f7a70266ed
Implement per-site index ( #1906 )
2017-10-29 21:13:10 +00:00
fc75527eb5
onevent/startupshutdown: run command once per server block ( #1934 )
2017-10-23 00:27:44 +02:00
e5d04f9a96
Change log output for startup and shutdown ( #1932 )
...
Changes the log output of on startup
2017-10-22 13:43:40 +01:00
59a8ada4a8
Fix CI Tests ( #1929 )
2017-10-19 11:02:56 -06:00
a2db340378
tls: Final check of OCSP response validity date before stapling
2017-10-16 17:25:55 -06:00
c6a2911725
tls: Handle when OCSP responder cert expires before a response it issued ( #1922 )
...
* Handle the case of an OCSP responder certificate expiring before an OCSP response it issued
* oops
* doh, gofmt
2017-10-16 17:23:21 -06:00
654f26cb91
tls: Evict existing certificates from cache when loading ones from disk
2017-10-16 16:40:43 -06:00
79072828a5
staticfiles: remove mapFSRootOpenErr because Go stdlib has fixed the relevant issue ( #1919 )
2017-10-13 08:01:30 -06:00
0548b97701
init: Fix upstart script for Centos6 (and Amazon Linux) ( #1914 )
2017-10-12 17:02:46 -06:00
99625ae3f6
on: Allow nonblocking command with no other arguments ( #1913 )
2017-10-12 10:11:50 -06:00
c4dfbb9956
Update readme and changelog for v0.10.10
2017-10-08 22:20:05 -06:00
b0d9c058cc
Change CASE_SENSITIVE_PATH default to false
...
A default of true is risky when protecting assets by matching base path.
It's not obvious that protecting /foo/ will allow /Foo/ through, and if
accessing static files on a case-insensitive file system... that's no
good. So the default is now to be case-INsensitive when matching paths.
2017-10-08 22:19:35 -06:00
cccfe3b4ef
proxy: Allow insecure certificate in QUIC tests
2017-10-05 11:11:48 -06:00
f71955e89c
Grammar improvements
2017-10-04 18:37:11 -06:00
dd44491e13
startupshutdown: gofmt code ( #1902 )
2017-10-03 07:18:29 -06:00
ac865e8910
fastcgi: Add support for SRV upstreams ( #1870 )
2017-10-03 07:17:54 -06:00
b7167803f2
startupshutdown: is an alias for 'on' ( #1880 )
2017-10-01 20:41:45 -06:00
97710ced7e
Add hook for instance startup ( #1888 )
...
Provides a new hook for plugins as a means to provide the current caddy.Instance when starting or restarting.
2017-10-01 20:36:23 -06:00
f878247a18
Implement CertRenewEvent ( #1879 )
2017-10-01 11:25:30 -06:00
118cf5f240
Implement 'http.on' plugin and replace UUID lib ( #1864 )
...
* Implement 'command' plugin
* Rename 'command' to 'on'
* Split this PR
2017-10-01 11:24:50 -06:00
f9cba03d25
redir: Do not count multiple rules with if statements as duplicates
...
This allows you to have multiple redir directives conditioned solely
upon if statements, without regard to path.
2017-09-28 11:41:11 -06:00
baf6db5b57
Apply Apache license to all .go source files ( closes #1865 )
...
I am not a lawyer, but according to the appendix of the license,
these boilerplate notices should be included with every source file.
2017-09-22 23:56:58 -06:00
e60400a92e
caddyfile: Use full, absolute file path in token structs ( fixes #1892 )
...
When two Caddyfiles with the same name, but different paths, are
imported, it can cause a weird bug because isNewLine() returned false
when it should return true, since the files are actually different,
but it couldn't know that because only the base name was stored,
not the whole path.
2017-09-22 20:02:48 -06:00
e377eeff50
proxy: websocket proxy exits immediately if backend is shutdown ( #1869 )
...
Signed-off-by: Tw <tw19881113@gmail.com >
2017-09-22 18:10:48 -06:00
84a2f8e89e
Add iOS 11 stable ClientHello to MITM test corpus (issue #1890 )
2017-09-22 17:41:47 -06:00
64be3e410c
websocket: Avoid multiple calls to WriteHeader if Upgrade fails
2017-09-22 17:39:18 -06:00
643dac688c
Clarify unofficial builds in version string
2017-09-22 17:25:43 -06:00
0a624f87ff
Merge pull request #1884 from timothywlewis/fix-pid-error-in-linux-sysvinit
...
Fix pid error in linux sysvinit
2017-09-22 16:45:55 +02:00
fea8f37f9d
Fix linux-sysvinit script to prevent missing caddy.log
...
Create /var/log/caddy.log and chown prior to starting caddy.
Caddy running as DAEMONUSER does not have permission to create the /var/log/caddy.log.
2017-09-18 19:16:15 -04:00
a808252079
Fix spurious .pid file error in linux-sysvinit
...
This change eliminates the `[ERROR] Could not write pidfile: open /var/run/caddy.pid: permission denied` from caddy.log.
The start-stop-daemon writes the file as root so the DAEMONUSER that caddy runs as cannot write to the .pid file.
2017-09-18 19:14:56 -04:00
93bcca0ccc
travis: add 1.x instead 1.9 go version ( #1868 )
2017-09-16 09:48:27 -06:00
d39b95600a
readme: fixed build instructions ( #1875 )
2017-09-16 09:35:58 -06:00
545fa844bb
EULA: Remove restriction clause related to sponsors header
2017-09-14 21:45:32 -06:00
b6e10e3cb2
Revert "Implement Caddy-Sponsors HTTP response header" ( #1866 )
...
This reverts commit 56453e9664aa2c24115eb52a4e933febb3cac1f7.
2017-09-14 21:42:22 -06:00
bc56793d3b
Update readme and changes for version 0.10.9
2017-09-12 11:02:53 -06:00
ad973f1d12
Merge branch 'sponsors-header'
2017-09-12 10:53:21 -06:00
c06941ed52
proxy: Disable QUIC test outside CI environment (see #1782 )
2017-09-11 23:34:39 -06:00
54c65cb025
templates: Properly propagate response status code ( fixes #1841 )
...
Benchmarks with wrk showed no noticeable performance impact
2017-09-11 23:25:41 -06:00
22b835b9f4
proxy: Support QUIC for upstream connections ( #1782 )
...
* Proxy can now use QUIC for upstream connections
Add HandshakeTimeout, change h2quic syntax
* Add setup and upstream test
Test QUIC proxy with actual h2quic instance
Use different port fo QUIC test server
Add quic host to CI config
Added testdata to vendor
Revert "Added testdata to vendor"
This reverts commit 959512282deed8623168d090e5ca5e5a7933019c.
* Use local testdata
2017-09-11 19:49:02 -06:00
46ae4a6652
tls: Remove expiring certificates from cache and load renewed ones
...
Renewed certificates would not be reloaded into the cache because their
names conflict with names of certificates already in the cache; this
was intentional when loading new certs to avoid confusion, but is
problematic when renewing, since the old certificate doesn't get
evicted from the cache. (Oops.)
Here, I remedy this situation by explicitly deleting the old cert from
the cache before adding the renewed one back in.
2017-09-11 12:37:42 -06:00
56453e9664
Implement Caddy-Sponsors HTTP response header
...
(See EULA.) Personally-licensed official Caddy builds cannot remove
this header by configuration. The commercially-licensed builds of Caddy
don't have this header.
2017-09-10 19:51:57 -06:00
3b144c21d0
Change build program to use new builds package
2017-09-10 14:09:57 -06:00
9e156e0940
Update readme/changes for v0.10.8
2017-09-08 11:06:39 -06:00
65191eb5ae
Merge pull request #1861 from mholt/fix1859
...
httpserver: Fix #1859 by cleaning paths when matching them
2017-09-08 11:04:09 -06:00
f6d75bb79a
httpserver: Fix #1859 by cleaning paths when matching them
...
Signed-off-by: Matthew Holt <mholt@users.noreply.github.com >
2017-09-08 07:19:52 -06:00
f069a575cc
Add EULA
...
The End-User License Agreement applies to official Caddy binaries;
the source code is still under the same open source license.
2017-09-06 19:03:53 -06:00
32bb6a4cde
Merge pull request #1856 from twdkeule/fix-index-push
...
Do not push index file when not in a rule
2017-09-06 06:59:55 -06:00
a59bdd08ca
fastcgi: use bytes.Contains and strconv.Itoa ( #1857 )
2017-09-06 06:33:48 -06:00
b324a32b61
Do not push index file when not in a rule
...
+ test
2017-09-04 15:53:41 +02:00
10484cfad2
fastcgi: Fix SCRIPT_NAME when path in address ( #1852 )
...
* Add tests for SCRIPT_NAME
* fastcgi: Include vhost path prefix in SCRIPT_NAME
2017-09-01 22:15:53 -06:00
