starred/NPMplus
1
0
Fork 0
mirror of https://github.com/ZoeyVid/NPMplus.git synced 2026-03-03 04:16:58 +00:00
Code Issues Packages Projects Releases 21 Wiki Activity
2,915 Commits 5 Branches 149 Tags
develop
Commit Graph

248 Commits

Author SHA1 Message Date
Zoey
0da1cc184f fix #2847 2026-03-02 21:41:30 +01:00
Zoey
8521cf19cc invert default of NGINX_TRUST_SECPR1 to true / add AUTH_REQUEST_ANUBIS_USE_CUSTOM_IMAGES env 2026-03-02 21:41:30 +01:00
Zoey
537ca98f8f improve php-fpm settings 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-03-02 18:42:15 +01:00
Zoey
ca8f602466 merge upstream 2026-02-27 23:12:46 +01:00
renovate[bot]
d2b446192f dep updates 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-02-26 09:17:55 +01:00
Zoey
074a01546a add docs route 2026-02-22 18:04:58 +01:00
renovate[bot]
246d31c2fd dep updates 2026-02-22 18:04:58 +01:00
Zoey
951062a6b9 switch to aws-lc/add patches for zlib-ng and brotli cert compression 2026-02-20 17:41:02 +01:00
Zoey
c0c4f748b2 many security improvements: rate limits, limit upload size, fix: disabling totp and recretaing backup codes now requires a valid code, dep updates 2026-02-19 19:11:52 +01:00
Zoey
dffa4a9888 use zlib-ng instead of zlib/use quickjs-ng for njs/fix #2781/dep updates/ 2026-02-18 23:26:22 +01:00
Zoey
dde694b57d force https for the npmplus and goaccess ui 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-02-17 07:29:54 +01:00
Zoey
7499388f49 re-add AES128-GCM-SHA256 cipher(suites) 2026-02-16 09:32:58 +01:00
Zoey
94a0e4a42f fix default of npmplus_x_frame_options in custom locations again 2026-02-15 10:09:23 +01:00
Zoey
8cd52e7f65 fix default of npmplus_upstream_compression/npmplus_x_frame_options in custom locations 2026-02-15 09:57:40 +01:00
Zoey
c2c33709d6 readd NGINX_WORKER_CONNECTIONS env/small fixes 2026-02-15 08:21:57 +01:00
Zoey
a2ba84ea6f prepare next release 2026-02-14 22:46:43 +01:00
Zoey
bdfc5a6086 remove NGINX_LOAD_GEOIP_MODULE (NOT geoip2) 2026-02-14 21:42:10 +01:00
Zoey
50f898f805 invert SKIP_IP_RANGES by renaming it to TRUST_CLOUDFLARE 2026-02-14 17:51:15 +01:00
Zoey
3cdfb6d08d validate AUTH_REQUEST_ envs/fix proxying to sub paths 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-02-14 17:51:15 +01:00
Zoey
ac6d62aa4d fix csp 2026-02-14 17:51:15 +01:00
Zoey
d43a4f8fc2 only send X-Original-URL/X-Original-Method if needed 2026-02-14 17:51:15 +01:00
Zoey
644e3de10e add CSP drafts to NPMplus UI and goaccess 2026-02-11 18:04:38 +01:00
Zoey
39ae2e6c51 fix: unsetting the acme profile doe snot reste it for existing certs, which will causes issues when switching to a diffrent ca which does not support this profile 2026-02-10 20:06:21 +01:00
Zoey
4ce99b36ee add x_frame_options to the webui (and auth_request but it does nothing currently) 2026-02-10 20:06:21 +01:00
Zoey
312c3f1183 keep upstreams Referrer-Policy if sent 2026-02-10 20:06:21 +01:00
Zoey
3988a7713c docs: https://github.com/ZoeyVid/NPMplus/discussions/2695#discussioncomment-15704676 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-02-05 23:47:05 +01:00
Zoey
93522c0879 merge upstream/dep updates 2026-01-27 23:24:17 +01:00
Zoey
923cd457a7 set crowdsec_disable_appsec to 0 by default to fix log spam if disabled 2026-01-25 09:58:01 +01:00
Zoey
da4b052b6d run certbot every six hours 2026-01-20 22:08:22 +01:00
Zoey
82af671e25 add buffering and noindex button/enable unzstd 2026-01-20 22:08:21 +01:00
Zoey
7cd9b83611 Streams: add TLS to upstream button 2026-01-20 22:08:21 +01:00
Zoey
6053d73a3b readd njs 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-01-17 22:42:43 +01:00
Zoey
65a5b73396 do not log an error if /etc/letsencrypt is mounted and there are no files to move 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-01-17 22:29:56 +01:00
Zoey
d0ea12347a update template version 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-01-17 12:52:26 +01:00
Zoey
8ab731433f update template version to also force host regneration when updating from last update 2026-01-16 21:26:35 +01:00
Zoey
864e947d8d update template version 2026-01-15 23:47:13 +01:00
Zoey
f34b1dc535 move html files 2026-01-15 23:39:43 +01:00
renovate[bot]
f07a002244 run certbot every 12 hours by default/dep updates 2026-01-15 22:12:19 +01:00
Zoey
ec67b04c2f keep brotli enabled when openappsecs attachment module is loaded as they now support brotli 
Signed-off-by: Zoey <zoey@z0ey.de>
 2026-01-13 22:20:21 +01:00
Strana-Mechty
db72c8b372 Add compression for less.js 
Add compression for the less.js MIME, this stylesheet library is used by a few selfhosted applications like Cryptpad and (like regular CSS) is compressible.

Signed-off-by: Strana-Mechty <124194364+Strana-Mechty@users.noreply.github.com>
 2026-01-13 12:34:26 +01:00
Zoey
1893ca2b81 fix logrotate #2476, re-add lost dns plugins #2475, disable auth_request for acme 2026-01-05 19:04:28 +01:00
Zoey
8dab78e5e5 add NGINX_FORCE_X25519MLKEM768 env 2026-01-03 16:01:26 +01:00
Zoey
b848c836c7 add NGINX_DISABLE_TLS12 env 2026-01-03 15:25:16 +01:00
Zoey
d02f95f557 increase proxy_headers_hash again 2025-12-30 22:57:52 +01:00
Zoey
57309d54c4 fix duplicated mime types again 2025-12-30 22:07:30 +01:00
Zoey
a2d199e213 fix duplicated warnings in mime type list 2025-12-30 19:15:21 +01:00
Zoey
c982967a72 close #2452 (adjust compressed mime types) 2025-12-30 18:40:26 +01:00
Zoey
e41c804904 add compatibility to authentiks broken OIDC and add OIDC_REQUIRE_VERIFIED_EMAIL env 2025-12-29 21:26:12 +01:00
Zoey
3a1a4c1e4c add NGINX_TRUST_SECPR1 env and remove NGINX_WORKER_CONNECTIONS env 2025-12-29 18:19:59 +01:00
Zoey
e53cbdff11 add two more headers and fixes 
Signed-off-by: Zoey <zoey@z0ey.de>
 2025-12-29 18:19:59 +01:00