ISTI-ansible-roles
/
ansible-role-nginx
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
93 Commits 2 Branches 0 Tags 194 KiB
Commit Graph

58 Commits

Author SHA1 Message Date
Francesco Mangiacrapa 57cfa7ea06 Added `always` property to sent headers also on http errors returned (e.g. 4xx or 5xx). See #28488#note-21 2024-12-17 12:20:56 +01:00
Andrea Dell'Amico c47961f9dc
Disable Access-Control-Allow-Credentials when nginx_cors_limit_origin. 2024-12-16 15:42:02 +01:00
Andrea Dell'Amico a0ce375254
Manage the chunked_transfer_encoding option in the virtualhost template. 2024-10-18 17:51:13 +02:00
Andrea Dell'Amico 37b9a73821
Hide Access-Control-Allow-Origin before adding it again. 2024-10-14 19:29:35 +02:00
Andrea Dell'Amico f2d22e9d53
Introduce nginx_access_control_allow_origin_src. 2024-06-11 14:49:32 +02:00
Andrea Dell'Amico e97690243d
Remove hiding Access-Control-Allow-Origin from the virtualhost. 2024-06-11 14:46:23 +02:00
Andrea Dell'Amico 99f5a5836f
Directive proxy_hide_header Access-Control-Allow-Origin; only when cors is global. 2024-06-06 12:55:53 +02:00
Andrea Dell'Amico 92c84d93c2
Remove a wrong 'proxy_hide_header' directive. 2024-06-06 12:30:24 +02:00
Andrea Dell'Amico 6f005d13a5
Globally hide the header Access-Control-Allow-Origin before adding it. 2024-06-06 12:22:36 +02:00
Andrea Dell'Amico 634744cd71
hide the header Access-Control-Allow-Origin before adding it. 2024-06-06 12:17:25 +02:00
Andrea Dell'Amico fea452d7b1
Manage the parameter proxy_request_buffering. 2024-05-30 11:29:03 +02:00
Andrea Dell'Amico 7f09d1d812
Fix the dotfiles regexp, finally. 2024-05-03 18:51:15 +02:00
Andrea Dell'Amico 47fa70ebb3
Give the options to allow dotfiles other than '.ht*', 5th try. 2024-05-03 18:41:30 +02:00
Andrea Dell'Amico fca15f343f
Give the options to allow dotfiles other than '.ht*', 4th try. 2024-05-03 18:34:21 +02:00
Andrea Dell'Amico 12e63b3968
Give the options to allow dotfiles other than '.ht*', third try. 2024-05-03 18:28:37 +02:00
Andrea Dell'Amico 05103a008b
Give the options to allow dotfiles other than '.ht*', second try. 2024-05-03 18:25:48 +02:00
Andrea Dell'Amico 4999eaa896
Give the options to allow dotfiles other than '.ht*'. 2024-05-03 18:19:39 +02:00
Andrea Dell'Amico 9b7cc5b11a
server_names_hash_bucket_size is now a variable. 2024-03-12 10:13:04 +01:00
Andrea Dell'Amico 3ff421cee3
A couple of new tunable timeouts. 2023-08-03 13:11:49 +02:00
Andrea Dell'Amico 6d5a8f6fa8
Make ssl stapling conditional 2023-07-13 13:10:04 +02:00
Andrea Dell'Amico b25d586850
Change the default fullchain path 2023-07-13 12:57:02 +02:00
Andrea Dell'Amico a8c3397460
Option to change the x-forwarded-proto header. 2022-05-11 11:18:07 +02:00
Andrea Dell'Amico bfe0009143
Missing conditionals. 2022-05-01 18:33:28 +02:00
Andrea Dell'Amico 8f099c62f2
proxy_additional_options -> proxy_global_... 2022-05-01 18:15:54 +02:00
Andrea Dell'Amico 611446839f
Missing {% endif %} 2022-05-01 18:11:58 +02:00
Andrea Dell'Amico 8adbe0a457
Remove a occurrence of proxy_additional_options 2022-05-01 18:07:55 +02:00
Andrea Dell'Amico 516375292a
proxy additional options are global. 2022-05-01 18:07:07 +02:00
Andrea Dell'Amico f0d5347568
Additional options out of the 'server' declaration. 2022-05-01 18:00:25 +02:00
Andrea Dell'Amico 5bc066b137
Move locations out of the proxy conditional. 2022-05-01 17:23:58 +02:00
Andrea Dell'Amico a5045c6f94
Duplicate option. 2022-05-01 17:07:30 +02:00
Andrea Dell'Amico 3d8f2f46c9
New configuration options for the virtualhost. 2022-05-01 15:36:33 +02:00
Andrea Dell'Amico 7643a73a84
ssl session cache and timeout are now configurable. 2021-11-18 16:50:28 +01:00
Andrea Dell'Amico 32c68b3a66
Fix the content-security header everywhere. 2021-07-28 17:41:54 +02:00
Andrea Dell'Amico 686d95fefe
Fix a typo. 2021-07-28 17:40:04 +02:00
Andrea Dell'Amico c0082ac433
Better handling of the security headers. 2021-07-28 17:37:54 +02:00
Andrea Dell'Amico baacf6b924
Undefine X-Frame-Options before setting it. 2021-07-28 17:25:18 +02:00
Andrea Dell'Amico b110431218
Fix the xss syntax. 2021-07-28 15:11:26 +02:00
Andrea Dell'Amico a8ece37a3a
Do not quote the domains in the security options. 2021-07-28 14:35:12 +02:00
Andrea Dell'Amico 71a7fc437a
Handle some security settings. 2021-07-28 14:18:03 +02:00
Andrea Dell'Amico e538066bf4
Optionally include subdomains in transport security. 2021-07-28 13:36:31 +02:00
Andrea Dell'Amico 71e3a948c6
Optionally manage a robots.txt file. 2021-07-07 14:03:33 +02:00
Andrea Dell'Amico 22aa4d1430
Fix the check on nginx_proxy_define_header_host. 2021-05-29 12:40:14 +02:00
Andrea Dell'Amico 1cc1f240bb
nginx_proxy_define_header_host 2021-05-28 19:00:52 +02:00
Andrea Dell'Amico 44ce326600
Upstream servers must be in the virtualhost vars. 2021-05-09 17:39:18 +02:00
Andrea Dell'Amico 1f4510181e
upstream backends in the virtualhost template. 2021-05-09 16:54:56 +02:00
Andrea Dell'Amico 437d0a0b1e
Limit the entries skipped by nginx_behind_haproxy_settings 2021-05-03 19:10:21 +02:00
Andrea Dell'Amico fdd0fcfb9e
The proxy setting when behind haproxy are now optional. 2021-05-03 19:01:37 +02:00
Andrea Dell'Amico 82d5cc2ab9 php proxy: use the unix socket when required. 2021-03-20 19:24:19 +01:00
Andrea Dell'Amico e794618adc Fix the conditional for proxy_force_ranges 2021-02-22 11:49:48 +01:00
Andrea Dell'Amico a2deb6bb15 Old nginx versions do not have proxy_force_ranges. 2021-02-22 11:42:25 +01:00