aboutsummaryrefslogtreecommitdiff
path: root/installation
AgeCommit message (Collapse)Author
2018-12-12proxy buffering still needs to be offMark Felder
2018-12-12Update proxy config to improve behavior and allow compatibility with Safari ↵Mark Felder
on MacOS and iOS
2018-11-30reverse_proxy: more headershref
2018-11-13Merge branch 'add-MIX_ENV-to-systemd-example' into 'develop'lambda
Add MIX_ENV=prod to systemd example file See merge request pleroma/pleroma!445
2018-11-12Add MIX_ENV=prodshibayashi
2018-11-11example configs: kill STS/CT headersWilliam Pitcock
2018-11-11example configs: remove obsolete CSP configurationWilliam Pitcock
2018-11-11nginx example config: remove CORS headers, now managed by CORSPlug.William Pitcock
2018-11-06Merge branch 'patch-2' into 'develop'kaniini
Remove Access-Control-Allow-Origin in pleroma.nginx See merge request pleroma/pleroma!424
2018-11-05Remove Access-Control-Allow-OriginHakaba Hitoyo
2018-11-04Use example.tld so a single search and replace worksshibayashi
2018-11-03Update instructionsshibayashi
2018-11-03Use the same example domain in all config examplesshibayashi
2018-11-03Use the server name as variableshibayashi
2018-10-25Add a little bit more detail in the comments.shibayashi
2018-10-25Add some security related directives to the systemd service exampleshibayashi
2018-09-28Relax form-action content security policybarrucadu
'self' only allows forms submitted to the same origin, which breaks the "remote follow" form. To allow remote following, we want to allow forms to be submitted to any host.
2018-09-03installation/pleroma-apache.conf: OCSP stapling needs to be outside of the ↵shibayashi
virtualhost directive
2018-08-30Add frame-ancestors 'none' to all configsshibayashi
2018-08-29installation/pleroma.nginx: Add 'always' to the security headers, so that ↵shibayashi
they are included regardless of the status code
2018-08-29installation/pleroma-apache.conf: Add TLS configuration and security headersshibayashi
2018-08-29installation/pleroma.vcl: Add HTTP security headersshibayashi
2018-08-29installation/caddyfile-pleroma.example: Add Content-Security-Policyshibayashi
2018-08-28installation/pleroma.nginx: Add Content-Security-PolicyHaelwenn (lanodan) Monnier
Closes: https://git.pleroma.social/pleroma/pleroma/issues/266
2018-08-26Improve example Caddyfileshibayashi
2018-08-23Add an OpenRC servicevaartis
2018-06-16Add comment about TLS curves for older servers.Artik Banana
2018-06-13* fix nginx 1.15 warning:dex
nginx: [warn] the "ssl" directive is deprecated, use the "listen ... ssl" directive instead
2018-06-11* Removed TLSv1 and TLSv1.1Artik Banana
* Added OCSP Stapling * Added SSL Cache * Changed ciphers * Specified ECDH curves
2018-06-11Security upgrades:Artik Banana
* Removed TLSv1 and TLSv1.1 * Added OCSP Stapling * Added SSL Cache * Changed ciphers * Specified ECDH curves
2018-06-03caddy config examplewitti
2018-05-28Update pleroma.nginxDominik V. Salonen
proxy_ignore_client_abort will continue to fetch from upstream even if a client aborts the connection. This is highly recommended when cache is being used. If a client leaves/refreshes the page while a user's avatar or some other media is halfway loaded, the cached copy might in some cases be broken. Leaving future requests to the same URL broken until cache expires.
2018-05-23Repair some access-control headers required for third-party webclientsNiklas Poslovski
2018-05-22Add access-control-expose-headers to Nginx default configNiklas Poslovski
2018-05-13Merge branch 'patch-2' into 'develop'lambda
Nginx config - secure defaults See merge request pleroma/pleroma!146
2018-05-13Merge branch 'feld-varnish' into 'develop'lambda
More varnish fixes See merge request pleroma/pleroma!149
2018-05-11Remove alias directive in service fileNormandy
Systemd will complain otherwise.
2018-05-07Don't strip headers from backend for /notice/ eitherMark Felder
2018-05-07Caching notice URLs does not produce pleasant resultsMark Felder
2018-05-06Merge branch 'feld-varnish' into 'develop'lambda
Caching /objects/ URLs breaks them in Mastoweb as they don't redirect to the /notice/ See merge request pleroma/pleroma!110
2018-05-06Added headers for a more secure default.Artik Banana
2018-04-20Add info about certbot with the webroot plugin to pleroma.nginxcsaurus
2018-04-19Remove hack for /about/more as we are doing this in Pleroma nowMark Felder
2018-04-13Caching /objects/ URLs breaks them in Mastoweb as they don't redirect to the ↵Mark Felder
/notice/ Not sure why it matters if you cache it or not. What's different about this JSON blob? Perhaps it's a header that needs to be set for the redirect to happen?
2018-04-10Merge branch 'feld-varnish' into 'develop'lambda
Remove attempted caching of toots See merge request pleroma/pleroma!106
2018-04-10Remove attempted caching of tootsMark Felder
This does not work as expected. We should not attempt to be clever here. Varnish will do the right thing if we just teach Pleroma to set headers properly for content we know can be cached.
2018-04-10Indentation for Apache vhostStanislas
2018-04-09Merge branch 'develop' into 'develop'lambda
Fix max upload size in nginx config. See merge request pleroma/pleroma!102
2018-04-08Apache config for everything on one host. nepfag
2018-04-08Fix max upload size in nginx config.Hector A. Escobedo
The built-in nginx default does not allow users to upload images larger than 1 MB. This increases the maximum request size to match the default Pleroma config upload_limit parameter. Some helpful comments were also added.
generated by cgit v1.2.3 (git 2.26.2) at 2025-04-22 07:08:00 +0000