mirror/ tlstunnel
1
1
Fork 0
mirror of https://git.sr.ht/~emersion/tlstunnel synced 2024-05-24 05:56:07 +02:00
Code
98 Commits 3 Branches 7 Tags 354 KiB
Commit Graph

19 Commits

Author SHA1 Message Date
Simon Ser c9b1afde55 Add support for DNS UPDATE 
Closes: https://todo.sr.ht/~emersion/tlstunnel/25
 2023-11-20 15:46:32 +01:00
delthas d314adee59 Add support for backend PROXY protocol v1 
This is enabled with backend /* ... */ { proxy_version 1 }
 2023-02-09 15:28:44 +01:00
Simon Ser 151e7cf586 Add support for certificate fingerprint pinning 2023-01-27 10:55:53 +01:00
Simon Ser 662136ea74 Add support for ACME DNS hooks 
Closes: https://todo.sr.ht/~emersion/tlstunnel/2
 2023-01-26 17:04:45 +01:00
Simon Ser bc53657f5d Upgrade certmagic to v0.16 2022-07-07 10:49:10 +02:00
Simon Ser 9a879327c3 Disallow frontends without any listening address 2022-06-25 11:46:14 +02:00
Simon Ser d1812162a8 Add listen directive 
This provides a multi-line way to list addresses.
 2022-06-25 11:43:16 +02:00
Simon Ser 615fb32fda Put managed names in an allow-list for validate_command 2021-08-03 15:27:02 +02:00
Simon Ser 36ae57103c
Add `tls on_demand validate_command` 2021-02-17 19:44:57 +01:00
Simon Ser 373453ff23
Add `tls on_demand` 2021-02-17 18:34:13 +01:00
minus 09d28676a6
Remove unused Server reference 2020-12-11 11:50:47 +01:00
Simon Ser e8f71081cb
Add support for ALPN 
Closes: https://todo.sr.ht/~emersion/tlstunnel/11
 2020-11-09 20:33:00 +01:00
minus 26d1574702
Fix Unix socket backend config 2020-11-06 16:35:06 +01:00
Simon Ser 7b0912cf3c
Add support for TLS backends 
Closes: https://todo.sr.ht/~emersion/tlstunnel/6
 2020-10-31 10:34:02 +01:00
Simon Ser b5b6bba5e4
Add "tls load" frontend directive 2020-10-19 17:27:29 +02:00
Simon Ser a2bf967da7
Switch to scfg 
And we get nested blocks for free.
 2020-10-19 16:47:50 +02:00
Hubert Hirtz 3825cdccff
Add the "tls.email" directive 
To receive expiration warnings from Let's Encrypt.
 2020-10-08 19:07:11 +02:00
Simon Ser 18dd507ea5
Don't try to guess listening address 
Always listen on all hosts. Only use the host part of a frontend
address for TLS cert names.

Customizing the listen host will be better done with a `bind`
directive, like Caddy does.
 2020-09-12 13:41:11 +02:00
Simon Ser 2fdea9d4ed
Move back directive processing to tlstunnel package 2020-09-10 15:05:43 +02:00