Tags: ErcinDedeoglu/proxma
Tags
refactor(nginx_enqueue.rs): streamline port parsing logic by removing… … redundant checks and only parsing global port if necessary fix(nginx_enqueue.rs): ensure fallback to global proxma.port only occurs when valid, preventing processing of entries without a specified port
feat(zone_manager.rs): implement pagination for Cloudflare zone retri… …eval to handle large zone lists refactor(zone_manager.rs): use async RwLock for ZONE_CACHE to improve concurrency fix(zone_manager.rs): correct find_best_match_from_cache to be async for consistency chore(.sh): add new repomix command for Dockerfile and fail2ban to streamline build process fix(jail.local): standardize bantime to 1h for all fail2ban rules for consistency and clarity perf(jail.local): increase maxretry for nginx-request-flood to reduce false positives
feat(Dockerfile): add dos2unix and dcron to support script execution … …and scheduling Add dos2unix to ensure scripts have correct line endings. Add dcron to enable scheduled tasks. Introduce update_cloudflare_ips.sh and startup.sh scripts for automated IP updates and application startup. chore(Dockerfile): set up cron job for nightly Cloudflare IP updates Schedule update_cloudflare_ips.sh to run every night at 2:00 AM to ensure the latest Cloudflare IPs are used. refactor(Dockerfile): consolidate script handling and execution Copy all scripts to /usr/local/bin, ensure they are executable, and convert line endings. Replace CMD with startup.sh to manage application startup processes. feat(startup.sh): create script to manage application startup Introduce startup.sh to start cron daemon, Nginx, and the main application, ensuring all components are initialized properly. feat(update_cloudflare_ips.sh): create script for updating Cloudflare IPs Add update_cloudflare_ips.sh to update Cloudflare IPs and reload Nginx, logging the update process for monitoring purposes.
refactor(queue): rename ssl_dns_* fields to cloudflare_* for clarity Refactor the code to use more descriptive variable names related to Cloudflare credentials. This change improves code readability and clarifies the specific DNS provider being used, reducing potential confusion with other providers.
fix(nginx_enqueue.rs): update environment variable names for API toke… …n and email Change environment variable names from PROXMA_SSL_DNS_API_TOKEN and PROXMA_SSL_DNS_EMAIL to PROXMA_CLOUDFLARE_API_TOKEN and PROXMA_CLOUDFLARE_EMAIL to reflect the correct service being used.
feat(certbot.rs, nginx_manager.rs, nginx_templates.rs, nginx_queue_pr… …ocessor.rs): add support for staging environment in SSL certificate management Add environment-specific configuration directories for certbot credentials to separate staging and production environments. Update Nginx configuration generation to include environment-specific paths for SSL certificates. Modify Nginx queue processor to handle staging SSL certificates. This change allows testing SSL configurations in a staging environment without affecting production settings.
feat(certbot.rs): add validation for Cloudflare credentials to ensure… … valid input feat(certbot.rs): implement detailed logging for credential handling and command execution fix(certbot.rs): set file permissions for credentials file to enhance security on Unix systems
feat(Dockerfile): add certbot-dns-cloudflare package for DNS challeng… …e support fix(certbot.rs): make DnsCredentials fields public for external access feat(certbot.rs): implement DNS challenge with Cloudflare credentials file fix(certbot.rs): add DNS propagation wait time for Cloudflare challenges refactor(certbot.rs): improve error handling and logging for certbot command feat(cert_queue_processor.rs): support DNS challenge with Cloudflare in cert queue processing
PreviousNext