summaryrefslogtreecommitdiffstats
path: root/roles/git/files/etc/nginx/sites-available
Commit message (Collapse)AuthorAgeFiles
* cgit: Tighten Content-Security-Policy.Guilhem Moulin2020-05-211
| | | | Add frame-ancestors and form-action.
* nginx: Add Expires: HTTP headers.Guilhem Moulin2020-05-171
|
* git, wiki, website: Improve gzip support.Guilhem Moulin2020-05-171
|
* git browser and HTTP backend: harden config and port to Debian 10.Guilhem Moulin2020-05-161
|
* Upgrade wiki baseline to Debian Stretch.Guilhem Moulin2018-12-031
|
* nginx: add support for HTTP/2.Guilhem Moulin2016-12-131
|
* nginx: Don't hard-code the HPKP headers.Guilhem Moulin2016-07-121
| | | | | Instead, lookup the pubkeys and compute the digests on the fly. But never modify the actual header snippet to avoid locking our users out.
* Set a HPKP on the webmail, website/wiki/git and list manager.Guilhem Moulin2016-04-011
|
* Set a CSP on the webmail, website/wiki and list manager.Guilhem Moulin2016-04-011
|
* Set HTTP security headers.Guilhem Moulin2016-03-301
| | | | See https://securityheaders.io .
* Let's EncryptGuilhem Moulin2016-03-021
|
* Use the Let's Encrypt CA for our public certs.Guilhem Moulin2015-12-201
|
* nginx: Move include.d/* to snippets/.Guilhem Moulin2015-12-201
|
* nginx: s/conf.d/include.d/Guilhem Moulin2015-12-151
|
* ngnix: mv ssl/config conf.d/sslGuilhem Moulin2015-12-091
|
* nginx: adjust expiration date for static content.Guilhem Moulin2015-10-301
|
* Replace gitweb with cgit.Guilhem Moulin2015-09-212
|
* Git (gitolite + git-http-backend + gitweb) configurationGuilhem Moulin2015-06-072
By default repos are be readable by gitweb and the web server ('gitweb' and 'www-data' are both in the 'gitolite' group). Private repo owners will have 'chmod -R og-rwx' manually. To automatically add new repos to gitweb's 'project.list' file, make it readable to the special 'gitweb' user. See /usr/share/doc/gitolite3/README.txt.gz for details.