aboutsummaryrefslogtreecommitdiffstats
path: root/plugins/mod_http.lua
Commit message (Expand)AuthorAgeFilesLines
* mod_http: Fix passing minimum limits in wrong argument positionKim Alvefur2023-07-171-2/+2
* plugins: Use integer config API with interval specification where sensibleKim Alvefur2023-07-171-2/+2
* plugins: Switch to :get_option_period() for time range optionsKim Alvefur2023-07-161-1/+1
* renamening: Fix newly added imports to use the new namespaceKim Alvefur2023-06-181-1/+1
* Merge 0.12->trunkKim Alvefur2023-06-101-1/+1
|\
| * mod_http: Fix error if 'access_control_allow_origins' is setKim Alvefur2023-06-101-1/+1
* | mod_http: Simplify conversion of Set to ArrayKim Alvefur2023-06-101-1/+1
* | mod_http: Make RFC 7239 Forwarded opt-in for now to be safeKim Alvefur2023-06-031-3/+10
* | mod_http: Use RFC 7239 Forwarded header to find original client IPKim Alvefur2023-06-031-1/+20
* | mod_http: Handle bracketed IP address format from RFC 7239Kim Alvefur2023-06-031-0/+6
* | mod_http: Add way to retrieve internal URL instead of externalKim Alvefur2023-05-241-2/+2
* | mod_http: Fix reliance on previous tostring() format of util.setKim Alvefur2023-04-101-2/+7
* | plugins: Prefix module imports with prosody namespaceKim Alvefur2023-03-241-6/+6
|/
* mod_http: Unhook CORS handlers only if active (fixes #1801)Kim Alvefur2023-03-051-3/+7
* mod_http: Allow disabling CORS in the http_cors_override option and by defaultMatthew Wild2022-10-311-4/+11
* mod_http (and dependent modules): Make CORS opt-in by default (fixes #1731)Matthew Wild2022-03-281-1/+1
* mod_http: Reintroduce support for disabling or limiting CORS (fixes #1730)Matthew Wild2022-03-281-13/+31
* mod_http: Use interface name as default default global hostnameKim Alvefur2022-02-041-1/+1
* mod_http: Use http_default_host for URLs generated in global contextKim Alvefur2022-02-041-1/+2
* mod_http: Increase severity of loading unreachable http modulesKim Alvefur2022-01-151-1/+1
* mod_http: Skip querying portmanager when http_external_url when is setKim Alvefur2021-11-271-8/+17
* mod_http: Limit unencrypted http port (5280) to loopback by defaultKim Alvefur2022-01-151-0/+1
* mod_http: Clean up redirects handlers for wildcard on http module unloadKim Alvefur2021-12-221-0/+7
* Fix various spelling errors (thanks codespell)Kim Alvefur2021-07-271-1/+1
* mod_http: Consolidate handling of proxied connection detailsKim Alvefur2021-02-271-9/+9
* net.http.server: Set request.ip so mod_http doesn't have toKim Alvefur2021-02-271-1/+1
* Merge 0.11->trunkKim Alvefur2021-02-271-3/+3
|\
| * mod_http: Restore ip field for requests without proxiesKim Alvefur2021-02-271-2/+2
| * mod_http: Fix trusted proxies check (thanks buildbot)Kim Alvefur2021-02-181-1/+1
* | mod_http: Improve message for missing 'route'Kim Alvefur2021-02-231-1/+1
* | mod_http: Warn if app is missing 'route'Kim Alvefur2021-02-211-1/+7
* | mod_http: Allow modifying CORS header list via :provides APIKim Alvefur2019-12-301-1/+11
* | mod_http: Allow setting the CORS credentials flag via :provides APIKim Alvefur2019-12-301-1/+9
* | mod_http: Optimize proxy IP checkKim Alvefur2021-02-181-0/+3
* | mod_http: Consider x-forwarded-proto from trusted proxiesKim Alvefur2021-02-181-0/+4
* | Merge 0.11->trunkKim Alvefur2021-02-181-1/+1
|\|
| * mod_http: Skip IP resolution in non-proxied caseKim Alvefur2021-02-181-1/+1
* | mod_http: Silence warnings when running under prosodyctlMatthew Wild2020-09-111-2/+4
* | mod_http: Add way to signal that a module supports streaming uploadsKim Alvefur2020-08-011-1/+3
* | net.http.parser: Allow specifying sink for large request bodiesKim Alvefur2020-08-011-0/+9
* | mod_http: Support CIDR for trusted proxies.Boris Grozev2020-06-101-1/+16
* | mod_http: Tell luacheck to ignore the long comment linesKim Alvefur2020-05-141-0/+1
* | mod_http: Add documentation to the non-obvious logic of get_ip_from_requestJonas Schäfer2020-05-141-0/+7
* | mod_net_multiplex: Add support for using ALPNKim Alvefur2019-11-291-0/+1
* | mod_http: Log served URLs at 'info' levelKim Alvefur2019-11-291-1/+1
* | mod_http: Soften dependency on mod_http_errorsKim Alvefur2019-11-161-1/+3
* | mod_http: Unhook CORS related event handlersKim Alvefur2019-10-101-3/+10
* | mod_http: Add support for configuring CORS Access-Control-Allow-CredentialsMatthew Wild2019-09-111-2/+6
* | core.certmanager: Do not ask for client certificates by defaultKim Alvefur2019-03-101-3/+0
* | mod_http: Determine CORS methods to whitelist from actual methods usedKim Alvefur2019-01-171-2/+9