Commit graph

104 commits

Author SHA1 Message Date
b1ac01f53e
Try to fix duplicate Host header issue
- disable http2 to backend connections even when using tls
- forbid hyper from adding a host header
2022-01-25 17:01:39 +01:00
ea050c7045
Actually that was quite a stupid way of handling timeouts 2022-01-24 20:55:26 +01:00
7d5070c57d
Fix busy loop 2022-01-24 20:06:31 +01:00
10d13b194b
Kill connections lasting more than 24h 2022-01-24 19:49:14 +01:00
21ea26bbff
Handle proxy timeouts 2022-01-24 19:38:13 +01:00
5e5299a6d0
Add graceful shutdown and memory tracing 2022-01-24 19:28:18 +01:00
d7511c683d
Write proxy config to stdout to separate it from logs 2022-01-19 14:53:19 +01:00
de4bc8abc4
Add info about logs 2022-01-13 12:34:24 +01:00
f8d21c8b37
Add sentence in doc 2022-01-13 12:28:08 +01:00
85e1e7d8a4
Add support for tricot-site-lb and tricot-global-lb tags 2022-01-13 12:24:25 +01:00
e446d6763e
Configuration by example 2022-01-13 12:15:07 +01:00
cca85653b1
Write up how Tricot works 2022-01-13 12:11:32 +01:00
ced324bc87
Make nodes aware of where they are and use that to priorize backends 2022-01-13 11:36:52 +01:00
c030c47645
cargo fmt and improve error message 2021-12-30 20:45:28 +01:00
bcc185df40
Add support for Consul TLS 2021-12-30 20:08:10 +01:00
d13066b12b
Implement basic domain accesibility check before asking for certificate 2021-12-14 11:31:22 +01:00
7488d8e907
Exclude partial content from compression 2021-12-10 16:40:05 +01:00
e3a030ceaf
Brotli seems to cause issues, disable it 2021-12-10 00:10:00 +01:00
f7a5b29b71
cargo clippy 2021-12-09 23:38:56 +01:00
e0912dc5fe
Remove content-length when compressed; don't compress small response 2021-12-09 19:00:50 +01:00
3f2a52dc8e
cargo fmt 2021-12-09 16:19:41 +01:00
87a88931b6
add compressed format 2021-12-09 16:09:41 +01:00
64cfb30a85
Better compression choices 2021-12-09 16:03:19 +01:00
9b30f2b7d1
Compression 2021-12-09 15:43:19 +01:00
e4942490ee
Cargo clippy 2021-12-09 12:20:37 +01:00
fdb83162ce
Improved management of ACME orders and certificate pre-expiration period 2021-12-09 12:18:23 +01:00
8153bdca46
Fix multiple header occurences 2021-12-09 11:20:04 +01:00
207f467b87
Support totally ignoring backend HTTPS certificate stuff 2021-12-08 23:45:24 +01:00
ca8c5aad23
Handle HTTPS targets 2021-12-08 22:58:19 +01:00
55f57df82e
Cleanup locks 2021-12-08 22:38:01 +01:00
62c745898d
Inverse how priorities work 2021-12-08 22:29:08 +01:00
7dbf848de3
Different logging 2021-12-08 22:24:58 +01:00
25ddb1b23e
Special handling of hostname:port 2021-12-08 17:52:42 +01:00
3bdb417bfb
Exit more agressively on certain errors 2021-12-08 17:50:40 +01:00
0e6e60d35a
better split 2021-12-08 17:36:01 +01:00
8d47bef9d4
Fix path prefixes 2021-12-08 17:27:27 +01:00
c49b2075a3
Try to fix things 2021-12-08 13:28:07 +01:00
35b46e64e7
fix display bug 2021-12-08 12:27:47 +01:00
090e58ca7c
Let's encrypt email address as parameter 2021-12-08 12:16:28 +01:00
8a4778c6bc
Tolerate ending / in Consul address 2021-12-08 12:10:58 +01:00
7599dfc0ef
Use self-signed certificates if necessary 2021-12-08 12:02:39 +01:00
d7f3c13fa4
Logging output improvements 2021-12-08 11:24:25 +01:00
098a6cf2cd
Implement glob pattern hostnames
no wildcard certificates: one certificate per matching hostname that
actually recieves requests
2021-12-08 11:11:22 +01:00
11c6f0b1c2
Better handle get_cert for https request (faster path, hostname verification) 2021-12-07 18:50:58 +01:00
e8b789f5e0
Better locking 2021-12-07 18:40:20 +01:00
9119c2f45c
Use node IP when service IP is not available 2021-12-07 18:31:04 +01:00
489d364676
Add support for custom headers 2021-12-07 18:19:51 +01:00
0682c74e9d
Watch multiple consul nodes 2021-12-07 17:56:15 +01:00
bb77e7c459
Locking to avoid flooding Let's encrypt 2021-12-07 17:05:25 +01:00
ccb4e87658
Round robin backends 2021-12-07 16:37:22 +01:00