04:00
aptalca
24c5e9f243 use lsio wheel index, use ffdhe4096 per rfc7919 2021-05-14 10:43:47 -04:00
Eric Nemchik
b1ae12189f Fix indentation 2021-04-27 14:32:41 -05:00
Eric Nemchik
d77a64aab8 Use default log format, set resolver and worker_processes dynamically 2021-04-27 14:23:35 -05:00
Eric Nemchik
e2e39b9f89 Format files 2021-04-27 10:08:22 -05:00
Eric Nemchik
870cd4bd93 Rework nginx.conf to be inline with alpine upstream and relocate lines from other files 2021-04-27 09:30:41 -05:00
James Elliott
e116a1829e
feat(authelia): add remote name/email headers and pass http method
This adds newer remote credential information from the auth_request headers sent by Authelia, Remote-Name includes the users display name, and Remote-Email includes their email. Additionally it sets the X-Forwarded-Method header to the original $request_method detected by nginx, which is used for the new acl rule method filter.
2021-04-21 13:17:25 +10:00
Thomas Cuthbert
0ac5a2a4f2 Add vultr certbot authenticator plugin 2021-04-12 21:10:12 +08:00
Simon Lepla
6f8101e9b1 add support for directadmin dns validation 2021-03-14 11:53:29 +01:00
Eric Nemchik
d075d3e2c3
Merge pull request #69 from Erriez/transip-documentation
Add documentation TransIP DNS TXT usage
2021-02-10 18:11:15 -06:00
Erriez
dbd8fd4bd0 Add comments TransIP DNS TXT usage 2021-02-09 19:47:20 +01:00
aptalca
479ee5eac1 add brotli and dav-ext, remove lua 2021-02-09 10:50:54 -05:00
aptalca
6f25f82996 add support for hetzner dns validation 2021-01-26 18:11:44 -05:00
aptalca
af548a0966 Merge branch 'master' into zerossl 2021-01-08 18:16:07 -05:00
Roxedus
77a82f7163
Fix issues from review 2021-01-08 15:47:36 +01:00
Roxedus
6ebfdc1e87
Update dates 2021-01-03 20:23:48 +01:00
Roxedus
76f0a8c34c
Added helpers
Replaced index.html with page with some info, including a the swag documentation.
Added http502 helper page, also linking to our docs.

UI suggestions welcome
2020-12-30 22:58:59 +01:00
aptalca
87cdcfdb18 update dns conf inis 2020-12-27 16:48:09 -05:00
aptalca
ffd9b806f9
Merge branch 'master' into master 2020-12-10 09:38:27 -05:00
aptalca
1bdf9a98e2 add new dns methods, check confs, add workflows
add gehirn and sakuracloud dns validation
add conf checker
add trigger workflows
remove deprecated certbot option for public ip logging
2020-12-09 15:43:05 -05:00
nett_hier
1769aad85f
Update njalla.ini 2020-11-25 23:27:57 +01:00
netthier
8de14f3790
Create njalla.ini 2020-11-25 22:09:46 +01:00
Tristan Bastian
4d9439c899
add sample netcup.ini file 2020-10-31 23:54:11 +01:00
Eric Nemchik
1d08b6f2e1 Update changelog 2020-10-29 10:38:32 -05:00
Eric Nemchik
01dd12f567
Set frame-ancestors in Content-Security-Policy
https://infosec.mozilla.org/guidelines/web_security#x-frame-options
2020-10-29 10:13:55 -05:00
GilbN
a81ab8bcf1
update version 2020-10-27 09:37:00 +01:00
gilbN
38fa575e1e adds a lan allow list if default is no. 2020-10-26 22:51:04 +01:00
Eric Nemchik
2c78490f28 Fix dates 2020-10-04 10:00:32 -05:00
Eric Nemchik
8d5f6e56b8 Cleanups and reordering 2020-10-04 09:56:14 -05:00
Eric Nemchik
f626c5f0d4
Update geoip2.conf 2020-09-22 20:08:00 -05:00
Eric Nemchik
b58ee45818 Adjust geoip2 instructions 2020-09-22 19:53:40 -05:00
Marius
891aa6bc71 added suggested changes 2020-09-22 17:16:01 +02:00
gilbN
3ac3035efd typo 2020-09-21 00:39:13 +02:00
gilbN
b3af27456a nginx.conf version update 2020-09-21 00:01:15 +02:00
gilbN
57b70d654b added geoip2 configs 2020-09-20 23:30:06 +02:00
Eric Nemchik
c67946115a
Update nginx.conf
Fix indentation
2020-09-07 22:20:57 -05:00
Eric Nemchik
596acd2d7a Version dates on confs 2020-09-01 13:16:31 -05:00
Eric Nemchik
9f1cc323b1 WebSocket proxying
http://nginx.org/en/docs/http/websocket.html
2020-09-01 09:02:42 -05:00
aptalca
cb468cd7ee fix github links 2020-08-03 13:41:52 -04:00
aptalca
9352a59250 initial release 2020-08-03 11:00:14 -04:00