Commit Graph

35 Commits

Author SHA1 Message Date
Rory Powell 4c91c51443 Add budibase.net to CSP 2022-11-08 10:26:28 +00:00
mike12345567 406cd53d11 Some fixes for CLI to get exporting/importing with different ports working, as well as a fix for access to minio through proxy. 2022-10-26 18:51:58 +01:00
Andrew Kingston 3d57010a10 Merge branch 'develop' of github.com:Budibase/budibase into plugins-dev-experience-websocket 2022-09-12 20:00:32 +01:00
Andrew Kingston 53569eb6a2 Merge branch 'plugins-dev-experience' of github.com:Budibase/budibase into plugins-dev-experience-websocket 2022-09-07 12:07:25 +01:00
Andrew Kingston 8925cdf83e Update preview endpoint to be prefixed with /app to not require an updated proxy config 2022-09-07 10:40:00 +01:00
Rory Powell c03ac3f232 Configurable api rate limit through nginx 2022-09-05 09:54:07 +01:00
Rory Powell 668e18d5db
Merge pull request #7622 from Budibase/configurable-api-rate-limit
Configurable api rate limit through nginx
2022-09-05 09:51:09 +01:00
Rory Powell 7eb9cc470b Configurable api rate limit through nginx 2022-09-05 09:09:43 +01:00
Andrew Kingston 171ec2d020 Update nginx confs and add to single image 2022-09-02 12:26:30 +01:00
Martin McKeaveney 0089a07096 merge 2022-08-30 10:33:37 +01:00
Rory Powell ac54e77b61 Update NGINX access log to show upstream_response_time, proxy_host and upstream_addr 2022-08-26 13:18:38 +01:00
Andrew Kingston bd27b8a01d Add preview endpoint to prod nginx conf 2022-08-23 08:50:36 +01:00
Rory Powell 5e6b7dfc06 Add seperate rate limiting config for webhooks + environment variable support 2022-08-05 17:41:55 +01:00
Peter Clement 5b0f1d1212 update csp to account for certain s3 addresses 2022-06-07 11:03:33 +01:00
Kacper 663d2e75b1 Content Security Policy fix for S3 upload
CSP allows wildcard only at first element of FQDN, so policy `*.s3.*.amazonaws.com` is invalid cause it contains second wildcard in the middle of FQDN.

nginx.prod.conf.hbs is not parsed by real handlebarsJS but manual way with regex and replacements. It's impossible to use `{{#each}}` so I've hardcoded all regions available for S3 basing on documentation under: https://docs.aws.amazon.com/general/latest/gr/s3.html
2022-05-05 22:26:57 +02:00
Martin McKeaveney c0cdeaf948 updating helm chart for storage classes 2022-04-27 12:42:57 +01:00
Rory Powell 3d8a8dbdd6 Merge branch 'develop' into labday/nginx-error-page 2022-04-25 16:30:24 +01:00
Martin McKeaveney 21a4d0b03c fix CSP variables 2022-04-04 15:22:31 +01:00
Rory Powell af9a2cfd2f Add static html error page to nginx for 502, 503, 504 2022-03-31 15:58:45 +01:00
Martin McKeaveney 487e0c3d03 adding string interpolation syntax in NGINX 2022-03-31 12:13:42 +01:00
Martin McKeaveney cdd1409f19 adding intercom kit to CSP, and variables 2022-03-31 12:09:55 +01:00
Andrew Kingston 334e41644e Allow data URI's for image sources and font sources 2022-03-28 16:08:25 +01:00
Rory Powell 5392de54d5 Merge branch 'master' into fix/cross-tenant-apps-with-session 2022-03-23 16:45:36 +00:00
Rory Powell cb6103a321 Fix cross tenant apps with session 2022-03-23 16:45:06 +00:00
Martin McKeaveney 11b3d52857 increasing client max body size for uploads 2022-03-21 15:24:39 +00:00
Martin McKeaveney 3104a14012 merge 2022-03-08 12:40:41 +01:00
Martin McKeaveney 43348fd54f merge from master 2022-03-08 12:34:27 +01:00
mike12345567 5d7f4b6ab7 Merge branch 'master' of github.com:Budibase/budibase into develop 2022-03-04 11:25:32 +00:00
Martin McKeaveney 79dfe56d11 allowing iframes from HTTPS URLs 2022-03-02 22:43:41 +01:00
Martin McKeaveney 3e703a0b58 removing need for handlebars in nginx script, automating proxy service deployment 2022-02-22 13:24:21 +01:00
Rory Powell 3ee7997dae Replace location specific with global http host rule 2022-02-21 10:46:45 +00:00
Rory Powell 0bf65376c3 Forward Host header to worker and server through NGINX 2022-02-21 10:22:26 +00:00
Martin McKeaveney 8c254095b1 updated CSP to allow font awesome 2022-02-16 16:54:15 +01:00
Martin McKeaveney cf87c26fa2 adding k8s resolver and updating watchtower variable 2022-02-16 15:33:57 +01:00
Martin McKeaveney a85f667dbe templatize nginx configuration into one prod configuration and add NPM scripts to manage 2022-02-16 14:12:53 +01:00