| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-02-19 | add nginx rewrite rule for mediaproxy | iodine | |
| 2019-02-19 | Remove slicing. | lain | |
| 2019-01-28 | Update the openrc service's retry with the correct format | vaartis | |
| 2019-01-17 | Add comments and change default path of the Mix binary. | shibayashi | |
| 2019-01-14 | Merge branch 'fix-nginx-caching' into 'develop' | kaniini | |
| Fix nginx caching issues See merge request pleroma/pleroma!654 | |||
| 2019-01-10 | Fix nginx caching issues | Mark Felder | |
| Nginx is currently not caching data because proxy_buffering needs to be enabled for caching to work at all, and we are receiving a Cache-Control header from Pleroma that states "max-age=0, private, must-revalidate" Even disregarding the Cache-Control header that should actually be set to "public, max-age=1209600" as defined in the reverse_proxy code, we don't want to obey this header at all as it overrides our Nginx caching rules. | |||
| 2019-01-10 | Consistent intentation | Mark Felder | |
| 2019-01-10 | Cache partial objects for 10 minutes | Mark Felder | |
| This enables caching/streaming of chunked responses | |||
| 2019-01-10 | Streaming is enabled by default | Mark Felder | |
| Support more filetypes for caching static media | |||
| 2018-12-28 | Merge branch 'systemd-drop-sysadmin-privilege' into 'develop' | kaniini | |
| Security/Drops the sysadmin privilege from the daemon See merge request pleroma/pleroma!604 | |||
| 2018-12-28 | Security/Drops the sysadmin privilege from the daemon | shibayashi | |
| 2018-12-16 | Simplify the NetBSD rc script. | scarlett | |
| 2018-12-16 | Add an rc.d script for NetBSD. | scarlett | |
| 2018-12-15 | Update/add OpenBSD config files | nonlinear | |
| 2018-12-14 | Added init file for OpenBSD | nonlinear | |
| 2018-12-12 | proxy buffering still needs to be off | Mark Felder | |
| 2018-12-12 | Update proxy config to improve behavior and allow compatibility with Safari ↵ | Mark Felder | |
| on MacOS and iOS | |||
| 2018-11-30 | reverse_proxy: more headers | href | |
| 2018-11-13 | Merge branch 'add-MIX_ENV-to-systemd-example' into 'develop' | lambda | |
| Add MIX_ENV=prod to systemd example file See merge request pleroma/pleroma!445 | |||
| 2018-11-12 | Add MIX_ENV=prod | shibayashi | |
| 2018-11-11 | example configs: kill STS/CT headers | William Pitcock | |
| 2018-11-11 | example configs: remove obsolete CSP configuration | William Pitcock | |
| 2018-11-11 | nginx example config: remove CORS headers, now managed by CORSPlug. | William Pitcock | |
| 2018-11-06 | Merge branch 'patch-2' into 'develop' | kaniini | |
| Remove Access-Control-Allow-Origin in pleroma.nginx See merge request pleroma/pleroma!424 | |||
| 2018-11-05 | Remove Access-Control-Allow-Origin | Hakaba Hitoyo | |
| 2018-11-04 | Use example.tld so a single search and replace works | shibayashi | |
| 2018-11-03 | Update instructions | shibayashi | |
| 2018-11-03 | Use the same example domain in all config examples | shibayashi | |
| 2018-11-03 | Use the server name as variable | shibayashi | |
| 2018-10-25 | Add a little bit more detail in the comments. | shibayashi | |
| 2018-10-25 | Add some security related directives to the systemd service example | shibayashi | |
| 2018-09-28 | Relax form-action content security policy | barrucadu | |
| 'self' only allows forms submitted to the same origin, which breaks the "remote follow" form. To allow remote following, we want to allow forms to be submitted to any host. | |||
| 2018-09-03 | installation/pleroma-apache.conf: OCSP stapling needs to be outside of the ↵ | shibayashi | |
| virtualhost directive | |||
| 2018-08-30 | Add frame-ancestors 'none' to all configs | shibayashi | |
| 2018-08-29 | installation/pleroma.nginx: Add 'always' to the security headers, so that ↵ | shibayashi | |
| they are included regardless of the status code | |||
| 2018-08-29 | installation/pleroma-apache.conf: Add TLS configuration and security headers | shibayashi | |
| 2018-08-29 | installation/pleroma.vcl: Add HTTP security headers | shibayashi | |
| 2018-08-29 | installation/caddyfile-pleroma.example: Add Content-Security-Policy | shibayashi | |
| 2018-08-28 | installation/pleroma.nginx: Add Content-Security-Policy | Haelwenn (lanodan) Monnier | |
| Closes: https://git.pleroma.social/pleroma/pleroma/issues/266 | |||
| 2018-08-26 | Improve example Caddyfile | shibayashi | |
| 2018-08-23 | Add an OpenRC service | vaartis | |
| 2018-06-16 | Add comment about TLS curves for older servers. | Artik Banana | |
| 2018-06-13 | * fix nginx 1.15 warning: | dex | |
| nginx: [warn] the "ssl" directive is deprecated, use the "listen ... ssl" directive instead | |||
| 2018-06-11 | * Removed TLSv1 and TLSv1.1 | Artik Banana | |
| * Added OCSP Stapling * Added SSL Cache * Changed ciphers * Specified ECDH curves | |||
| 2018-06-11 | Security upgrades: | Artik Banana | |
| * Removed TLSv1 and TLSv1.1 * Added OCSP Stapling * Added SSL Cache * Changed ciphers * Specified ECDH curves | |||
| 2018-06-03 | caddy config example | witti | |
| 2018-05-28 | Update pleroma.nginx | Dominik V. Salonen | |
| proxy_ignore_client_abort will continue to fetch from upstream even if a client aborts the connection. This is highly recommended when cache is being used. If a client leaves/refreshes the page while a user's avatar or some other media is halfway loaded, the cached copy might in some cases be broken. Leaving future requests to the same URL broken until cache expires. | |||
| 2018-05-23 | Repair some access-control headers required for third-party webclients | Niklas Poslovski | |
| 2018-05-22 | Add access-control-expose-headers to Nginx default config | Niklas Poslovski | |
| 2018-05-13 | Merge branch 'patch-2' into 'develop' | lambda | |
| Nginx config - secure defaults See merge request pleroma/pleroma!146 | |||
 |
index : pleroma.git | |
| [no description] |
| aboutsummaryrefslogtreecommitdiff |
path: root/installation