NginxProxyManager/nginx-proxy-manager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2026-05-30 16:11:34 -05:00
Code Issues Packages Projects Releases 77 Wiki Activity
2,442 Commits 8 Branches 87 Tags
develop
Commit Graph

527 Commits

Author SHA1 Message Date
Jamie Curnow
fc1adb64a3 Fix regression of null domains in db creates 2026-05-29 07:32:58 +10:00
Jamie Curnow
a6b7a7dd9d Only clean domain names on cert save if given 2026-05-28 18:24:13 +10:00
jc21
e48695401e Merge branch 'develop' into dependabot/npm_and_yarn/backend/qs-6.15.2 2026-05-27 11:08:07 +10:00
dependabot[bot]
6bb9a90103 Bump the prod-minor-updates group across 1 directory with 2 updates 
Bumps the prod-minor-updates group with 2 updates in the /backend directory: [liquidjs](https://github.com/harttle/liquidjs) and [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg).


Updates `liquidjs` from 10.25.7 to 10.27.0
- [Release notes](https://github.com/harttle/liquidjs/releases)
- [Changelog](https://github.com/harttle/liquidjs/blob/master/CHANGELOG.md)
- [Commits](https://github.com/harttle/liquidjs/compare/v10.25.7...v10.27.0)

Updates `pg` from 8.20.0 to 8.21.0
- [Changelog](https://github.com/brianc/node-postgres/blob/master/CHANGELOG.md)
- [Commits](https://github.com/brianc/node-postgres/commits/pg@8.21.0/packages/pg)

---
updated-dependencies:
- dependency-name: liquidjs
  dependency-version: 10.27.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-updates
- dependency-name: pg
  dependency-version: 8.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-26 22:54:39 +00:00
dependabot[bot]
a47d401d86 Bump qs from 6.15.0 to 6.15.2 in /backend 
Bumps [qs](https://github.com/ljharb/qs) from 6.15.0 to 6.15.2.
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ljharb/qs/compare/v6.15.0...v6.15.2)

---
updated-dependencies:
- dependency-name: qs
  dependency-version: 6.15.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-26 22:53:22 +00:00
Jamie Curnow
7e9cc32f97 Fix cypress suite 
- split out cypress tests for plugins to be isolated
- use updated testca image from proper location
 2026-05-27 07:25:24 +10:00
Jamie Curnow
03c70e3902 Fixes for upgraded debian trixie 
- Adds request logging in debug mode for some endpoints
- Moves certbot version determination to the startup scripts and removes
  bash script encapsulation when installing plugins
- Revert loose domain validation, which was there for a specific reason
  addressing CVE's
- Fix Cypress suite for cert generation
- Adds Cypress test that iterates over the entire certbot plugins list
  and installs each one, ensuring at the very least that the install
  works
- Fixed some plugins based on this
- (!) Still some work to do on this, hostinger is still broken at least
- Improved cypress tests for custom certs; they will generate on each
  run instead of being baked in. The baked ones were due to expire soon
 2026-05-25 07:37:24 +10:00
Jamie Curnow
f53bf88f4d Update cypress docker version, generate custom certs each time 2026-05-19 08:04:49 +10:00
Jamie Curnow
ee1f7ba551 Fall back to error code 500 when not set in error object 2026-05-18 16:55:41 +10:00
Jamie Curnow
586dfd36a9 Fix openssl3 formatting of subject cn 2026-05-18 16:12:02 +10:00
Jamie Curnow
2bf9e9b213 Support different cert info output in new version of debian 2026-05-18 15:52:52 +10:00
Jamie Curnow
7330d0441c Loose validation on certificate domain names 2026-05-18 15:34:29 +10:00
Jamie Curnow
84886383a7 Fix certificates getting null domain names whgen no cn exists 2026-05-18 15:21:55 +10:00
Jamie Curnow
1e22574000 Fix nulls showing in certificate rows 2026-05-18 15:04:27 +10:00
jc21
32a74d9781 Merge pull request #5543 from Matthew-Kilpatrick/fix-deny-all-on-no-access-rules 
fix: omit "Access rules" directives if no rules configured
 2026-05-18 11:23:55 +10:00
jc21
840a720d09 Merge pull request #5550 from rfos/develop 
Add Hostinger DNS plugin configuration
 2026-05-18 07:44:59 +10:00
Reinaldo Ferro
ef0ec0b188 Add Hostinger DNS plugin configuration 2026-05-17 22:16:48 +02:00
Matthew Kilpatrick
52c32b473d fix: omit "Access rules" directives if no rules configured 
When an access list was associated with a template which had users (items) but no rules (clients), a `deny all` directive was inserted to the config. This resulted in all requests, including those with valid credentials, being rejected due to the lack of any `allow` directive.

This commit wraps the access rule configuration inside of an if block, so the `deny all;` directive is only present when at least one rule is configured.
 2026-05-15 19:03:20 +00:00
jc21
ebcd2a209c Merge pull request #5415 from 12LuA/develop 
Fix typo in debug mode comment
 2026-05-14 11:43:08 +10:00
jc21
d099b00463 Merge pull request #5421 from edklesel/access-list-clients-ordered-insert 
Access list clients ordered insert
 2026-05-14 11:39:32 +10:00
jc21
9875a7650d Merge pull request #5460 from barttran2k/contribai/fix/security/undefined-variable-next-referenced-in-ro 
Security: Undefined Variable `next` Referenced in Route Error Handler
 2026-05-14 11:11:12 +10:00
jc21
6694df668e Merge pull request #5480 from MichaelJanssenNesai/patch-1 
Update dns plugin for deSec to 1.3.2
 2026-05-14 10:52:14 +10:00
jc21
d3ba40e066 Merge pull request #5485 from butalex11/add-hosterby-dns-provider 
Add hoster.by DNS provider
 2026-05-14 10:51:00 +10:00
jc21
13cfa340de Merge pull request #5508 from Zoey2936/fix-5441 
Fix bug that allowed any authenticated user to modify their own roles field through the PUT
 2026-05-14 10:23:31 +10:00
jc21
a38fb8d311 Merge pull request #5530 from Ludo-code/new-dns-provider-RcodeZero 
Add RcodeZero DNS plugin to dns-plugins.json for #5512
 2026-05-14 08:36:37 +10:00
jc21
c8e6010ac3 Merge pull request #5531 from MBulli/patch-1 
Added PUT and DELETE method to Access-Control-Allow-Methods field
 2026-05-14 08:35:23 +10:00
dependabot[bot]
982c16a86d Bump minimatch from 10.2.2 to 10.2.5 in /backend 
Bumps [minimatch](https://github.com/isaacs/minimatch) from 10.2.2 to 10.2.5.
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v10.2.2...v10.2.5)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 10.2.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-13 20:13:44 +00:00
jc21
5af25c2d9c Merge pull request #5528 from NginxProxyManager/dependabot/npm_and_yarn/backend/fast-uri-3.1.2 
Bump fast-uri from 3.1.0 to 3.1.2 in /backend
 2026-05-13 20:26:20 +10:00
jc21
b29bc1a66e Merge pull request #5430 from NginxProxyManager/dependabot/npm_and_yarn/backend/picomatch-2.3.2 
Bump picomatch from 2.3.1 to 2.3.2 in /backend
 2026-05-13 19:13:59 +10:00
jc21
a68f993571 Merge pull request #5438 from NginxProxyManager/dependabot/npm_and_yarn/backend/path-to-regexp-8.4.0 
Bump path-to-regexp from 8.3.0 to 8.4.2 in /backend
 2026-05-13 19:13:23 +10:00
dependabot[bot]
6ed6210a7b Bump picomatch from 2.3.1 to 2.3.2 in /backend 
Bumps [picomatch](https://github.com/micromatch/picomatch) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/micromatch/picomatch/releases)
- [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md)
- [Commits](https://github.com/micromatch/picomatch/compare/2.3.1...2.3.2)

---
updated-dependencies:
- dependency-name: picomatch
  dependency-version: 2.3.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-13 03:49:18 +00:00
dependabot[bot]
8b24059e3b Bump path-to-regexp from 8.3.0 to 8.4.2 in /backend 
Bumps [path-to-regexp](https://github.com/pillarjs/path-to-regexp) from 8.3.0 to 8.4.2.
- [Release notes](https://github.com/pillarjs/path-to-regexp/releases)
- [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md)
- [Commits](https://github.com/pillarjs/path-to-regexp/compare/v8.3.0...v8.4.2)

---
updated-dependencies:
- dependency-name: path-to-regexp
  dependency-version: 8.4.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-13 03:49:03 +00:00
dependabot[bot]
dc84b4b94b Bump ip-address from 10.1.0 to 10.2.0 in /backend 
Bumps [ip-address](https://github.com/beaugunderson/ip-address) from 10.1.0 to 10.2.0.
- [Commits](https://github.com/beaugunderson/ip-address/commits)

---
updated-dependencies:
- dependency-name: ip-address
  dependency-version: 10.2.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-13 03:47:17 +00:00
dependabot[bot]
41c32ebf0a Bump fast-uri from 3.1.0 to 3.1.2 in /backend 
Bumps [fast-uri](https://github.com/fastify/fast-uri) from 3.1.0 to 3.1.2.
- [Release notes](https://github.com/fastify/fast-uri/releases)
- [Commits](https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.2)

---
updated-dependencies:
- dependency-name: fast-uri
  dependency-version: 3.1.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-13 03:47:12 +00:00
Jamie Curnow
7d58c579fa Fix backend linting 2026-05-13 13:40:06 +10:00
Jamie Curnow
18b3404f46 Update all packages and fix related problems 2026-05-13 13:27:59 +10:00
Markus
b66fd9d3ae Added PUT and DELETE method to Access-Control-Allow-Methods field 2026-05-12 09:24:28 +02:00
Ludovic
c869d5a42b Add RcodeZero DNS plugin to dns-plugins.json 2026-05-12 01:56:05 +02:00
Zoey
1ad78af5a0 fix #5441 2026-04-26 14:14:30 +02:00
Alexander Gumi
cea69e4ba5 Add hoster.by DNS provider 2026-04-14 11:05:03 +03:00
MichaelJanssenNesai
d161b944b1 Update dns plugin for deSec to 1.3.2 
There a a couple of bug fixes (e.g. for DNS challenge with CNAME) for deSec.
 2026-04-13 15:30:32 +02:00
Trần Bách
986c4cae6c fix(security): undefined variable next referenced in route erro 
The GET /schema route handler's function signature is `(req, res)` (only two parameters), but the catch block calls `next(err)`. Since `next` is not defined in this scope, this will throw a `ReferenceError` at runtime when an error occurs, potentially crashing the process or causing an unhandled rejection instead of properly returning an error response.

Affected files: schema.js

Signed-off-by: Trần Bách <45133811+barttran2k@users.noreply.github.com>
 2026-04-07 00:09:34 +07:00
Jamie Curnow
34374cbe09 Adds name.com certbot dns support 
and sorts and organises the json file
 2026-03-23 07:29:12 +10:00
Edward Klesel
1635e512c7 Change access list client insert to synchronous to ensure order preserved 2026-03-21 21:49:28 +00:00
12LuA
cafb614b80 Fix typo in debug mode comment 2026-03-18 13:47:03 +01:00
Jamie Curnow
15896132ff Update all deps 2026-03-05 06:37:10 +10:00
Jamie Curnow
eb67b3bfb6 Regenerate configs improvements 
- Fix certificates
- Adds dry run
- code cleanup
 2026-03-03 08:44:42 +10:00
dependabot[bot]
a714b41fd6 Bump the prod-minor-updates group in /backend with 3 updates 
Bumps the prod-minor-updates group in /backend with 3 updates: [@apidevtools/json-schema-ref-parser](https://github.com/APIDevTools/json-schema-ref-parser), [mysql2](https://github.com/sidorares/node-mysql2) and [pg](https://github.com/brianc/node-postgres/tree/HEAD/packages/pg).


Updates `@apidevtools/json-schema-ref-parser` from 15.2.2 to 15.3.1
- [Release notes](https://github.com/APIDevTools/json-schema-ref-parser/releases)
- [Commits](https://github.com/APIDevTools/json-schema-ref-parser/compare/v15.2.2...v15.3.1)

Updates `mysql2` from 3.17.5 to 3.18.2
- [Release notes](https://github.com/sidorares/node-mysql2/releases)
- [Changelog](https://github.com/sidorares/node-mysql2/blob/master/Changelog.md)
- [Commits](https://github.com/sidorares/node-mysql2/compare/v3.17.5...v3.18.2)

Updates `pg` from 8.18.0 to 8.19.0
- [Changelog](https://github.com/brianc/node-postgres/blob/master/CHANGELOG.md)
- [Commits](https://github.com/brianc/node-postgres/commits/pg@8.19.0/packages/pg)

---
updated-dependencies:
- dependency-name: "@apidevtools/json-schema-ref-parser"
  dependency-version: 15.3.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-updates
- dependency-name: mysql2
  dependency-version: 3.18.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-updates
- dependency-name: pg
  dependency-version: 8.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-minor-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-02 13:45:00 +00:00
dependabot[bot]
33b1a993ec Bump basic-ftp from 5.1.0 to 5.2.0 in /backend 
Bumps [basic-ftp](https://github.com/patrickjuchli/basic-ftp) from 5.1.0 to 5.2.0.
- [Release notes](https://github.com/patrickjuchli/basic-ftp/releases)
- [Changelog](https://github.com/patrickjuchli/basic-ftp/blob/master/CHANGELOG.md)
- [Commits](https://github.com/patrickjuchli/basic-ftp/compare/v5.1.0...v5.2.0)

---
updated-dependencies:
- dependency-name: basic-ftp
  dependency-version: 5.2.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-02-25 23:29:28 +00:00
jc21
020b3ebb33 Merge pull request #5338 from NginxProxyManager/dependabot/npm_and_yarn/backend/dev-patch-updates-d8f01b0b39 
Bump nodemon from 3.1.13 to 3.1.14 in /backend in the dev-patch-updates group
 2026-02-25 08:30:51 +10:00