1
0
Fork 0
forked from svrjs/svrjs
Commit graph

61 commits

Author SHA1 Message Date
5339f4c244 Change default configuration file and test page. 2024-02-07 00:42:34 +01:00
ae1738166f Add new config.json option - environmentVariables. 2023-12-03 12:11:15 +01:00
4c9cd87a94 Change default configuration 2023-12-03 12:01:59 +01:00
5321f2c6a7 Added trailing slash redirect support 2023-12-03 11:55:19 +01:00
b38e1cea5f Fixed crashes due of destroyed HTTP/2 stream (Node.JS bug: https://github.com/nodejs/node/issues/24470) 2023-11-12 18:41:06 +01:00
ae45c2e132 SVR.JS now sends configuration file saving request to one random good worker instead of all workers to prevent configuration file corruption. 2023-11-12 18:33:29 +01:00
c8c069aceb Rename properDirectoryListingServe function to properDirectoryListingAndStaticFileServe. 2023-09-12 19:50:39 +02:00
75e987dcf4 Removed undocumented and non-working code. 2023-09-12 19:34:34 +02:00
e84bb426a7 Replace sizify function with new one. 2023-09-12 19:21:13 +02:00
193cede707 Optimize responseEnd method 2023-09-11 23:08:02 +02:00
38bacc1781 Fix main page 2023-09-10 19:41:23 +02:00
e828bb9173 Add warning about worker count limited to one when using Bun 1.0 and newer with shimmed (not native) clustering module. 2023-09-10 19:30:29 +02:00
24783fc1f9 Disable bug workaround for Bun 1.0 and newer (it's not needed anymore for these Bun versions) 2023-09-10 19:03:28 +02:00
b39471e8b8 Improve Bun shim 2023-09-10 18:58:05 +02:00
2ec6b564f5 Improve web root error handling 2023-09-10 18:37:09 +02:00
d0064ee083 Log certificate loading errors 2023-09-10 10:35:07 +02:00
53560a7bcd Mitigiate source-code leakage through hidden files in temp folder. Also change default enableRemoteLogBrowsing to false. 2023-09-09 00:36:24 +02:00
1e2d61ff64 Improved Bun workaround 2023-09-08 20:08:46 +02:00
3edbc80e7d Added TypeError workaround for Bun 1.0.0. Bun 1.0.0 now supports IPC 2023-09-08 20:00:02 +02:00
b5ac862f5e Add "svrmodpack" deprecation warning 2023-09-08 19:26:40 +02:00
2d733b70bf Fix access control bypass vulnerability for non-proxy SVR.JS mods 2023-09-07 18:00:58 +02:00
2c93e0fc24 Complete out previous fix 2023-09-06 20:22:51 +02:00
08816fe4f3 Mitigated security vulnerability: SVR.JS mods and server-side JavaScript using req.url could be vulnerable to path traversal. 2023-09-06 19:22:03 +02:00
2ab7fab9cf Added new property in config.json - exposeModsInErrorPages 2023-09-05 00:05:20 +02:00
Dorian Niemiec
61b0d6ad9c Added missing semicolon 2023-09-03 22:31:07 +02:00
Dorian Niemiec
b1ab6e3e4a Added validation of X-Forwarded-For header 2023-09-03 14:40:41 +02:00
Dorian Niemiec
d8cf7913be Change listening notice 2023-09-03 11:10:01 +02:00
Dorian Niemiec
bd7098c2c6 Cleaned up SVR.JS code even more... 2023-09-03 11:08:16 +02:00
Dorian Niemiec
8dd707c44d Add notice about user being logged in. 2023-09-03 10:27:30 +02:00
Dorian Niemiec
9946c301e4 Cleaned up SVR.JS code 2023-09-03 10:18:52 +02:00
a663b4f142 Improved error handling of SVR.JS configuration, mods and server-side JavaScript. 2023-09-02 20:27:27 +02:00
817db0fff9 Replaced HTTPS redirect handler 2023-09-02 19:56:45 +02:00
b21b8dc84c Moved and fixed bug with "wwwredirect" 2023-09-02 19:35:01 +02:00
9b27bacf25 Add support for listening to specific IP address. 2023-09-02 18:15:00 +02:00
08692a2ff5 Added new config.json property - useWebRootServerSideScript 2023-09-02 12:57:19 +02:00
1578a82069 Change default SVR.JS configuration. 2023-09-02 09:19:14 +02:00
a7185d6c94 Disable server-side script exposure by default. 2023-09-02 09:01:25 +02:00
bf3b002190 Optimize filterHeaders and add checkHostname and checkHref 2023-09-01 01:13:15 +02:00
bbb8a6f899 Replace "request" with "req" and "response" with "res" 2023-08-31 23:03:02 +02:00
4a138f73d8 Add virtual host support 2023-08-31 22:47:07 +02:00
1ebf19d768 Fixed non-working blacklist 2023-08-29 14:56:39 +02:00
10f9e1b5f2 Add reverse DNS lookup support 2023-08-28 03:44:04 +02:00
94a7b319f6 Fixed server crashes while one of two ports are in use 2023-08-25 00:26:51 +02:00
d31d47bbcd Rewritten some of for loops to use forEach instead. 2023-08-19 22:38:58 +02:00
e7e232f6e7 Restored easter eggs to easteregg.tar.gz mod, which can be deleted. Also change unused worker kill interval. 2023-08-19 21:19:18 +02:00
fba0012690 Removed some easter eggs, to prevent SVR.JS version fingerprinting... 2023-08-19 21:03:05 +02:00
aedbd134f8 Add option to rewrite "dirty" URLs 2023-08-18 23:29:18 +02:00
bd475a2e8e Fixed redirect loops related to URL sanitizer 2023-08-18 21:54:58 +02:00
47a793b958 Added scrypt support for HTTP authentication 2023-08-18 21:35:09 +02:00
d93511e97b Enable use of PBKDF2-hashed passwords 2023-08-15 19:05:44 +02:00