|
|
1e2d61ff64
|
Improved Bun workaround
|
2023-09-08 20:08:46 +02:00 |
|
|
|
3edbc80e7d
|
Added TypeError workaround for Bun 1.0.0. Bun 1.0.0 now supports IPC
|
2023-09-08 20:00:02 +02:00 |
|
|
|
bc6268e2c0
|
Change no HTTP/2 warning
|
2023-09-08 19:39:18 +02:00 |
|
|
|
b5ac862f5e
|
Add "svrmodpack" deprecation warning
|
2023-09-08 19:26:40 +02:00 |
|
|
|
be4819e3ea
|
Remove unmaintained primitive analytics mod
|
2023-09-08 19:15:47 +02:00 |
|
|
|
7f2da5b12a
|
Remove unmaintained and undocumented hexstrbase64 library
|
2023-09-08 19:12:42 +02:00 |
|
|
|
2d733b70bf
|
Fix access control bypass vulnerability for non-proxy SVR.JS mods
|
2023-09-07 18:00:58 +02:00 |
|
|
|
2c93e0fc24
|
Complete out previous fix
|
2023-09-06 20:22:51 +02:00 |
|
|
|
08816fe4f3
|
Mitigated security vulnerability: SVR.JS mods and server-side JavaScript using req.url could be vulnerable to path traversal.
|
2023-09-06 19:22:03 +02:00 |
|
|
|
dc23125ce4
|
Fix an error in previous commit
|
2023-09-05 00:15:00 +02:00 |
|
|
|
2ab7fab9cf
|
Added new property in config.json - exposeModsInErrorPages
|
2023-09-05 00:05:20 +02:00 |
|
Dorian Niemiec
|
5ba3d8f2b3
|
Moved invalid X-Forwader-For header handler
|
2023-09-03 22:40:10 +02:00 |
|
Dorian Niemiec
|
61b0d6ad9c
|
Added missing semicolon
|
2023-09-03 22:31:07 +02:00 |
|
Dorian Niemiec
|
b1ab6e3e4a
|
Added validation of X-Forwarded-For header
|
2023-09-03 14:40:41 +02:00 |
|
Dorian Niemiec
|
d8cf7913be
|
Change listening notice
|
2023-09-03 11:10:01 +02:00 |
|
Dorian Niemiec
|
bd7098c2c6
|
Cleaned up SVR.JS code even more...
|
2023-09-03 11:08:16 +02:00 |
|
Dorian Niemiec
|
8dd707c44d
|
Add notice about user being logged in.
|
2023-09-03 10:27:30 +02:00 |
|
Dorian Niemiec
|
9946c301e4
|
Cleaned up SVR.JS code
|
2023-09-03 10:18:52 +02:00 |
|
|
|
a663b4f142
|
Improved error handling of SVR.JS configuration, mods and server-side JavaScript.
|
2023-09-02 20:27:27 +02:00 |
|
|
|
817db0fff9
|
Replaced HTTPS redirect handler
|
2023-09-02 19:56:45 +02:00 |
|
|
|
b21b8dc84c
|
Moved and fixed bug with "wwwredirect"
|
2023-09-02 19:35:01 +02:00 |
|
|
|
fdac578678
|
Dropped support for HTTP to HTTPS redirect bypass headers
|
2023-09-02 19:12:46 +02:00 |
|
|
|
1637e87550
|
Dropped support for unused SVR.JS-specific X-SVR-JS-Client header (use X-Forwarded-For header instead)
|
2023-09-02 18:33:09 +02:00 |
|
|
|
9b27bacf25
|
Add support for listening to specific IP address.
|
2023-09-02 18:15:00 +02:00 |
|
|
|
08692a2ff5
|
Added new config.json property - useWebRootServerSideScript
|
2023-09-02 12:57:19 +02:00 |
|
|
|
1578a82069
|
Change default SVR.JS configuration.
|
2023-09-02 09:19:14 +02:00 |
|
|
|
a7185d6c94
|
Disable server-side script exposure by default.
|
2023-09-02 09:01:25 +02:00 |
|
|
|
03b54f94d4
|
Fix callServerError
|
2023-09-01 11:04:04 +02:00 |
|
|
|
bf3b002190
|
Optimize filterHeaders and add checkHostname and checkHref
|
2023-09-01 01:13:15 +02:00 |
|
|
|
bbb8a6f899
|
Replace "request" with "req" and "response" with "res"
|
2023-08-31 23:03:02 +02:00 |
|
|
|
4a138f73d8
|
Add virtual host support
|
2023-08-31 22:47:07 +02:00 |
|
|
|
e490f8341b
|
Fix modFunction
|
2023-08-29 15:44:01 +02:00 |
|
|
|
71d1970571
|
Cleaned up SVR.JS code
|
2023-08-29 15:03:13 +02:00 |
|
|
|
1ebf19d768
|
Fixed non-working blacklist
|
2023-08-29 14:56:39 +02:00 |
|
|
|
10f9e1b5f2
|
Add reverse DNS lookup support
|
2023-08-28 03:44:04 +02:00 |
|
|
|
94a7b319f6
|
Fixed server crashes while one of two ports are in use
|
2023-08-25 00:26:51 +02:00 |
|
|
|
2d266bf1b3
|
Map ENAMETOOLONG to 414 code
|
2023-08-21 19:38:38 +02:00 |
|
|
|
54ba71212b
|
Pull from SVR.JS 3.7.1
|
2023-08-21 19:32:31 +02:00 |
|
|
|
e6c1194086
|
Fixed checkEXT again
|
2023-08-19 23:18:52 +02:00 |
|
|
|
bfcc88a4dd
|
Fixed checkEXT function
|
2023-08-19 23:16:27 +02:00 |
|
|
|
d31d47bbcd
|
Rewritten some of for loops to use forEach instead.
|
2023-08-19 22:38:58 +02:00 |
|
|
|
e7e232f6e7
|
Restored easter eggs to easteregg.tar.gz mod, which can be deleted. Also change unused worker kill interval.
|
2023-08-19 21:19:18 +02:00 |
|
|
|
fba0012690
|
Removed some easter eggs, to prevent SVR.JS version fingerprinting...
|
2023-08-19 21:03:05 +02:00 |
|
|
|
b96d39cb3e
|
Disabled open proxy in default server-side JavaScript
|
2023-08-18 23:55:36 +02:00 |
|
|
|
aedbd134f8
|
Add option to rewrite "dirty" URLs
|
2023-08-18 23:29:18 +02:00 |
|
|
|
bd475a2e8e
|
Fixed redirect loops related to URL sanitizer
|
2023-08-18 21:54:58 +02:00 |
|
|
|
47a793b958
|
Added scrypt support for HTTP authentication
|
2023-08-18 21:35:09 +02:00 |
|
|
|
d93511e97b
|
Enable use of PBKDF2-hashed passwords
|
2023-08-15 19:05:44 +02:00 |
|
|
|
f8cc7e45cd
|
Optimize credential match checking
|
2023-08-15 14:04:29 +02:00 |
|
|
|
cbbf8ab79b
|
EMFILE errors now correspond to 503 Service Unavailable error code.
|
2023-08-13 00:43:21 +02:00 |
|
