summary refs log tree commit diff
path: root/nixos/modules/services/web-servers
Commit message (Collapse)AuthorAge
* Merge pull request #163716 from svanderburg/fixtomcatSander van der Burg2022-03-13
|\ | | | | nixos/tomcat: configure default group and fix broken default package …
| * nixos/tomcat: configure default group and fix broken default package referenceSander van der Burg2022-03-13
| | | | | | | | | | | | | | | | | | | | | | | | Without this fix, evaluating a NixOS configuration with Tomcat enabled and the default settings results in the following evaluation error: Failed assertions: - users.users.tomcat.group is unset. This used to default to nogroup, but this is unsafe. For example you can create a group for this user with: users.users.tomcat.group = "tomcat"; users.groups.tomcat = {};
* | nixos/pomerium: avoid blocking when renewing ACME certificatesLuke Granger-Brown2022-03-11
|/
* nginxModules: add option disableIPCIzorkin2022-03-08
| | | | | The disableIPC option is required to checking enabled nginxModules and disable the SystemCallFilter IPC filter.
* Merge pull request #159187 from martinetd/logrotateJanne Heß2022-02-23
|\ | | | | logrotate service enhancements
| * nginx: add logrotate rule for nginx logsDominique Martinet2022-02-11
| |
* | Merge pull request #158592 from SuperSandro2000/nginx-nixosSandro2022-02-20
|\ \
| * | treewide: use configured nginx packageSandro Jäckel2022-02-08
| | |
* | | Merge pull request #141650 from 06kellyjac/agateSandro2022-02-16
|\ \ \ | |_|/ |/| |
| * | nixos/agate: init06kellyjac2022-02-07
| |/
* / nixos/shellinabox: dropajs1242022-02-08
|/
* Merge branch 'master' into nginxJörg Thalheim2022-01-31
|\
| * nixos/nginx: Add defaultListenAddresses optionDaniel Olsen2022-01-24
| | | | | | | | | | | | Lets you specify the default listen address if none are listed in the vhost configuration. Useful for hosts with more than one ip
| * Merge pull request #153942 from winterqt/acme-web-server-ownership-assertionsMartin Weinelt2022-01-11
| |\
| | * nixos/acme: ensure web servers using certs can access themWinter2022-01-08
| | |
| * | Merge pull request #153589 from abbradar/uwsgi-fixesNikolay Amiantov2022-01-09
| |\ \ | | |/ | |/| uWSGI configuration generation fixes
| | * uwsgi service: deduplicate plugins listNikolay Amiantov2022-01-05
| | | | | | | | | | | | Duplicates can lead to unnecessary `uwsgi` rebuilds and conflicts.
| | * uwsgi service: redefine PATH envvarNikolay Amiantov2022-01-05
| | | | | | | | | | | | | | | Previously if user had `PATH` variable set we would define several `PATH` variables and trigger a conflict.
| * | nixos/caddy: add globalConfig optionAaron Andersen2022-01-06
| |/
| * Revert "nixos/nginx: disable rejectSSL activation when https is disabled"Naïm Favier2022-01-02
| | | | | | | | This reverts commit 2f66ac01e91d70837377c4356e5c99843b71f105.
| * nixos/acme: Add defaults and inheritDefaults optionLucas Savva2021-12-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Allows configuring many default settings for certificates, all of which can still be overridden on a per-cert basis. Some options have been moved into .defaults from security.acme, namely email, server, validMinDays and renewInterval. These changes will not break existing configurations thanks to mkChangedOptionModule. With this, it is also now possible to configure DNS-01 with web servers whose virtualHosts utilise enableACME. The only requirement is you set `acmeRoot = null` for each vhost. The test suite has been revamped to cover these additions and also to generally make it easier to maintain. Test config for apache and nginx has been fully standardised, and it is now much easier to add a new web server if it follows the same configuration patterns as those two. I have also optimised the use of switch-to-configuration which should speed up testing.
| * Merge pull request #147973 from aanderse/nixos/caddyAaron Andersen2021-12-25
| |\ | | | | | | nixos/caddy: introduce several new options
| | * nixos/caddy: introduce several new optionsAaron Andersen2021-12-20
| | |
| * | Merge pull request #147027 from Izorkin/update-nginx-ktls7c6f434c2021-12-24
| |\ \ | | |/ | |/| nginxMainline: enable ktls support
| | * nixos/nginx: disable rejectSSL activation when https is disabledIzorkin2021-11-27
| | |
| | * nixos/nginx: tengine requires allowing @ipc callsIzorkin2021-11-27
| | |
| | * nixos/nginx: add kTLS optionIzorkin2021-11-27
| | |
| * | Merge pull request #148785 from pennae/more-option-doc-staticizingGraham Christensen2021-12-17
| |\ \ | | | | | | | | treewide: more defaultText for options
| | * | treewide: add literalDocBook text to options with complex defaultspennae2021-12-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | some options have default that are best described in prose, such as defaults that depend on the system stateVersion, defaults that are derivations specific to the surrounding context, or those where the expression is much longer and harder to understand than a simple text snippet.
| * | | Merge pull request #139815 from ncfavier/fastcgiParams-pathSandro2021-12-07
| |\ \ \
| | * | | nixos/nginx: allow paths in fastcgiParamsNaïm Favier2021-09-29
| | | | | | | | | | | | | | | | | | | | Useful for pointing `SCRIPT_FILENAME` at a derivation.
| * | | | nixos/*: escape config reference in examples and descriptionspennae2021-12-02
| | | | |
| * | | | nixos/*: add trivial defaultText for options with simple defaultspennae2021-12-02
| | | | |
* | | | | Update nixos/modules/services/web-servers/nginx/default.nixJörg Thalheim2022-01-31
| | | | |
* | | | | nixos/nginx: fix mincore filteringJörg Thalheim2021-12-05
|/ / / / | | | | | | | | | | | | Mincore is a syscall, not a group.
* | | | Merge pull request #146533 from SuperSandro2000/nginxSandro2021-11-30
|\ \ \ \ | |_|/ / |/| | |
| * | | nixos/nginx: fix start when recommendedOptimisation is offSandro2021-11-18
| | |/ | |/| | | | Also done by other distros for example Fedora https://bodhi.fedoraproject.org/updates/FEDORA-2020-78690e2cdd
* / | caddy: include and utilize systemd service from upstream (#147305)Aaron Andersen2021-11-29
|/ /
* | nixos/nginx: fix SystemCallFilter after 1fc113f0df6e83c9dc3e5110ae7706772f21ba68ajs1242021-11-16
| |
* | treewide: switch ``builtins.fromJSON(builtins.readFile ./file.json)`` to ↵Sandro Jäckel2021-11-03
| | | | | | | | lib.importJSON ./file.json
* | nixos/nginx: disable MemoryDenyWriteExecute for pkgs.openrestyBruno Bigras2021-10-12
| | | | | | | | | | | | fix #140655 Co-authored-by: Yurii Izorkin <izorkin@elven.pw>
* | nixos/varnish: add enableConfigCheckajs1242021-10-06
| |
* | nixos/doc: clean up defaults and examplesNaïm Favier2021-10-04
| |
* | nixos/lighttpd: support new authentication modulesBrecht Savelkoul2021-09-27
| |
* | nixos/trafficserver: avoid input from derivationrnhmjoj2021-09-23
|/ | | | | | | Using builtins.readFile to load upstream defaults is a clever trick, but it's not allowed in restricted evaluation mode: which means it fails on Hydra, for example. Besides - in Nixpkgs - depending on derivation as inputs is considered bad practice and should be avoided.
* nixos/zope2: define groupGuillaume Girol2021-09-18
| | | | untested as the module is broken (attribute 'modules' missing)
* nixos/httpd: add none option to logFormatDaniel Șerbănescu2021-08-22
|
* Merge pull request #134008 from aanderse/httpdRobert Hensing2021-08-21
|\ | | | | nixos/httpd: add virtualHosts.<name>.listenAddresses option
| * nixos/httpd: add virtualHosts.<name>.listenAddresses optionAaron Andersen2021-08-20
| |
* | caddy: add virtualHosts stubhappysalada2021-08-20
| |
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-28 13:39:56 +0000