pleroma

Commit Graph

Author	SHA1	Message	Date
shibayashi	3487e15963	installation/pleroma.vcl: Add HTTP security headers	2018-08-29 01:28:10 +02:00
shibayashi	82e661cd07	installation/caddyfile-pleroma.example: Add Content-Security-Policy	2018-08-29 01:16:13 +02:00
Haelwenn (lanodan) Monnier	0fd2eaf7af	installation/pleroma.nginx: Add Content-Security-Policy Closes: https://git.pleroma.social/pleroma/pleroma/issues/266	2018-08-28 20:54:50 +02:00
shibayashi	bff5ed154f	Improve example Caddyfile	2018-08-26 03:36:52 +02:00
vaartis	9c5ca9e15e	Add an OpenRC service	2018-08-23 19:34:11 +03:00
Artik Banana	394d0c94c4	Add comment about TLS curves for older servers.	2018-06-16 18:14:05 +00:00
dex	750cfbf38d	* fix nginx 1.15 warning: nginx: [warn] the "ssl" directive is deprecated, use the "listen ... ssl" directive instead	2018-06-13 09:54:23 +00:00
Artik Banana	93c614bf13	* Removed TLSv1 and TLSv1.1 * Added OCSP Stapling * Added SSL Cache * Changed ciphers * Specified ECDH curves	2018-06-11 23:01:14 +00:00
Artik Banana	c645a8de2b	Security upgrades: * Removed TLSv1 and TLSv1.1 * Added OCSP Stapling * Added SSL Cache * Changed ciphers * Specified ECDH curves	2018-06-11 22:56:54 +00:00
witti	13925e0eb3	caddy config example	2018-06-03 20:13:33 +02:00
Dominik V. Salonen	a6fd9c4b00	Update pleroma.nginx proxy_ignore_client_abort will continue to fetch from upstream even if a client aborts the connection. This is highly recommended when cache is being used. If a client leaves/refreshes the page while a user's avatar or some other media is halfway loaded, the cached copy might in some cases be broken. Leaving future requests to the same URL broken until cache expires.	2018-05-28 10:36:27 +00:00
Niklas Poslovski	f0e8194a71	Repair some access-control headers required for third-party webclients	2018-05-23 08:48:28 +02:00
Niklas Poslovski	d81a4e9280	Add access-control-expose-headers to Nginx default config	2018-05-22 15:39:29 +02:00
lambda	bb864e96ad	Merge branch 'patch-2' into 'develop' Nginx config - secure defaults See merge request pleroma/pleroma!146	2018-05-13 08:39:37 +00:00
lambda	17bcff6445	Merge branch 'feld-varnish' into 'develop' More varnish fixes See merge request pleroma/pleroma!149	2018-05-13 08:34:58 +00:00
Normandy	38f5f6f659	Remove alias directive in service file Systemd will complain otherwise.	2018-05-11 05:19:20 +00:00
Mark Felder	a85d051675	Don't strip headers from backend for /notice/ either	2018-05-07 23:44:40 +00:00
Mark Felder	4233b1504f	Caching notice URLs does not produce pleasant results	2018-05-07 23:43:27 +00:00
lambda	a9baf955fa	Merge branch 'feld-varnish' into 'develop' Caching /objects/ URLs breaks them in Mastoweb as they don't redirect to the /notice/ See merge request pleroma/pleroma!110	2018-05-06 18:43:57 +00:00
Artik Banana	0a1fd8adf0	Added headers for a more secure default.	2018-05-06 14:19:29 +00:00
csaurus	1c6a691570	Add info about certbot with the webroot plugin to pleroma.nginx	2018-04-20 18:43:49 -04:00
Mark Felder	8dbb4c6c50	Remove hack for /about/more as we are doing this in Pleroma now	2018-04-19 18:58:13 +00:00
Mark Felder	5256c712dc	Caching /objects/ URLs breaks them in Mastoweb as they don't redirect to the /notice/ Not sure why it matters if you cache it or not. What's different about this JSON blob? Perhaps it's a header that needs to be set for the redirect to happen?	2018-04-13 13:40:24 +00:00
lambda	6ff583e5e1	Merge branch 'feld-varnish' into 'develop' Remove attempted caching of toots See merge request pleroma/pleroma!106	2018-04-10 14:45:46 +00:00
Mark Felder	fcb32345d7	Remove attempted caching of toots This does not work as expected. We should not attempt to be clever here. Varnish will do the right thing if we just teach Pleroma to set headers properly for content we know can be cached.	2018-04-10 14:17:23 +00:00
Stanislas	73ca18744e	Indentation for Apache vhost	2018-04-10 08:08:27 +00:00
lambda	210755ac46	Merge branch 'develop' into 'develop' Fix max upload size in nginx config. See merge request pleroma/pleroma!102	2018-04-09 08:41:34 +00:00
nepfag	5cb3d441bc	Apache config for everything on one host.	2018-04-08 19:22:24 +00:00
Hector A. Escobedo	7e262c2997	Fix max upload size in nginx config. The built-in nginx default does not allow users to upload images larger than 1 MB. This increases the maximum request size to match the default Pleroma config upload_limit parameter. Some helpful comments were also added.	2018-04-08 11:21:29 -04:00
lambda	f5943f4a59	Delete Caddyfile It doesn't work correctly.	2018-04-05 11:15:02 +00:00
William Pitcock	d8464b603e	nginx: document how to enable CORS support	2018-04-01 01:28:27 -05:00
lambda	f8f3abe1be	Update pleroma.nginx	2018-03-28 09:34:08 +00:00
Mark Felder	c8c0519f52	Clarify vcl_synth is for all 301s we generate	2018-03-20 01:28:50 +00:00
Mark Felder	bdc522da1b	Add ability to PURGE the cache Someday Pleroma will learn this skill :-)	2018-03-20 01:24:58 +00:00
Mark Felder	1d06f5037d	Add example Varnish VCL	2018-03-20 01:12:40 +00:00
lambda	060ac6cb95	Update pleroma.nginx	2018-03-08 18:00:59 +00:00
lambda	189e9d63bc	Merge branch 'feature/caddyfile' into 'develop' Add a Caddyfile. See merge request pleroma/pleroma!50	2018-01-30 08:14:07 +00:00
lambda	46c8f79cd7	Merge branch 'feature/cross-origin' into 'develop' Access-Control-Allow-Origin See merge request pleroma/pleroma!52	2018-01-26 23:30:11 +00:00
Hakaba Hitoyo	9c0c40cf1e	Access-Control-Allow-Origin	2018-01-26 22:58:58 +00:00
eal	6678fe3217	Add a Caddyfile.	2018-01-16 15:48:27 +02:00
Hakaba Hitoyo	aceef36e56	Correct pleroma.nginx	2018-01-14 10:57:25 +00:00
href	9093b2cf49	Merge remote-tracking branch 'upstream/develop' into media-proxy	2017-12-11 02:45:28 +01:00
href	d1806ec07f	nginx sample config, quickly tested	2017-12-11 02:40:19 +01:00
eal	afd0ea37f3	Add websocket upgrade to example nginx config.	2017-12-07 20:07:51 +02:00
Henry Jameson	a6e89ae6a3	disable sslv3	2017-08-16 00:25:26 +03:00
Henry Jameson	9112eda14f	First attempt at installation documentation	2017-08-08 02:41:36 +03:00

1 2 3

146 Commits