archive-gh-me/docker-gitlab
1
0
Fork 0
mirror of https://github.com/sameersbn/docker-gitlab.git synced 2026-01-25 14:08:09 +00:00
Code Issues Projects Releases Wiki Activity
4,083 Commits 51 Branches 891 Tags
Commit Graph

41 Commits

Author SHA1 Message Date
Thomas Hiller
4c4fc65632 change localhost to 127.0.0.1 in assets/runtime 
squash following commits:

- 32f5332b05a6064169e6cc07d9c4a60b6a3dc7c5
  for configgitlab-pages/config
- f974a0197c74ca17343e5e3ff99a633347d8ad67
  for config/gitlab-shell/config.yml
- 1104bacb29ed7f20bdf20015552299bd08ae7313
  for config/gitlabhq/cable.yml
- 6ce37d8706cb289136385a7c498ad8c42faaab2c
  for config/gitlabhq/resque.yml
- 7336e042728f63da2cc302b6fd6f975eb26566dc
  for config/nginx/gitlab
- 1f39dcaabe7d3daa3b70ef0ae98ea8e30659e1e0
  for config/nginx/gitlab-pages
- 76aaf571e992c6e5b970a437f8c46158d9867d65
  for config/nginx/gitlab-ssl
- 549f717ec0810c8e11f30fb40f08997c0b84b5e3
  for env-defaults but without KAS-related configs
  (original: add WEBTOKEN secret, remove GITLAB_KAS_SECRET)
 2025-10-24 17:54:46 +09:00
Steven Achilles
b9f8719919 Fix nginx configuration 2025-02-22 20:09:00 +01:00
Kazunori Kimura
fc0012a696 Change nginx log format name from main 
it reports error as it is duplicated
 2025-02-21 11:37:04 +09:00
Kazunori Kimura
a9b4feb77b add NGINX_CUSTOM_GITLAB_SERVER_CONFIG 2022-03-04 22:49:52 +09:00
Sameer Naik
950b1e8242
Merge pull request #2183 from galet/master 
Obfuscate access_token and private_token in nginx access log
 2021-03-10 14:37:52 +05:30
麦当苗儿
83202cdf6a
added SSL_PROTOCOLS option to change protocols of the nginx (#2304) 2021-02-16 08:21:06 +01:00
Michal Galet
d2263980ea Obfuscate access_token and private_token in nginx access log 
Authentication tokens are allowed to be part of URI and therefore they are printed
in the access log. This can be a security concern especially when system and
application logs are being send to an external logging system (syslog, wazuh,
splunk, etc.).
 2020-06-24 13:33:04 +02:00
Peter Leitzen
7e86b54241 Remove deprecated "ssl" directives from nginx 
Before this commit running "nginx -c -f /etc/nginx/nginx.conf" warned:

    nginx: [warn] the "ssl" directive is deprecated, use the "listen ... ssl" directive instead in /etc/nginx/sites-enabled/gitlab:60
 2019-10-22 20:00:13 -04:00
Niclas Mietz
f1c0cb372e Merge pull request #1137 from 3kami3/real_ip 
Add $NGINX_REAL_IP_RECURSIVE and $NGINX_REAL_IP_TRUSTED_ADDRESSES
 2017-07-23 13:20:17 +02:00
3kami3
521f632c06 Add $NGINX_REAL_IP_RECURSIVE and $NGINX_REAL_IP_TRUSTED_ADDRESSES 
Configuring GitLab trusted_proxies and the NGINX real_ip module.
 2017-03-20 21:21:47 +09:00
solidnerd
30e32a41af
Fix typo in gitlab_ssl config 2016-12-26 15:09:42 +01:00
solidnerd
5732e644e1 Update NGINX configuration files to add websocket support 2016-12-25 22:50:27 +08:00
hexim
4b7e4bf727 fix http to https redirect 2016-11-03 21:29:42 +01:00
hexim
b7b4846c47 fix ipv6only 2016-11-03 20:04:01 +01:00
Sameer Naik
db34a40615 sync upstream configuration 2016-10-16 22:16:14 +05:30
Sameer Naik
ce7b036dec Revert "nginx" updated configs" 
This reverts commit 48cf19f9571cc5519908ee2d5ae0df71a9e5871e.

Closes #800
 2016-07-26 11:02:19 +05:30
SolidNerd
6614140eae Fix Host header in nginx configuration 
This will fix the problem if you don't use the typical HTTP/HTTPS ports otherwise nginx will redirects you with the default ports of HTTP/HTTPS .
 2016-07-23 12:35:21 +02:00
Sameer Naik
48cf19f957 nginx" updated configs 2016-07-23 14:08:19 +05:30
SolidNerd
70dc29de1a Use tcp for workhorse communication. 
Signed-off-by: SolidNerd <niclas@mietz.io>
 2016-07-17 09:28:24 +02:00
Peter Suschlik
32081ad8db Make nginx's SSL ciphers configurable 
http://bettercrypto.org/ suggests to restrict `ssl_ciphers`.

GitLab allows weaker SSL ciphers due to some Java IDEs.

This commit make SSL ciphers configurable via the environment variable
`SSL_CIPHERS`.

Example in docker-compose.yml:

    version: '2'
    ...
    services:
      ...
      gitlab:
        ...
        environment:
          - SSL_CIPHERS=EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA
 2016-06-21 10:14:16 +02:00
Sameer Naik
8cc288504f nginx: spdy is now http2 2016-06-01 08:34:15 +05:30
Sameer Naik
c1f8c1373d updated gitlab vhost nginx configuration templates 2016-06-01 08:33:07 +05:30
Sameer Naik
aefad44659 removed nginx hack for relative_url support 2016-03-27 11:18:49 +05:30
Sameer Naik
6c607a4310 assets:precompile moved back to build time 2016-01-23 20:16:16 +05:30
Sameer Naik
36d6c7eda8 moved execution of assets:precompile raketask to runtime 
GitLab 8.4.0 requires a working database connection while executing the
`assets:precompile` raketask. As a result the execution of the rake task
is postponed to execute at runtime with the assets cached in the data
volume. This adds a noticable increase in the container startup time.
 2016-01-23 13:23:57 +05:30
Sameer Naik
cd18eb156a proxy pass requests to static assets to gitlab unicorn 
When relative_url is in used, the links to assets in the
`application.css` file to not have the relative_url prefix. To fix this
we proxy pass asset requests to the upstream gitlab unicorn.

Fixes #521
 2015-12-24 15:15:53 +05:30
Sameer Naik
de94d95cee remove trailing / from location block when relative_url is used 2015-12-24 15:05:32 +05:30
Sameer Naik
607928ffcc gitlab: upgrade to CE v8.3.0 2015-12-22 11:19:27 +05:30
Sameer Naik
208f95e246 relative_url_root should not be set when GITLAB_RELATIVE_URL_ROOT is 
not used

Fixes #541
 2015-12-22 10:35:56 +05:30
Sameer Naik
a42963c24d fix relative_url access without trailing / in url 2015-12-13 21:15:23 +05:30
Sameer Naik
b07697f6ff moved X-Accel-Buffering header inside server block 
Closes #417
 2015-12-13 12:29:06 +05:30
Sameer Naik
ac6aa3e84f renamed config GITLAB_HTTPS_HSTS_MAXAGE to NGINX_HSTS_MAXAGE 2015-12-13 12:19:51 +05:30
Sameer Naik
3a36cb730e renamed config CA_CERTIFICATES_PATH to SSL_CA_CERTIFICATES_PATH 2015-12-13 12:09:25 +05:30
Sameer Naik
4830ce9aef renamed template value YOUR_SERVER_FQDN to GITLAB_HOST in the nginx configs 2015-12-12 16:32:14 +05:30
Sameer Naik
ed1228fdd0 removed GITLAB_RELATIVE_URL_ROOT__with_trailing_slash placeholders from nginx configs 2015-12-12 16:14:28 +05:30
Sameer Naik
992ff99712 nginx: fix nginx configs for static assets 2015-12-10 17:45:05 +05:30
Sameer Naik
ae1706d01c route assets/ requests to the gitlab application when relative_url used 
Fixes #531
Refer #521
 2015-12-09 21:13:51 +05:30
Sameer Naik
50356f4389 gitlab: upgrade to CE v8.2.2 2015-12-03 12:17:39 +05:30
Sameer Naik
a321bc14cd gitlab: upgrade to CE v8.2.0 2015-11-22 12:26:39 +05:30
Sameer Naik
d98b93ffc1 gitlab-workhorse: upgrade to v.0.4.2 
Module formerly known as gitlab-git-http-server
 2015-11-22 12:10:27 +05:30
Sameer Naik
50e13e5fc4 Restructured repo and code for better readability and maintenance 2015-11-17 22:20:05 +05:30