Age | Commit message (Collapse) | Author |
|
|
|
because those aren't real paths on the filesystem and thus can't be `chmod`ed
|
|
* core: Add optional unix socket file permissions
This commit also changes the default unix socket file permissions to `u=w,g=,o=` (octal: `0200`).
It used to default to the shell's umask (usually `u=rwx,g=rx,o=rx`, octal: `0755`).
`/run/caddy.sock` -> `/run/caddy.sock` with `0200` default perms
`/run/caddy.sock|0222` -> `/run/caddy.sock` with `0222` perms
`|` instead of `:` is used as a separator, to account for the `:` in Windows drive letters (e.g. `C:\absolute\path.sock`)
Fun fact:
The old unix(7) man page (pre Jun 2016) stated a socket needs both read and write perms.
Turns out, only write perms are needed.
Corrected in https://github.com/mkerrisk/man-pages/commit/7578ea2f85b272363d22680d69e7d32f0b59c83b
Despite this, most implementations still default to read+write to this date.
* Add cases with Windows paths to test
* Require write perms for the owning user
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* added weighted round robin algorithm to load balancer
* added an adapt integration test for wrr and fixed a typo
* changed args format to Caddyfile args convention
* added provisioner and validator for wrr
* simplified the code and improved doc
|
|
* reverseproxy: WIP streaming timeouts
* More verbose logging by using the child logger
* reverseproxy: Implement streaming timeouts
* reverseproxy: Refactor cleanup
* reverseproxy: Avoid **time.Timer
---------
Co-authored-by: Francis Lavoie <[email protected]>
|
|
|
|
|
|
Allow registering a custom network mapping for HTTP/3. This is useful
if the original network for HTTP/1.1 and HTTP/2 is not a standard `unix`,
`tcp4`, or `tcp6` network. To keep backwards compatibility, we fall back
to `udp` if the original network is not registered in the mapping.
Fixes #5555
|
|
|
|
* feat: better implementation of grid layout
* fix: vertical alignment
|
|
|
|
* cmd: Implement 'storage import' and 'storage export' CLI commands.
These commands use the certmagic.Storage interface. In particular,
storage implementations should ensure that their List() functions
correctly enumerate all keys when called with an empty prefix and
recursive == true. Also, Stat() calls on keys holding values instead
of nested keys are expected to set KeyInfo.IsTerminal = true.
* remove errors.Join
|
|
|
|
|
|
* Create an includeRaw template function to include a file without parsing it as a template.
Some formatting fixes
* Rename to readFile, various docs adjustments
---------
Co-authored-by: Francis Lavoie <[email protected]>
|
|
* Merge branch 'master' into import_file_stack
* remove space in log key
|
|
to balance load between threads.
|
|
* fix variadic placeholder in imported file which also imports
* fix tests.
* skip replacing args when imported token may be part of a snippet
|
|
|
|
* Make grid entries take up full width on mobile and fix breadcrumb color issue in dark mode
Signed-off-by: Pistasj <[email protected]>
* Do mholt's suggestions
Signed-off-by: Pistasj <[email protected]>
---------
Signed-off-by: Pistasj <[email protected]>
|
|
|
|
Signed-off-by: Pistasj <[email protected]>
|
|
* swap h3server close and listener close, avoid quic-listener not closing
* fix typo
|
|
|
|
* Fix file browser footer in grid
Signed-off-by: Odyssey <[email protected]>
* Fix file browser footer while in grid mode
Signed-off-by: Pistasj <[email protected]>
* Do mholt's suggestions
Signed-off-by: Odyssey <[email protected]>
---------
Signed-off-by: Odyssey <[email protected]>
Signed-off-by: Pistasj <[email protected]>
|
|
I forgot there are two calls to LoadConfig() here that needed replacing.
|
|
Makes list deterministic. See #5538
|
|
* caddyhttp: Implement named routes, `invoke` directive
* gofmt
* Add experimental marker
* Adjust route compile comments
|
|
* use escaped path while rewriting
Signed-off-by: TP-O <[email protected]>
* restore line break
---------
Signed-off-by: TP-O <[email protected]>
|
|
|
|
|
|
(#5494)
* reverseproxy: Expand port ranges to multiple upstreams in CLI + Caddyfile
* Add clarifying comment
|
|
* fileserver: Use EscapedPath for browse
Fix #5143
* Fixes if filter element is not present
* Remove extraneous line
|
|
|
|
|
|
* Check for nil ALPN; close #5470
* Apply patch
* Actually I want to try this
|
|
|
|
|
|
* Initial implementation of fallback_sni
* Apply upstream patch
|
|
* fix http3 outdated certificates after config reload
* delegate quic tls GetConfigForClient to another struct.
* change type and method names
fix lint
---------
Co-authored-by: Matt Holt <[email protected]>
|
|
|
|
Co-authored-by: Matt Holt <[email protected]>
|