| Age | Commit message (Collapse) | Author | Files |
|---|
|
* [feature] Add warning about `trusted-proxies` to make config easier
* thank you linter, hugs and kisses to you
|
|
Neither Semaphore nor Pinafore are under active development, but
Semaphore has archived its repository while Pinafore still gets
occasional minor maintenance.
Enafore has newer features, but it has accessibility bugs affecting
screen readers that prevent it from being recommended at this time.
|
|
|
|
Since 1.25.1 the newer 'http2 on;' syntax should be used. The previous
syntax still works, but throws warnings when testing the configuration
with 'nginx -t'.
This also updates the certbot template to match what's currently
generated. It removes ipv6only=on as that's the default on a listen
directive binding on a wildcard IPv6 address.
|
|
* [docs] Enable a bunch of markdown extensions
* details makes admonitions collapsible and when started with ???
instead of !!! they'll be collpased by default
* highlights are updated to include linenums by default but with a style
that doesn't result in the linenums to be copy-pasted when selecting
and pasting. This makes it possible to directly link to a specific
line in the documentation instead of just the general page
* caret, mark and tilde make it possible to highlight text and have
super/subscripts
* keys turns combos like `++ctrl+alt+del++` into HTML key elements
showing a keyboard combination to press
* tabbed makes it possible to have tabs within a document. Right now we
have different sections sometimes to show the config for nginx, apache
and Caddy, which can be turned into tabs instead and which tab is
picked will get remebered
* smartsymbols turns certain things, like `(c)` in the right symbol ©
* [docs] Upgrade all the python dependencies
* [docs] Explain how to update conda deps
|
|
* [docs] Add warning about DBs on network storage
* [docs] Mention tuning swappiness on Linux
* [docs] Mention enabling HTTP/2 on nginx
|
|
This adds the CSP header with a policy of only loading from the same
domain. We don't make use of external media, CSS, JS, fonts, so we don't
ever need external data loaded in our context.
When building a DEBUG build, the policy gets extended to include
localhost:*, i.e localhost on any port. This keeps the live-reloading
flow for JS development working. localhost and 127.0.0.1 are considered
to be the same so mixing and matching those doesn't result in a CSP
violation.
|
|
* [docs] Add a certificates guide in Advanced
This adds some documentation about the process of getting certificates
through ACME in general. It also provides a number of links to
alternative clients and certbot deployment guides that are up to date.
Slightly restructure the NGINX and Apache reverse proxy documentation
and insert mentions to the Provisioning TLS certificates advanced
documentation in them.
* [docs] Add firewall section in Advanced
* [docs] Add new guides to section indexes
* [docs] Fix spelling issue
* [docs] Fix a few typos
|
|
* [docs] Made Advanced its own section
This splits the Advanced page off from the Getting Started guide and
makes it its own thing. It now has some additional sub-sections for
bigger topics like caching and enhanced security. This also moves
tracing from Getting Started to Advanced as that feels like a more
appropriate location for it.
The enhanced security looks a little silly with a single section, but I
have guides pending for firewall configurations and I'd also like to
consolidate our how to provision TLS certificates in there as we repeat
this information multiple times.
* [docs] Fix all my spelling errors
* [docs] Inline the links in sandboxing
|
|
This tries to revamp/restructure the installation guide. It's renamed to
"Getting Started" as it now contains a few more things than just the
installation, especially the deployment considerations which we didn't
use to spell out as much ahead of time.
Installation is now a section with the guides on their own. I've removed
a bit of redundancy like the user creation. I also removed the rogue
reverse proxy section in the Docker guide and lifted that into the
reverse proxy section.
|
tobi
Phil Hagelberg
Jim Tittsler
Daenney