jlengrand/gitlab-recipes
1
0
Fork 0
mirror of https://github.com/jlengrand/gitlab-recipes.git synced 2026-03-10 08:11:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
295 Commits 4 Branches 3 Tags
master
Commit Graph

40 Commits

Author SHA1 Message Date
sinm
316aad8868 Added few missed lines about gitlab-shell via SSL 2014-01-12 00:23:13 +03:00
Arif Ali
711741ea24 don't need to disable gravatar, actually use ssl_url 2013-12-31 14:21:42 +00:00
Arif Ali
fbe8d40620 removed reference line numbers 2013-12-30 21:11:59 +00:00
Arif Ali
5dec2a1dea fix typo on gravatar 2013-12-30 11:53:33 +00:00
Arif Ali
706648fb4d make mods to gitlab.yml to enable https to work correctly 2013-12-30 11:53:07 +00:00
Konrad Mohrfeldt
90d3a173bf add mod_headers module dependency for RequestHeader directive 2013-11-10 20:57:26 +01:00
codeling
61f39093fe Incorporate fix for incorrect http redirect 
Incorporates fix from https://github.com/gitlabhq/gitlabhq/issues/715 to make gitlab properly redirect to https instead of http when configured for https
 2013-11-09 11:50:07 +01:00
Sam Gleske
54314ecabc Apache config - better based on SSL config 
This is a better proxy config which is based on the
gitlab-ssl.conf.
 2013-10-30 15:30:41 -04:00
semiosis
eeea95da07 Changed the http-https redirect rule 
As per comments by @sag47 here:
https://github.com/gitlabhq/gitlabhq/issues/4997#issuecomment-25738169
 2013-10-04 21:10:35 -04:00
semiosis
98153fb3cc Fixing rewriterule 
The (.*) regex didn't work with gitlab 6.1 so I switched back to using REQUEST_URI.
 2013-10-03 22:29:52 -04:00
semiosis
29410935c8 Updated with suggestions from sag47 
Made changes as per comments by @sag47

- Added ProxyPassReverse http://127.0.0.1:8080
Though I'm not sure what that's for.

- Simplified regex in rewriterule

- Put back in comments with links to external docs (nginx try)
 2013-10-03 20:33:25 -04:00
semiosis
c4445b83bb Changed port from 9292 (puma) to 8080 (unicorn) 
Fixed port in the proxy backend address for unicorn on port 8080 instead of puma on port 9292.
 2013-10-03 13:40:17 -04:00
semiosis
05acc57c33 Simplified & improved apache proxy config 
Previously there was an unnecessary redirect before & after sign-in to http.  This new configuration eliminates that leak, and is easier to read.
 2013-10-03 13:27:24 -04:00
Sam Gleske
0a5b0e1b4e apache config README update 
Replace instances of gitlab.conf with gitlab-ssl.conf.  The docs
should be more consistent on what it recommends.
 2013-09-25 14:29:43 -04:00
Sam Gleske
003c15500b apache README grammar fix 
changed system to environment
 2013-09-25 14:18:40 -04:00
Sam Gleske
10b00585f3 apache README grammar corrections 2013-09-25 14:16:13 -04:00
Sam Gleske
ab4a23742f apache README grammar fix 2013-09-25 12:34:36 -04:00
Sam Gleske
97ad192492 Updating apache README 
to reflect changes for gitlab.conf and gitlab-ssl.conf
 2013-09-25 10:47:17 -04:00
Sam Gleske
303fe32a02 SSL and non-SSL apache configurations 2013-09-25 10:42:02 -04:00
Sam Gleske
d02b957565 Impersonal changes 2013-09-25 10:40:20 -04:00
Sam Gleske
4c9f3b7d2a Merge branch 'master' into docs-manage_ssl 2013-09-25 09:46:44 -04:00
Sam Gleske
2de38c67a2 Grammar correction in httpd README 2013-09-24 17:03:40 -04:00
Sam Gleske
f071d62fbd Grammar correction in httpd README 2013-09-24 17:01:45 -04:00
Sam Gleske
c1d4ca0bd0 httpd security recommendations added 
Recommendations for disabling mod_suexec and mod_deflate modules.
 2013-09-24 16:23:32 -04:00
Sam Gleske
e57b0bf0b1 Major readme overhaul for apache httpd 2013-09-24 16:10:02 -04:00
Sam Gleske
7b5ff94cfc Modified CA to be more generic 2013-09-24 15:25:48 -04:00
Sam Gleske
e2c8ca3888 More secure SSL and defined errordocuments 
Now ErrorDocuments use GitLab error documents.  When the backend
service is down (i.e. Unicorn) then Apache will show a GitLab
maintenance page (error 503).  Other errors (404, 422, 500) are
also included in the rewrite.

Updated SSL ciphers so that only the strongest SSL ciphers are
allowed.  This is primarily a security update for allowed
encryption ciphers.
 2013-09-24 14:15:03 -04:00
Sam Gleske
417d227e91 Updating mod_rewrite expression for SERVER_NAME 
Also changed the ca.crt example name to be more intuitive.
 2013-09-11 13:52:17 -04:00
Sam Gleske
0d3075dc40 A better Apache httpd config for GitLab 6 2013-09-10 14:50:09 -04:00
Axilleas Pipinellis
260850a5f8 Fix links to CONTRIBUTING.md 2013-08-29 09:22:03 +03:00
cadavrorum
b3665a614e Added gitlab-shell config note 2013-08-26 08:03:28 -07:00
Axilleas Pipinellis
fa40fa7489 Add ssl to https server block 
Prevent error: ssl_error_rx_record_too_long in Firefox
 2013-08-25 10:03:46 +03:00
Axilleas Pipinellis
1a480d659c Add README file in each main dir 2013-08-20 23:12:08 +03:00
Axilleas Pipinellis
9833fc52a7 Use unicorn by default. Add info for puma use, implement #87 2013-08-18 16:09:47 +03:00
Axilleas Pipinellis
88569019c9 Rewrite info about nginx on CentOS 2013-08-18 13:27:45 +03:00
Axilleas Pipinellis
2afea0df60 Refine nginx config for ssl connections. Implements #67 and #92 2013-08-05 16:08:32 +03:00
Axilleas Pipinellis
fabeb6ab74 Enhance existing apache config. Implement #50 and #79 
Beware that adding `ProxyPass /uploads !` would be a security issue,
since uploads are publicly available without any authentification by default.

See: https://github.com/gitlabhq/gitlabhq/issues/348#issuecomment-21682402
 2013-08-05 14:15:25 +03:00
Axilleas Pipinellis
04eb186583 Add alternative CentOS nginx setup. Implement #31 2013-08-05 13:44:10 +03:00
Axilleas Pipinellis
c139f0ef5d Add dummy readme files 2013-08-02 12:21:36 +03:00
Axilleas Pipinellis
75bcb79ca6 Initial commit of new structure 2013-07-31 14:59:21 +03:00