- Feb 12, 2019
-
-
Richard van der Hoff authored
Lots of updates to the README/INSTALL.md. Fixes #4601.
-
Richard van der Hoff authored
-
Richard van der Hoff authored
If TLS is disabled, it should not be an error if no cert is given. Fixes #4554.
-
Erik Johnston authored
Remove redundant entries from docker config
-
Erik Johnston authored
Infer no_tls from presence of TLS listeners
-
- Feb 11, 2019
-
-
Richard van der Hoff authored
* no_tls is now redundant (#4613) * we don't need a dummy cert any more (#4618)
-
Richard van der Hoff authored
-
Richard van der Hoff authored
Rather than have to specify `no_tls` explicitly, infer whether we need to load the TLS keys etc from whether we have any TLS-enabled listeners.
-
Richard van der Hoff authored
-
Richard van der Hoff authored
we aren't going to use them anyway.
-
Richard van der Hoff authored
-
Richard van der Hoff authored
... otherwise we would fail with a mysterious KeyError or something later.
-
Richard van der Hoff authored
Log which file we're reading keys and certs from, and refactor the code a bit in preparation for other work
-
Richard van der Hoff authored
It's nothing to do with refreshing the certificates. No idea why it was here.
-
Erik Johnston authored
add updating of backup versions
-
Richard van der Hoff authored
Rearrange the comments to try to clarify them, and expand on what some of it means. Use a sensible default 'bind_addresses' setting. For the insecure port, only bind to localhost, and enable x_forwarded, since apparently it's for use behind a load-balancer.
-
Richard van der Hoff authored
Factor out the reverse proxy info to a separate file, add some more info on reverse-proxying the federation port.
-
Amber Brown authored
-
Amber Brown authored
-
Erik Johnston authored
New listener resource for the federation API "openid/userinfo" endpoint
-
- Feb 08, 2019
-
-
Valentin Anger authored
* Allow "unavailable" presence status for /sync Closes #3772, closes #3779 Signed-off-by:Valentin Anger <valentin.an.1999@gmail.com> * Add changelog for PR 4592
-
Richard van der Hoff authored
Add more tables to the list of tables which need a background update to complete before we can upsert into them, which fixes a race against the background updates.
-
Amber Brown authored
-
Hubert Chathi authored
also add tests
-
- Feb 07, 2019
-
-
Richard van der Hoff authored
-
Erik Johnston authored
A surprising number of people are using the well-known method, and are simply copying the example configuration. This is problematic as the example includes an explicit port, which causes inbound federation requests to have the HTTP Host header include the port, upsetting some reverse proxies. Given that, we update the well-known example to be more explicit about the various ways you can set it up, and the consequence of using an explict port.
-
Richard van der Hoff authored
-
Richard van der Hoff authored
-
Erik Johnston authored
-
Erik Johnston authored
A surprising number of people are using the well-known method, and are simply copying the example configuration. This is problematic as the example includes an explicit port, which causes inbound federation requests to have the HTTP Host header include the port, upsetting some reverse proxies. Given that, we update the well-known example to be more explicit about the various ways you can set it up, and the consequence of using an explict port.
-
Richard van der Hoff authored
-
Richard van der Hoff authored
-
Andrew Morgan authored
-
Richard van der Hoff authored
-
Hubert Chathi authored
-
Hubert Chathi authored
-
Hubert Chathi authored
-
- Feb 06, 2019
-
-
Hubert Chathi authored
-
Hubert Chathi authored
-
Richard van der Hoff authored
-
