|
fad9dc61ae
|
Fix multiple language errors in HTTP error message descriptions.
|
2023-11-12 18:59:24 +01:00 |
|
|
b38e1cea5f
|
Fixed crashes due of destroyed HTTP/2 stream (Node.JS bug: https://github.com/nodejs/node/issues/24470)
|
2023-11-12 18:41:06 +01:00 |
|
|
ae45c2e132
|
SVR.JS now sends configuration file saving request to one random good worker instead of all workers to prevent configuration file corruption.
|
2023-11-12 18:33:29 +01:00 |
|
|
fccc0ef7ca
|
Fixed bug with non-standard code regex replacements
|
2023-09-17 23:32:42 +02:00 |
|
|
a2ecbe4c5a
|
Optimize mod loader
|
2023-09-12 23:19:14 +02:00 |
|
|
84b7cac684
|
Fix bug with mods executing in wrong order (bug was related with access control vulnerability fix; bug was not present in LTS versions)
|
2023-09-12 23:15:55 +02:00 |
|
|
c8c069aceb
|
Rename properDirectoryListingServe function to properDirectoryListingAndStaticFileServe.
|
2023-09-12 19:50:39 +02:00 |
|
|
75e987dcf4
|
Removed undocumented and non-working code.
|
2023-09-12 19:34:34 +02:00 |
|
|
e84bb426a7
|
Replace sizify function with new one.
|
2023-09-12 19:21:13 +02:00 |
|
|
5a567d09d1
|
Drop dependency on "pretty-bytes" module
|
2023-09-12 18:27:15 +02:00 |
|
|
e048156e18
|
Remove "invoke500.svr" and "crash.svr" (only activated in nightly versions, not in stable or LTS)
|
2023-09-12 18:11:11 +02:00 |
|
|
8050fc766e
|
Partially revert commit 193cede707
|
2023-09-11 23:21:14 +02:00 |
|
|
193cede707
|
Optimize responseEnd method
|
2023-09-11 23:08:02 +02:00 |
|
|
11bc6a32c9
|
Remove "fd" variable.
|
2023-09-11 23:01:46 +02:00 |
|
|
1132ed539a
|
Remove unneccesary whitespaces
|
2023-09-11 21:56:08 +02:00 |
|
|
f4641cd1bb
|
Removed unused SVR.JS code
|
2023-09-11 21:51:03 +02:00 |
|
|
079ce3d974
|
Reposition some if conditions
|
2023-09-11 21:50:42 +02:00 |
|
|
68e7fa9ae6
|
Globalize HTTP error messages object
|
2023-09-11 11:06:03 +02:00 |
|
|
91ab1f4a97
|
Minor changes to status codes
|
2023-09-11 10:36:10 +02:00 |
|
|
e828bb9173
|
Add warning about worker count limited to one when using Bun 1.0 and newer with shimmed (not native) clustering module.
|
2023-09-10 19:30:29 +02:00 |
|
|
24783fc1f9
|
Disable bug workaround for Bun 1.0 and newer (it's not needed anymore for these Bun versions)
|
2023-09-10 19:03:28 +02:00 |
|
|
b39471e8b8
|
Improve Bun shim
|
2023-09-10 18:58:05 +02:00 |
|
|
2ec6b564f5
|
Improve web root error handling
|
2023-09-10 18:37:09 +02:00 |
|
|
15ca36cf16
|
Fixed security vulnerability with information leakage from "temp" directory
|
2023-09-10 10:50:18 +02:00 |
|
|
d0064ee083
|
Log certificate loading errors
|
2023-09-10 10:35:07 +02:00 |
|
|
c7c381d8c9
|
Fix log files only partially saving on failed master startup
|
2023-09-10 10:14:24 +02:00 |
|
|
f475aa8651
|
Remove one obsolete process.cwd() == __dirname check
|
2023-09-09 00:53:24 +02:00 |
|
|
53560a7bcd
|
Mitigiate source-code leakage through hidden files in temp folder. Also change default enableRemoteLogBrowsing to false.
|
2023-09-09 00:36:24 +02:00 |
|
|
6066f77fae
|
Fix svrmodpack deprecation warning
|
2023-09-08 20:17:38 +02:00 |
|
|
1e2d61ff64
|
Improved Bun workaround
|
2023-09-08 20:08:46 +02:00 |
|
|
3edbc80e7d
|
Added TypeError workaround for Bun 1.0.0. Bun 1.0.0 now supports IPC
|
2023-09-08 20:00:02 +02:00 |
|
|
bc6268e2c0
|
Change no HTTP/2 warning
|
2023-09-08 19:39:18 +02:00 |
|
|
b5ac862f5e
|
Add "svrmodpack" deprecation warning
|
2023-09-08 19:26:40 +02:00 |
|
|
2d733b70bf
|
Fix access control bypass vulnerability for non-proxy SVR.JS mods
|
2023-09-07 18:00:58 +02:00 |
|
|
2c93e0fc24
|
Complete out previous fix
|
2023-09-06 20:22:51 +02:00 |
|
|
08816fe4f3
|
Mitigated security vulnerability: SVR.JS mods and server-side JavaScript using req.url could be vulnerable to path traversal.
|
2023-09-06 19:22:03 +02:00 |
|
|
dc23125ce4
|
Fix an error in previous commit
|
2023-09-05 00:15:00 +02:00 |
|
|
2ab7fab9cf
|
Added new property in config.json - exposeModsInErrorPages
|
2023-09-05 00:05:20 +02:00 |
|
Dorian Niemiec
|
5ba3d8f2b3
|
Moved invalid X-Forwader-For header handler
|
2023-09-03 22:40:10 +02:00 |
|
Dorian Niemiec
|
61b0d6ad9c
|
Added missing semicolon
|
2023-09-03 22:31:07 +02:00 |
|
Dorian Niemiec
|
b1ab6e3e4a
|
Added validation of X-Forwarded-For header
|
2023-09-03 14:40:41 +02:00 |
|
Dorian Niemiec
|
d8cf7913be
|
Change listening notice
|
2023-09-03 11:10:01 +02:00 |
|
Dorian Niemiec
|
bd7098c2c6
|
Cleaned up SVR.JS code even more...
|
2023-09-03 11:08:16 +02:00 |
|
Dorian Niemiec
|
8dd707c44d
|
Add notice about user being logged in.
|
2023-09-03 10:27:30 +02:00 |
|
Dorian Niemiec
|
9946c301e4
|
Cleaned up SVR.JS code
|
2023-09-03 10:18:52 +02:00 |
|
|
a663b4f142
|
Improved error handling of SVR.JS configuration, mods and server-side JavaScript.
|
2023-09-02 20:27:27 +02:00 |
|
|
817db0fff9
|
Replaced HTTPS redirect handler
|
2023-09-02 19:56:45 +02:00 |
|
|
b21b8dc84c
|
Moved and fixed bug with "wwwredirect"
|
2023-09-02 19:35:01 +02:00 |
|
|
fdac578678
|
Dropped support for HTTP to HTTPS redirect bypass headers
|
2023-09-02 19:12:46 +02:00 |
|
|
1637e87550
|
Dropped support for unused SVR.JS-specific X-SVR-JS-Client header (use X-Forwarded-For header instead)
|
2023-09-02 18:33:09 +02:00 |
|