ISTI-ansible-roles
/
ansible-role-nginx
4
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
81 Commits 1 Branch 0 Tags 139 KiB
Commit Graph

47 Commits

Author SHA1 Message Date
Andrea Dell'Amico 7f09d1d812
Fix the dotfiles regexp, finally. 2024-05-03 18:51:15 +02:00
Andrea Dell'Amico 47fa70ebb3
Give the options to allow dotfiles other than '.ht*', 5th try. 2024-05-03 18:41:30 +02:00
Andrea Dell'Amico fca15f343f
Give the options to allow dotfiles other than '.ht*', 4th try. 2024-05-03 18:34:21 +02:00
Andrea Dell'Amico 12e63b3968
Give the options to allow dotfiles other than '.ht*', third try. 2024-05-03 18:28:37 +02:00
Andrea Dell'Amico 05103a008b
Give the options to allow dotfiles other than '.ht*', second try. 2024-05-03 18:25:48 +02:00
Andrea Dell'Amico 4999eaa896
Give the options to allow dotfiles other than '.ht*'. 2024-05-03 18:19:39 +02:00
Andrea Dell'Amico 9b7cc5b11a
server_names_hash_bucket_size is now a variable. 2024-03-12 10:13:04 +01:00
Andrea Dell'Amico 3ff421cee3
A couple of new tunable timeouts. 2023-08-03 13:11:49 +02:00
Andrea Dell'Amico 6d5a8f6fa8
Make ssl stapling conditional 2023-07-13 13:10:04 +02:00
Andrea Dell'Amico b25d586850
Change the default fullchain path 2023-07-13 12:57:02 +02:00
Andrea Dell'Amico a8c3397460
Option to change the x-forwarded-proto header. 2022-05-11 11:18:07 +02:00
Andrea Dell'Amico bfe0009143
Missing conditionals. 2022-05-01 18:33:28 +02:00
Andrea Dell'Amico 8f099c62f2
proxy_additional_options -> proxy_global_... 2022-05-01 18:15:54 +02:00
Andrea Dell'Amico 611446839f
Missing {% endif %} 2022-05-01 18:11:58 +02:00
Andrea Dell'Amico 8adbe0a457
Remove a occurrence of proxy_additional_options 2022-05-01 18:07:55 +02:00
Andrea Dell'Amico 516375292a
proxy additional options are global. 2022-05-01 18:07:07 +02:00
Andrea Dell'Amico f0d5347568
Additional options out of the 'server' declaration. 2022-05-01 18:00:25 +02:00
Andrea Dell'Amico 5bc066b137
Move locations out of the proxy conditional. 2022-05-01 17:23:58 +02:00
Andrea Dell'Amico a5045c6f94
Duplicate option. 2022-05-01 17:07:30 +02:00
Andrea Dell'Amico 3d8f2f46c9
New configuration options for the virtualhost. 2022-05-01 15:36:33 +02:00
Andrea Dell'Amico 7643a73a84
ssl session cache and timeout are now configurable. 2021-11-18 16:50:28 +01:00
Andrea Dell'Amico 32c68b3a66
Fix the content-security header everywhere. 2021-07-28 17:41:54 +02:00
Andrea Dell'Amico 686d95fefe
Fix a typo. 2021-07-28 17:40:04 +02:00
Andrea Dell'Amico c0082ac433
Better handling of the security headers. 2021-07-28 17:37:54 +02:00
Andrea Dell'Amico baacf6b924
Undefine X-Frame-Options before setting it. 2021-07-28 17:25:18 +02:00
Andrea Dell'Amico b110431218
Fix the xss syntax. 2021-07-28 15:11:26 +02:00
Andrea Dell'Amico a8ece37a3a
Do not quote the domains in the security options. 2021-07-28 14:35:12 +02:00
Andrea Dell'Amico 71a7fc437a
Handle some security settings. 2021-07-28 14:18:03 +02:00
Andrea Dell'Amico e538066bf4
Optionally include subdomains in transport security. 2021-07-28 13:36:31 +02:00
Andrea Dell'Amico 71e3a948c6
Optionally manage a robots.txt file. 2021-07-07 14:03:33 +02:00
Andrea Dell'Amico 22aa4d1430
Fix the check on nginx_proxy_define_header_host. 2021-05-29 12:40:14 +02:00
Andrea Dell'Amico 1cc1f240bb
nginx_proxy_define_header_host 2021-05-28 19:00:52 +02:00
Andrea Dell'Amico 44ce326600
Upstream servers must be in the virtualhost vars. 2021-05-09 17:39:18 +02:00
Andrea Dell'Amico 1f4510181e
upstream backends in the virtualhost template. 2021-05-09 16:54:56 +02:00
Andrea Dell'Amico 437d0a0b1e
Limit the entries skipped by nginx_behind_haproxy_settings 2021-05-03 19:10:21 +02:00
Andrea Dell'Amico fdd0fcfb9e
The proxy setting when behind haproxy are now optional. 2021-05-03 19:01:37 +02:00
Andrea Dell'Amico 82d5cc2ab9 php proxy: use the unix socket when required. 2021-03-20 19:24:19 +01:00
Andrea Dell'Amico e794618adc Fix the conditional for proxy_force_ranges 2021-02-22 11:49:48 +01:00
Andrea Dell'Amico a2deb6bb15 Old nginx versions do not have proxy_force_ranges. 2021-02-22 11:42:25 +01:00
Andrea Dell'Amico c5e7dd7dd4 Try to fix the buffers size. 2021-02-18 18:02:20 +01:00
Andrea Dell'Amico c0f9bfa6a3 Add nginx_proxy_force_ranges. Required to stream .mp4 files on iOS devices. 2020-11-24 17:29:07 +01:00
Andrea Dell'Amico b256e76017 Actually enable the gzip compression when told. 2020-10-28 19:04:44 +01:00
Andrea Dell'Amico 7e53ab855b do not block the .well-known urls, for real 2020-10-20 14:52:36 +02:00
Andrea Dell'Amico f8cd042975 Do not block the .well-known urls 2020-10-20 14:45:27 +02:00
Andrea Dell'Amico 9ea3a30b9f nginx: enable http2 when the OS supports it. 2020-07-21 15:59:24 +02:00
Andrea Dell'Amico 6197662fee The x-forwarded-host proxy setting must be configurable. 2020-06-20 00:50:42 +02:00
Andrea Dell'Amico 3421e2d944 Import the old role. 2020-06-02 14:52:24 +02:00