Age | Commit message (Collapse) | Author | |
---|---|---|---|
2022-01-18 | caddytls: Add internal Caddyfile `lifetime`, `sign_with_root` opts (#4513) | Francis Lavoie | |
2022-01-18 | rewrite: Add `method` Caddyfile directive (#4528) | Francis Lavoie | |
2022-01-18 | caddyhttp: Fix HTTP->HTTPS redir not preferring HTTPS port if ambiguous (#4530) | Francis Lavoie | |
2022-01-13 | rewrite: Fix a double-encode issue when using the `{uri}` placeholder (#4516) | Francis Lavoie | |
2022-01-13 | caddytls: Fix `MatchRemoteIP` provisoning with multiple CIDR ranges (#4522) | GallopingKylin | |
2022-01-12 | caddyhttp: Return HTTP 421 for mismatched Host header (#4023) | rayjlinden | |
Potential fix for #4017 although the consensus is unclear. Made change to return status code 421 instead of 403 when StrictSNIHost matching is on. | |||
2022-01-07 | caddypki: Return error if no PEM data found | Matthew Holt | |
Best guess for https://caddy.community/t/on-fly-certificate-generation-based-on-sni/14639/4 | |||
2022-01-05 | caddyhttp: Redirect HTTP requests on the HTTPS port to https:// (#4313) | Francis Lavoie | |
* caddyhttp: Redirect HTTP requests on the HTTPS port to https:// * Apply suggestions from code review Co-authored-by: Matt Holt <mholt@users.noreply.github.com> Co-authored-by: Matt Holt <mholt@users.noreply.github.com> | |||
2022-01-05 | templates: Document .OriginalReq | Matthew Holt | |
Close caddyserver/website#91 | |||
2022-01-04 | admin, reverseproxy: Stop timers if canceled to avoid goroutine leak (#4482) | Денис Телюх | |
2022-01-04 | logging: Support turning off roll compression via Caddyfile (#4505) | Francis Lavoie | |
2022-01-04 | headers: Fix `+` in Caddyfile to properly append rather than set (#4506) | Francis Lavoie | |
2021-12-30 | caddyhttp: Fix `MatchPath` sanitizing (#4499) | Francis Lavoie | |
This is a followup to #4407, in response to a report on the forums: https://caddy.community/t/php-fastcgi-phishing-redirection/14542 Turns out that doing `TrimRight` to remove trailing dots, _before_ cleaning the path, will cause double-dots at the end of the path to not be cleaned away as they should. We should instead remove the dots _after_ cleaning. | |||
2021-12-17 | reverseproxy: Fix incorrect `health_headers` Caddyfile parsing (#4485) | Francis Lavoie | |
Fixes #4481 | |||
2021-12-15 | caddyhttp: Implement http.request.uuid placeholder (#4285) | Rainer Borene | |
2021-12-13 | caddypki: Minor tweak, don't use context pointer | Matthew Holt | |
2021-12-13 | caddyhttp: Enhance vars matcher (#4433) | Matt Holt | |
* caddyhttp: Enhance vars matcher Enable "or" logic for multiple values. Fall back to checking placeholders if not a var name. * Fix tests (thanks @mohammed90 !) | |||
2021-12-13 | pki: Avoid provisioning the `local` CA when not necessary (#4463) | Francis Lavoie | |
* pki: Avoid provisioning the `local` CA when not necessary * pki: Refactor CA loading to keep the logic in the PKI app | |||
2021-12-11 | fileserver: do not double-escape paths (#4447) | Mohammed Al Sahaf | |
2021-12-05 | docs: use backticks to not italicise glob path (#4460) | Adam Burgess | |
2021-12-02 | logging: add support for hashing data (#4434) | Kévin Dunglas | |
* logging: add support for hashing data * Update modules/logging/filters.go Co-authored-by: wiese <wiese@users.noreply.github.com> * Update modules/logging/filters.go Co-authored-by: wiese <wiese@users.noreply.github.com> Co-authored-by: wiese <wiese@users.noreply.github.com> | |||
2021-12-02 | caddyhttp: Make logging of credential headers opt-in (#4438) | Francis Lavoie | |
2021-12-02 | fastcgi: Fix a TODO, prevent zap using reflection for logging env (#4437) | Francis Lavoie | |
* fastcgi: Fix a TODO, prevent zap using reflection for logging env * Update modules/caddyhttp/reverseproxy/fastcgi/fastcgi.go Co-authored-by: Mohammed Al Sahaf <msaa1990@gmail.com> Co-authored-by: Mohammed Al Sahaf <msaa1990@gmail.com> | |||
2021-11-29 | templates: fix inconsistent nested includes (#4452) | Tim Culverhouse | |
2021-11-29 | caddyhttp: Split up logged remote address into IP and port (#4403) | Francis Lavoie | |
2021-11-29 | logging: Remove common_log field and single_field encoder (#4149) (#4282) | Matt Holt | |
2021-11-24 | reverseproxy: Adjust defaults, document defaults (#4436) | Francis Lavoie | |
* reverseproxy: Adjust defaults, document defaults Related to some of the issues in https://github.com/caddyserver/caddy/issues/4245, a complaint about the proxy transport defaults not being properly documented in https://caddy.community/t/default-values-for-directives/14254/6. - Dug into the stdlib to find the actual defaults for some of the timeouts and buffer limits, documenting them in godoc so the JSON docs get them next release. - Moved the keep-alive and dial-timeout defaults from `reverseproxy.go` to `httptransport.go`. It doesn't make sense to set defaults in the proxy, because then any time the transport is configured with non-defaults, the keep-alive and dial-timeout defaults are lost! - Sped up the dial timeout from 10s to 3s, in practice it rarely makes sense to wait a whole 10s for dialing. A shorter timeout helps a lot with the load balancer retries, so using something lower helps with user experience. * reverseproxy: Make keepalive interval configurable via Caddyfile * fastcgi: DialTimeout default for fastcgi transport too | |||
2021-11-23 | logging: add a regexp filter (#4426) | Kévin Dunglas | |
2021-11-23 | logging: add a filter for cookies (#4425) | Kévin Dunglas | |
* feat(logging): add a filter for cookies * Improve godoc and add validation | |||
2021-11-23 | logging: add a filter for query parameters (#4424) | Kévin Dunglas | |
Co-authored-by: Matt Holt <mholt@users.noreply.github.com> Co-authored-by: Francis Lavoie <lavofr@gmail.com> | |||
2021-11-23 | fileserver: browse: do not encode the paths in breadcrumbs and page title ↵ | Mohammed Al Sahaf | |
(#4410) | |||
2021-11-22 | fileserver: Fix handling of symlink sizes in directory listings (#4415) | Jeremy Lin | |
2021-11-22 | caddyhttp: Log non-500 handler errors at debug level (#4429) | Francis Lavoie | |
Fixes #4428 It's best to still log handler errors at debug level so that they're hidden by default, but still accessible if additional details are necessary. | |||
2021-11-22 | caddyhttp: Log empty value for typical password headers | Matthew Holt | |
Work around for common misconfiguration | |||
2021-11-15 | fileserver: Move default browse template into a separate file (#4417) | Jeremy Lin | |
This makes it easier for users to find the default browse template if they want to create a custom template based on that. It also makes it easier to view the template with proper syntax highlighting. | |||
2021-11-08 | caddyhttp: Sanitize the path before evaluating path matchers (#4407) | Francis Lavoie | |
2021-11-02 | caddytls: Mark storage clean timestamp at end of routine (#4401) | Matt Holt | |
See discussion on 42b7134ffa3bf3e9e86514c82407979c2627a5ab | |||
2021-10-27 | Fix lint message in metrics tests | Matthew Holt | |
2021-10-26 | reverseproxy: Sanitize scheme and host on incoming requests (#4237) | Francis Lavoie | |
* caddyhttp: Sanitize scheme and host on incoming requests * reverseproxy: Sanitize the URL scheme and host before proxying * Apply suggestions from code review Co-authored-by: Matt Holt <mholt@users.noreply.github.com> Co-authored-by: Matt Holt <mholt@users.noreply.github.com> | |||
2021-10-20 | fileserver: Prevent focusing filter from scrolling on page load (#4393) | Klaus Helenius | |
2021-10-19 | map: Fix 95c03506 (avoid repeated expansions) | Matthew Holt | |
2021-10-18 | reverseproxy: Prevent copying the response if a response handler ran (#4388) | Francis Lavoie | |
2021-10-16 | fileserver: Fix compression breaks using httpInclude (#4352) (#4358) | Y.Horie | |
2021-10-13 | map: Fix regex mappings | Matthew Holt | |
It didn't really make sense how we were doing them before. See https://caddy.community/t/map-directive-and-regular-expressions/13866/6?u=matt | |||
2021-10-11 | caddyhttp: reverseproxy: clarify warning for -insecure (#4379) | Simão Gomes Viana | |
The question would only receive bad answers so it's better to just say what the option actually does. | |||
2021-10-01 | caddyhttp: Placeholder for client cert in DER + base64 format (#4241) | Oleg | |
* client.certificate_pem_encoded in base64 format * base64-encoding without pem encoding;naming change * fix cert.Raw instead of block.bytes | |||
2021-09-29 | Move from deprecated ioutil to os and io packages (#4364) | KallyDev | |
2021-09-27 | Revert 3336faf2 (close #4360) | Matthew Holt | |
Debug log is correct level for this | |||
2021-09-24 | General minor improvements to docs | Matthew Holt | |
2021-09-24 | reverseproxy: Log error at error level (fix #4360) | Matthew Holt | |