cloudron-box

Author	SHA1	Message	Date
Girish Ramakrishnan	589602cdb0	Add note	2018-07-25 08:29:39 -07:00
Girish Ramakrishnan	7654f36e23	Do temporary redirect instead Permanent redirect can be cached forever in the browser which means that changing redirect settings appear to not work.	2018-07-15 17:43:36 -07:00
Johannes Zellner	3d0da34960	Create nginx configs for app redirects	2018-06-29 23:14:06 +02:00
Girish Ramakrishnan	0fc4f4bbff	Explicitly pass port and logdir	2018-06-11 22:53:12 -07:00
Girish Ramakrishnan	0b82146b3e	Install cloudron-syslog service file from box repo	2018-06-11 22:42:49 -07:00
Johannes Zellner	2a475c1199	Add logrotate for app and addon logs	2018-06-06 17:36:48 +02:00
Johannes Zellner	ddaa52163b	Update ssl ciphers according to mozillas recommendation	2018-04-11 15:15:29 +02:00
Johannes Zellner	799c1ba05d	Improve on the csp header restriction	2018-04-11 13:00:08 +02:00
Johannes Zellner	838838b90d	nginx would drop other headers if add_header is defined in the location section	2018-04-11 12:29:57 +02:00
Johannes Zellner	573d0e993e	Add CSP header for dashboard	2018-04-10 17:59:06 +02:00
Girish Ramakrishnan	e33ebe7304	Revert "mysql: increase max_allowed_packet" This reverts commit `9123ea7016`. Not needed. This was a db corruption issue	2018-03-22 21:49:08 -07:00
Girish Ramakrishnan	9123ea7016	mysql: increase max_allowed_packet some cloudrons are reporting some errors after 2.0. maybe all those additional joins/fields we put in is causing this	2018-03-21 17:52:22 -07:00
Girish Ramakrishnan	a07c4423c4	Rename webadmin to dashboard The box nginx config has to be re-generated but this is always done at box restart time	2018-03-15 14:14:23 -07:00
Johannes Zellner	35d2755cfb	Remove splashpage logic	2018-01-31 09:24:43 +01:00
Girish Ramakrishnan	ac94a0b7f2	Add route to restore box from backup Part of #439	2017-11-22 23:08:59 -08:00
Girish Ramakrishnan	014b77b7aa	Fix LE cert renewal failures LE contacts the server by hostname and not by IP. This means that when installing and reconfiguring the app it hits the default_server route since nginx configs for the app are not generated at. When doing in the daily cert renew, the nginx configs exist and we are unable to renew the certs.	2017-11-02 11:43:43 -07:00
Girish Ramakrishnan	6dd70c0ef2	acme challenges must be answered by default_server The challenge must be answered even before app nginx config is available.	2017-10-28 23:39:03 -07:00
Girish Ramakrishnan	3dedda32d4	Configure http server to only listen on known vhosts/IP For the rest it returns 404 Fixes #446	2017-10-27 00:10:50 -07:00
Johannes Zellner	8b341e2bf8	Only make nginx listen on ipv6 connections if it is supported by the system Could not decide on the ejs formatting, never nice for me	2017-09-29 19:43:37 +02:00
Girish Ramakrishnan	e39a5c8872	preserve env in backuptask.js	2017-09-22 11:19:44 -07:00
Johannes Zellner	e50e0f730b	Make nginx listen on :: for ipv6	2017-09-20 16:33:25 +02:00
Girish Ramakrishnan	84649b9471	Bring back backuptask This is required for various small reasons: * dir iteration with a way to pass messagein back to the upload() easily * can be killed independently of box code * allows us to run sync (blocking) commands in the upload logic	2017-09-19 12:32:38 -07:00
Girish Ramakrishnan	6525a467a2	Rework backuptask into tar.js This makes it easy to integrate another backup strategy as the next step	2017-09-17 18:50:26 -07:00
Girish Ramakrishnan	c8750a3bed	merge the logrotate scripts	2017-09-12 22:03:24 -07:00
Girish Ramakrishnan	9710f74250	remove collectd stats when app is uninstalled	2017-09-12 21:34:15 -07:00
Girish Ramakrishnan	8d2f3b0217	Add note on disabling ssh password auth	2017-09-06 11:36:23 -07:00
Girish Ramakrishnan	3aebf51360	Fix upload of large files to apps `6a0ef7a1c1` broke the upload for apps e2e test is being added	2017-08-23 10:22:54 -07:00
Girish Ramakrishnan	6a0ef7a1c1	Allow larger files to be uploaded Note that other upload APIs like avatar are still limited to 1m by the nginx config	2017-08-20 19:15:54 -07:00
Girish Ramakrishnan	9e558924bb	df plugin replaces with _ and not - Part of #348	2017-08-15 09:32:42 -07:00
Girish Ramakrishnan	57891c64b5	use check_output instead Aug 14 19:10:46 collectd[12651]: close failed in file object destructor: Aug 14 19:10:46 collectd[12651]: IOError: [Errno 10] No child processes	2017-08-14 12:31:58 -07:00
Johannes Zellner	2f51088e67	Add logrotate support for *.log files in /run mounts of apps logrotate config files may contain arbitrary commands which are exectued as root, thus the config files have to be owned by root. This is the reason we need the sudo scripts :-/ To test the generated scripts, just run: $ logrotate /etc/logrotate.conf -v Fixes #396	2017-08-12 00:04:00 +02:00
Girish Ramakrishnan	5fe73c5a46	Replace df plugin with custom df plugin The built-in df plugin cannot do the following: * if we choose by type ext4, we want to skip devicemapper (on scaleway) * the MountPoint of the appsdata directory is not possible to know at install time Fixes #398	2017-08-11 01:39:51 -07:00
Girish Ramakrishnan	f17bde2d97	Add motd message for cloudron admins about updates Fixes #351	2017-08-10 12:14:51 -07:00
Girish Ramakrishnan	392492be04	Only collect info on the / mountpoint The original intention was to collect information on the data dirs as well but we have long moved away from that design. On some VPS like scaleway, this ends up collecting info on devicemapper stuff (which are on ext4, not sure why). In future, we should collect info of other disks as well (#348) Fixes #389	2017-08-03 11:45:23 -07:00
Girish Ramakrishnan	eb99f8b844	escape and quote the robotsTxt when templating for now, we restrict the string length to 4096 since that is what nginx allows	2017-07-23 19:56:28 -07:00
Girish Ramakrishnan	db7a4b75ae	log the host in nginx logs	2017-07-21 09:43:44 -07:00
Girish Ramakrishnan	b5aed7b00a	Set full path for nginx access log	2017-07-18 21:49:12 -07:00
Dick Tang	67486b8177	add X-Forwarded-Port in nginx reverse proxy for jetpack jetpack require X-Forward for the port, or "requested method jetpack.jsonAPI does not exist" ref: https://github.com/ViBiOh/docker-wordpress/issues/1	2017-07-18 15:58:46 +00:00
Girish Ramakrishnan	acd00222e5	Allow per-app configuration of robots.txt https://developers.google.com/search/reference/robots_txt has the specification Part of #344	2017-07-14 15:25:05 -05:00
Ian Fijolek	788004245a	Add HTTP/2 support to NGINX configs This easy fix should improve performance with newer browsers especially for applications that require many files to be sent over the wire coughNextcloud11cough NGINX blog post about HTTP/2 support: https://www.nginx.com/blog/nginx-1-9-5/	2017-05-02 22:00:55 +00:00
Girish Ramakrishnan	a0e122e578	Try to make tests work again	2017-04-23 18:03:40 -07:00
Johannes Zellner	a94d44da75	Add generic node.sh to run node apps as root and with memory limitations	2017-04-20 15:20:11 +02:00
Johannes Zellner	dda16331f6	Remove unused rmbackup.sh	2017-04-17 20:26:06 +02:00
Johannes Zellner	d95e68926b	Remove unused backupapp.sh and backupbox.sh	2017-04-17 20:26:06 +02:00
Johannes Zellner	ff3a748398	Call backuptask.js directly as root to avoid trampoline shell scripts	2017-04-17 20:26:05 +02:00
Johannes Zellner	9354784f01	Remove unused cpbackup.sh	2017-04-17 20:26:05 +02:00
Johannes Zellner	e021a4b377	Remove unused restoreapp.sh	2017-04-17 20:26:05 +02:00
Johannes Zellner	5e1ad4ad93	We need root access to copy backup files with the filesystem backend	2017-04-17 20:26:05 +02:00
Girish Ramakrishnan	bb91faf23c	mysql: Use utf8mb4 character set	2017-04-14 13:29:01 -07:00
mehdi	fce2cdce7f	Adding proxy_max_temp_file_size 0 to nginx config. Explanation: When proxying an HTTP request, nginx first fills up the memory buffers (set by proxy_buffer_size and proxy_buffers). When these are full, it then writes them to a temporary file in batches of proxy_temp_file_write_size until it reaches proxy_max_temp_file_size. When proxy_max_temp_file_size is not set, and a very large file is being served, it reaches the maximum of 1GB, and nginx begins to behave weirdly.	2017-04-10 22:47:19 +02:00

1 2 3

145 Commits