Craig Peterson
68a495f144
actually return error on redeclaration
2017-10-19 10:27:10 -04:00
Matthew Holt
a2db340378
tls: Final check of OCSP response validity date before stapling
2017-10-16 17:25:55 -06:00
Alex Gaynor
c6a2911725
tls: Handle when OCSP responder cert expires before a response it issued ( #1922 )
...
* Handle the case of an OCSP responder certificate expiring before an OCSP response it issued
* oops
* doh, gofmt
2017-10-16 17:23:21 -06:00
Matthew Holt
654f26cb91
tls: Evict existing certificates from cache when loading ones from disk
2017-10-16 16:40:43 -06:00
Craig Peterson
dd4b3efa47
remove 'macro foo' syntax
2017-10-15 19:10:56 -04:00
Craig Peterson
3a969bc075
add nil check
2017-10-13 11:08:17 -04:00
Craig Peterson
425f61142f
initial implementation of caddyfile macros
2017-10-13 11:04:44 -04:00
Wèi Cōngruì
79072828a5
staticfiles: remove mapFSRootOpenErr because Go stdlib has fixed the relevant issue ( #1919 )
2017-10-13 08:01:30 -06:00
Eugene Dementiev
0548b97701
init: Fix upstart script for Centos6 (and Amazon Linux) ( #1914 )
2017-10-12 17:02:46 -06:00
Guilherme Bernal
99625ae3f6
on: Allow nonblocking command with no other arguments ( #1913 )
2017-10-12 10:11:50 -06:00
Matthew Holt
c4dfbb9956
Update readme and changelog for v0.10.10
2017-10-08 22:20:05 -06:00
Matthew Holt
b0d9c058cc
Change CASE_SENSITIVE_PATH default to false
...
A default of true is risky when protecting assets by matching base path.
It's not obvious that protecting /foo/ will allow /Foo/ through, and if
accessing static files on a case-insensitive file system... that's no
good. So the default is now to be case-INsensitive when matching paths.
2017-10-08 22:19:35 -06:00
Matthew Holt
cccfe3b4ef
proxy: Allow insecure certificate in QUIC tests
2017-10-05 11:11:48 -06:00
Matthew Holt
f71955e89c
Grammar improvements
2017-10-04 18:37:11 -06:00
elcore
dd44491e13
startupshutdown: gofmt code ( #1902 )
2017-10-03 07:18:29 -06:00
Mohammad Gufran
ac865e8910
fastcgi: Add support for SRV upstreams ( #1870 )
2017-10-03 07:17:54 -06:00
elcore
b7167803f2
startupshutdown: is an alias for 'on' ( #1880 )
2017-10-01 20:41:45 -06:00
Kevin Stock
97710ced7e
Add hook for instance startup ( #1888 )
...
Provides a new hook for plugins as a means to provide the current caddy.Instance when starting or restarting.
2017-10-01 20:36:23 -06:00
elcore
f878247a18
Implement CertRenewEvent ( #1879 )
2017-10-01 11:25:30 -06:00
elcore
118cf5f240
Implement 'http.on' plugin and replace UUID lib ( #1864 )
...
* Implement 'command' plugin
* Rename 'command' to 'on'
* Split this PR
2017-10-01 11:24:50 -06:00
Matthew Holt
f9cba03d25
redir: Do not count multiple rules with if statements as duplicates
...
This allows you to have multiple redir directives conditioned solely
upon if statements, without regard to path.
2017-09-28 11:41:11 -06:00
Matthew Holt
baf6db5b57
Apply Apache license to all .go source files ( closes #1865 )
...
I am not a lawyer, but according to the appendix of the license,
these boilerplate notices should be included with every source file.
2017-09-22 23:56:58 -06:00
Matthew Holt
e60400a92e
caddyfile: Use full, absolute file path in token structs ( fixes #1892 )
...
When two Caddyfiles with the same name, but different paths, are
imported, it can cause a weird bug because isNewLine() returned false
when it should return true, since the files are actually different,
but it couldn't know that because only the base name was stored,
not the whole path.
2017-09-22 20:02:48 -06:00
Tw
e377eeff50
proxy: websocket proxy exits immediately if backend is shutdown ( #1869 )
...
Signed-off-by: Tw <tw19881113@gmail.com>
2017-09-22 18:10:48 -06:00
Matthew Holt
84a2f8e89e
Add iOS 11 stable ClientHello to MITM test corpus (issue #1890 )
2017-09-22 17:41:47 -06:00
Matthew Holt
64be3e410c
websocket: Avoid multiple calls to WriteHeader if Upgrade fails
2017-09-22 17:39:18 -06:00
Matthew Holt
643dac688c
Clarify unofficial builds in version string
2017-09-22 17:25:43 -06:00
Daniel van Dorp
0a624f87ff
Merge pull request #1884 from timothywlewis/fix-pid-error-in-linux-sysvinit
...
Fix pid error in linux sysvinit
2017-09-22 16:45:55 +02:00
Tim Lewis
fea8f37f9d
Fix linux-sysvinit script to prevent missing caddy.log
...
Create /var/log/caddy.log and chown prior to starting caddy.
Caddy running as DAEMONUSER does not have permission to create the /var/log/caddy.log.
2017-09-18 19:16:15 -04:00
Tim Lewis
a808252079
Fix spurious .pid file error in linux-sysvinit
...
This change eliminates the `[ERROR] Could not write pidfile: open /var/run/caddy.pid: permission denied` from caddy.log.
The start-stop-daemon writes the file as root so the DAEMONUSER that caddy runs as cannot write to the .pid file.
2017-09-18 19:14:56 -04:00
Davor Kapsa
93bcca0ccc
travis: add 1.x instead 1.9 go version ( #1868 )
2017-09-16 09:48:27 -06:00
Fake ID
d39b95600a
readme: fixed build instructions ( #1875 )
2017-09-16 09:35:58 -06:00
Matthew Holt
545fa844bb
EULA: Remove restriction clause related to sponsors header
2017-09-14 21:45:32 -06:00
Adam Williams
b6e10e3cb2
Revert "Implement Caddy-Sponsors HTTP response header" ( #1866 )
...
This reverts commit 56453e9664
.
2017-09-14 21:42:22 -06:00
Matthew Holt
bc56793d3b
Update readme and changes for version 0.10.9
2017-09-12 11:02:53 -06:00
Matthew Holt
ad973f1d12
Merge branch 'sponsors-header'
2017-09-12 10:53:21 -06:00
Matthew Holt
c06941ed52
proxy: Disable QUIC test outside CI environment (see #1782 )
2017-09-11 23:34:39 -06:00
Matthew Holt
54c65cb025
templates: Properly propagate response status code ( fixes #1841 )
...
Benchmarks with wrk showed no noticeable performance impact
2017-09-11 23:25:41 -06:00
twdkeule
22b835b9f4
proxy: Support QUIC for upstream connections ( #1782 )
...
* Proxy can now use QUIC for upstream connections
Add HandshakeTimeout, change h2quic syntax
* Add setup and upstream test
Test QUIC proxy with actual h2quic instance
Use different port fo QUIC test server
Add quic host to CI config
Added testdata to vendor
Revert "Added testdata to vendor"
This reverts commit 959512282deed8623168d090e5ca5e5a7933019c.
* Use local testdata
2017-09-11 19:49:02 -06:00
Matthew Holt
46ae4a6652
tls: Remove expiring certificates from cache and load renewed ones
...
Renewed certificates would not be reloaded into the cache because their
names conflict with names of certificates already in the cache; this
was intentional when loading new certs to avoid confusion, but is
problematic when renewing, since the old certificate doesn't get
evicted from the cache. (Oops.)
Here, I remedy this situation by explicitly deleting the old cert from
the cache before adding the renewed one back in.
2017-09-11 12:37:42 -06:00
Matthew Holt
56453e9664
Implement Caddy-Sponsors HTTP response header
...
(See EULA.) Personally-licensed official Caddy builds cannot remove
this header by configuration. The commercially-licensed builds of Caddy
don't have this header.
2017-09-10 19:51:57 -06:00
Matthew Holt
3b144c21d0
Change build program to use new builds package
2017-09-10 14:09:57 -06:00
Matthew Holt
9e156e0940
Update readme/changes for v0.10.8
2017-09-08 11:06:39 -06:00
Matt Holt
65191eb5ae
Merge pull request #1861 from mholt/fix1859
...
httpserver: Fix #1859 by cleaning paths when matching them
2017-09-08 11:04:09 -06:00
Matthew Holt
f6d75bb79a
httpserver: Fix #1859 by cleaning paths when matching them
...
Signed-off-by: Matthew Holt <mholt@users.noreply.github.com>
2017-09-08 07:19:52 -06:00
Matthew Holt
f069a575cc
Add EULA
...
The End-User License Agreement applies to official Caddy binaries;
the source code is still under the same open source license.
2017-09-06 19:03:53 -06:00
Matt Holt
32bb6a4cde
Merge pull request #1856 from twdkeule/fix-index-push
...
Do not push index file when not in a rule
2017-09-06 06:59:55 -06:00
Fiisio
a59bdd08ca
fastcgi: use bytes.Contains and strconv.Itoa ( #1857 )
2017-09-06 06:33:48 -06:00
Thomas De Keulenaer
b324a32b61
Do not push index file when not in a rule
...
+ test
2017-09-04 15:53:41 +02:00
John Chadwick
10484cfad2
fastcgi: Fix SCRIPT_NAME when path in address ( #1852 )
...
* Add tests for SCRIPT_NAME
* fastcgi: Include vhost path prefix in SCRIPT_NAME
2017-09-01 22:15:53 -06:00