aboutsummaryrefslogtreecommitdiffhomepage
AgeCommit message (Collapse)Author
2024-11-04Lintermatcher-with-errorFrancis Lavoie
2024-11-04Apparently Deprecated can't be all-uppercase to get IDE lintingFrancis Lavoie
2024-11-04Keep AnyMatch signature the same for nowFrancis Lavoie
2024-11-04Return 425 Too Early status in IP matchersFrancis Lavoie
2024-11-04Clarifying comment since it's subtle that an err is returnedFrancis Lavoie
2024-11-04CEL factories can return RequestMatcherWithErrorFrancis Lavoie
2024-11-04Looser interface checking to allow fallbackFrancis Lavoie
2024-11-04Move implementations to MatchWithError versionsFrancis Lavoie
2024-11-04Use MatchWithError everywhere possibleFrancis Lavoie
2024-11-04Error in IP matchers on TLS handshake not completeFrancis Lavoie
2024-11-04caddyhttp: Add `MatchWithError` to replace SetVar hackFrancis Lavoie
2024-11-01events: Use `WithLazy` to prevent eager serialization of the event data (#6671)Andreas Kohn
2024-10-31fileserver: Fix Caddyfile parsingMatthew Holt
Reported at https://github.com/mholt/caddy-sqlite-fs/issues/3
2024-10-30httpcaddyfile: Fixes for `prefer_wildcard` mode (#6636)Francis Lavoie
* httpcaddyfile: Fixes for prefer_wildcard mode The wildcard hosts need to be collected first, then considered after, because there's no guarantee that all non-wildcards will appear after all wildcards when looping. Also we should not add a domain to Skip if it doesn't qualify for TLS anyway. * Alternate solution by avoiding adding APs altogether if covered by wildcard
2024-10-30cmd: Allow `add-package` to select version of package (#6665)Lucas VerÍssimo Botelho
* feat: allow versioning of packages * docs: remove xcaddy issue reference
2024-10-22chore: compile without nosql's support for Postgres and MySQL (#6655)Kévin Dunglas
* chore: compile without nosql's support for Postgres and MySQL * Update cross-build.yml * Update cross-build.yml * Update README.md
2024-10-22chore: Bump quic-go to 0.48.1, fixing a panic (#6654)Francis Lavoie
2024-10-22reverseproxy: Sync changes from stdlib for 1xx handling (#6656)Francis Lavoie
* reverseproxy: Sync changes from stdlib for 1xx handling Sourced from https://github.com/golang/go/commit/960654be0c4ad7918376e2e1d47491c9bc7520e0 * Use clear() https://github.com/golang/go/commit/3bc28402fae2a1646e4d2756344b5eb34994d25f
2024-10-21reverseproxy: Fix log messageMatthew Holt
Fixes regression from #6560
2024-10-21tracing: Add `spanID` field to access logs and `http.vars.span_id` ↵Yifan Yang
placeholder (#6646) * logging: Add spanID field to access logs when tracing is enabled Signed-off-by: YifanYang6 <[email protected]> * tracing: add `http.vars.span_id` placeholder when tracing is enabled Signed-off-by: YifanYang6 <[email protected]> --------- Signed-off-by: YifanYang6 <[email protected]>
2024-10-21core: addresses.go funcs renames (#6622)Aaron Paterson
* right side in tls ln * remove ParseNetworkAddressFromHostPort * ignore placeholder port * remove println * update test cases (!!!) * [] * comment * Trim * Update addresses.go
2024-10-21chore: fix some function names in comment (#6650)David Wood
2024-10-20fileserver: fix try_policy when instantiating file matcher from CEL (#6624)Logan Fleur
Co-authored-by: Francis Lavoie <[email protected]>
2024-10-19sigtrap: always ignore SIGPIPE (#6645)Kévin Dunglas
2024-10-18metrics: move `metrics` up, outside `servers` (#6606)Mohammed Al Sahaf
* metrics: move `metrics` up, outside `servers` This change moves the metrics configuration from per-server level to a single config knob within the `http` app. Enabling `metrics` in any of the configured servers inside `http` enables metrics for all servers. Fix #6604 Signed-off-by: Mohammed Al Sahaf <[email protected]> * normalize domain name --------- Signed-off-by: Mohammed Al Sahaf <[email protected]>
2024-10-15caddyhttp: Close http3 server gracefully (#6213)WeidiDeng
* close http3 server gracefully * update server field * update from upstream --------- Co-authored-by: Matt Holt <[email protected]>
2024-10-15chore: update quic-go to v0.48.0 (#6627)Marten Seemann
2024-10-11reverseproxy: Use correct cases for websocket related headers (#6621)WeidiDeng
Co-authored-by: Francis Lavoie <[email protected]>
2024-10-10caddyfile: Fix comma edgecase in address parsing (#6616)Francis Lavoie
2024-10-10docs: expand proxy protocol docs (#6620)Mohammed Al Sahaf
2024-10-10tests: fix caddyfile adapt warnings (#6619)Mohammed Al Sahaf
Signed-off-by: Mohammed Al Sahaf <[email protected]>
2024-10-07caddytls: Drop `rate_limit` and `burst`, has been deprecated (#6611)Francis Lavoie
2024-10-04caddyhttp: Use internal issuer for IPs when no APs configuredMatthew Holt
This fixes a regression in 2.8 where IP addresses would be considered qualifying for public certs by auto-HTTPS. The default issuers do not issue IP certs at this time, so if no APs are explicitly configured, we assign them to the internal issuer. We have to add a couple lines of code because CertMagic can no longer consider IPs as not qualifying for public certs, since there are public CAs that issue IP certs. This edge case is specific to Caddy's auto-HTTPS. Without this patch, Caddy will try using Let's Encrypt or ZeroSSL's ACME endpoint to get IP certs, neither of which support that.
2024-10-02go.mod: Upgrade some dependenciesMatthew Holt
2024-10-02ci: install xcaddy to fix release flow (#6602)v2.9.0-beta.2Mohammed Al Sahaf
2024-10-02metrics: scope metrics to active config, add optional per-host metrics (#6531)v2.9.0-beta.1Mohammed Al Sahaf
* Add per host config * Pass host label when option is enabled * Test per host enabled * metrics: scope metrics per loaded config * doc and linter Signed-off-by: Mohammed Al Sahaf <[email protected]> * inject the custom registry into the admin handler Co-Authored-By: Dave Henderson <[email protected]> * remove `TODO` comment * fixes Signed-off-by: Mohammed Al Sahaf <[email protected]> * refactor to delay metrics admin handler provision Signed-off-by: Mohammed Al Sahaf <[email protected]> --------- Signed-off-by: Mohammed Al Sahaf <[email protected]> Co-authored-by: Hussam Almarzooq <[email protected]> Co-authored-by: Dave Henderson <[email protected]>
2024-10-02caddyhttp: Implement `auto_https prefer_wildcard` option (#6146)Francis Lavoie
* Allow specifying multiple `auto_https` options * Implement `auto_https prefer_wildcard` option * Adapt tests, add mock DNS module for config testing * Rebase fix
2024-10-02caddyhttp: Escaping placeholders in CEL, add `vars` and `vars_regexp` (#6594)Francis Lavoie
* caddyhttp: Escaping placeholders in CEL * Simplify some of the test cases * Implement vars and vars_regexp in CEL * dupl lint is dumb * Better consts for the placeholder CEL shortcut * Bump CEL version, register a few extensions * Refactor s390x test script for readability * Add retries for s390x to smooth over flakiness * Switch to `ph` for the CEL shortcut (match it in templates cause why not)
2024-10-01cmd: Better error handling when reloading (#6601)Matt Holt
* caddyhttp: Limit auto-HTTPS error logs to 100 domains * Improve error message and increase error size limit
2024-10-01caddytls: Support new tls.context module (#6369)Matt Holt
* caddytls: Support new tls.context module This allows modules to manipulate the context passed into CertMagic's GetCertificate function, which can be useful for tracing/metrics, or other custom logic. This is experimental and may resolve the request of a sponsor, so we'll see how it goes! * Derpy derp
2024-10-01http: ReponseWriter prefer ReadFrom if available (#6565)WeidiDeng
Co-authored-by: Matt Holt <[email protected]>
2024-10-01chore: Adjust incorrect `reverse_proxy` Caddyfile comment (#6598)Francis Lavoie
2024-10-01caddyhttp: Fix listener wrapper regression from #6573 (#6599)Aaron Paterson
2024-09-30core: Implement socket activation listeners (#6573)Aaron Paterson
* caddy adapt for listen_protocols * adapt listen_socket * allow multiple listen sockets for port ranges and readd socket fd listen logic * readd logic to start servers according to listener protocols * gofmt * adapt caddytest * gosec * fmt and rename listen to listenWithSocket * fmt and rename listen to listenWithSocket * more consistent error msg * non unix listenReusableWithSocketFile * remove unused func * doc comment typo * nonosec * commit * doc comments * more doc comments * comment was misleading, cardinality did not change * addressesWithProtocols * update test * fd/ and fdgram/ * rm addr * actually write... * i guess we doin' "skip": now * wrong var in placeholder * wrong var in placeholder II * update param name in comment * dont save nil file pointers * windows * key -> parsedKey * osx * multiple default_bind with protocols * check for h1 and h2 listener netw
2024-09-29doc: remove docs of deprecated directives (#6566)Mohammed Al Sahaf
Co-authored-by: Francis Lavoie <[email protected]>
2024-09-26caddyhttp: Optimize logs using zap's WithLazy() (#6590)Alexander Stecher
* uses zap's .WithLazy with a cloned request * fixes the cloning * adds comment explaining why cloning is faster
2024-09-25chore: Use slices package where possible (#6585)Francis Lavoie
* chore: Use slices package where possible * More, mostly using ContainsFunc * Even more slice operations
2024-09-25caddytls: Give a better error message when given encrypted private keys (#6591)Francis Lavoie
2024-09-21caddyhttp: enable qlog, controlled by QLOGDIR env (#6581)Marten Seemann
2024-09-20update quic-go to v0.47.0 (#6582)Marten Seemann