Girish Ramakrishnan
7d7df5247b
Update cipher suite based on ssl-config recommendation
...
ssl_prefer_server_ciphers off is the recommendation since the cpihers
are deprecated
https://serverfault.com/questions/997614/setting-ssl-prefer-server-ciphers-directive-in-nginx-config
2020-03-24 19:24:58 -07:00
Girish Ramakrishnan
f99450d264
Enable TLSv1.3 and remove TLSv1 and 1.1
...
IE10 does not have 1.2, so maybe we can risk it
As per Android documentaion TLS 1.2 is fully supported after API level 20/Android 5(Lolipop)
https://discussions.qualys.com/thread/17020-tls-12-support-for-android-devices
https://www.ryandesignstudio.com/what-is-tls/
2020-03-24 14:37:08 -07:00
Girish Ramakrishnan
46ede3d60d
search for request_uri in try_files
...
this lets us put images in app_not_responding.html
2020-03-06 17:01:48 -08:00
Girish Ramakrishnan
25ef5ab636
Move custom pages to a subdirectory
2020-02-05 11:42:17 -08:00
Girish Ramakrishnan
763e14f55d
Make app error page customizable
2020-02-04 17:52:30 -08:00
Girish Ramakrishnan
6dc2e1aa14
Do not show error page for 503
...
WP maintenance mode plugin will return 503
2020-01-13 15:00:18 -08:00
Girish Ramakrishnan
8878bc4bf9
frameAncestors -> csp
...
It seems we cannot separate frame ancestors from CSP because the hide
header just hides everything and not a specific resource. This means
that the user has to set or unset the full policy whole sale.
2019-10-14 17:12:01 -07:00
Girish Ramakrishnan
9997cbddb8
Do not escape as html
2019-10-14 16:03:57 -07:00
Girish Ramakrishnan
9c12f1fe15
Add field to configure the reverse proxy
...
part of #596
2019-10-14 15:05:25 -07:00
Girish Ramakrishnan
488763fc42
rename appconfig to nginxconfig
2019-10-13 17:08:33 -07:00
