Skip to content

Latest commit

 

History

History
191 lines (148 loc) · 5.95 KB

CHANGELOG.md

File metadata and controls

191 lines (148 loc) · 5.95 KB
Raw

Nginx-Craft Changelog

1.0.34 - 2021.04.18

Added

  • Added a Forge Template NginxFastCGICacheTemplate.conf
  • Opt out of Google Federated Learning of Cohorts ("FLoC") via the Permissions-Policy header. ref:

1.0.33 - 2021.03.17

Changed

  • Updated the Forge template to use more Forge-provided variables

1.0.32 - 2021.02.08

Changed

  • Changed the include path from /etc/nginx to /home/forge for the Forge config
  • Removed repeated server_tokens within Primary block
  • Changes max-age for HSTS to be one year for preloading

1.0.31 - 2020.11.19

Changed

  • Changed public to web for the server root example

1.0.30 - 2020.11.05

Added

1.0.29 - 2020.10.21

Changed

  • Fix multi-site requests missing query params

1.0.28 - 2020.08.20

Changed

  • Set server_tokens to off
  • Changed the dhparam setting to /etc/nginx/dhparams.pem to mirror the Forge default

1.0.27 - 2020.06.23

Changed

  • Explicitly set DOCUMENT_ROOT

1.0.26 - 2020.06.23

Changed

  • Changed $document_root to $realpath_root to sidestep opcache issues automatically Learn More

1.0.25 - 2020.06.15

Changed

  • Route any 404s for expires.conf matches back through Craft for handling

1.0.24 - 2020.05.14

Added

  • Added always to all of the added headers in security.conf so that they are added regardless of response code

1.0.23 - 2020.05.14

Added

  • Added better Cache-Control header settings in expires.conf for static resources, leveraging immutable, must-revalidate, and max-age
  • Added svg to cache-busted extensions in cache-busting.conf

1.0.22 - 2019.12.31

Changed

  • Enable serving of static gzip files via gzip_static
  • Removed superfluous whitespace in map block

1.0.21 - 2019.07.24

Changed

  • Load security.conf from nginx-partials again inside of the location ~ [^/]\.php(/|$) block
  • Added xmlrpc to the WordPress redirects

1.0.20 - 2019.05.15

Changed

  • Removed the location block in expires.conf that matched .rss and .atom since these almost always should go through Craft

1.0.19 - 2019.04.10

Added

  • Include an example of serving up a placeholder image when a 404 happens for static image assets

1.0.18 - 2019.03.21

Added

  • Includes Dotenvy generated .env files

1.0.17 - 2018.08.21

Added

  • Don't allow browser caching of dynamically generated content

Changed

  • Added "Remove if you don't plan to use server-set ENV variables" comment

1.0.16 - 2018.05.14

Changed

  • Removed duplicate client_max_body_size directives

1.0.15 - 2018.01.23

Changed

  • Removed incorrect =404 directives

1.0.14 - 2018.01.21

Added

  • Explicitly set fastcgi_param HTTP_HOST to mitigate HTTP_HOST Security Issues
  • Added =404 as the last parameter in each of the try_files directives to avoid internal loops
  • Added ssi on; to the default config for server-side includes

1.0.13 - 2017.12.14

Added

  • Disable limits on the maximum allowed size of the client request body via client_max_body_size
  • Add expires headers for mp3 files
  • Updated bot UserAgents list

1.0.12 - 2017.11.23

Added

  • Added configuration for banning bots based on UserAgent

1.0.11 - 2017.10.02

Added

  • Added a basic_localdev.com.conf for people who just want a basic Nginx configuration for Craft local dev

1.0.10 - 2017.09.12

Changed

  • Updated the config to use php7.1 by default
  • Added comments for the CME config

1.0.9 - 2017.09.01

Changed

  • Added OCSP stapling
  • Tweaked TLS settings for performance
  • Optimized ssl_buffer_size for TTFB
  • Updated README.md with instructions for downloading your Issuer certificate

1.0.8 - 2017.08.24

Changed

  • Fixed an issue where the removal of trailing slashes could cause directory URLs to fail with "too many redirects"

1.0.7 - 2017.08.05

Added

  • Added Referrer-Policy "no-referrer-when-downgrade"; to security.conf

1.0.6 - 2017.07.06

Added

  • Added handling of missing .php files routed through Craft
  • Added 404 handler
  • Added .gitignore

Changed

  • Removed html and other non-cacheable files from matching in expires.conf

1.0.5 - 2017.03.27

Added

  • Added webp to the expires header support

Changed

  • Remove etags from static resources
  • Updated the CHANGELOG.md format

1.0.4 - 2017.03.02

Added

  • Added (commented out) support for error logging going to SYSLOG for log services
  • Redirect bots probing the site for WordPress vulnerabilities
  • Added information on opcache
  • Added a redirect for Do Not Track as per https://www.eff.org/dnt-policy
  • Change // -> / for all URLs, so it works for our php location block, too

Changed

  • Removed le-well-known.conf so that it doesn't conflict with default Forge setups
  • Updated README.md

1.0.3 - 2016.12.10

Added

  • Added support for localized sites (commented out by default)
  • Added HTTP_PROXY
  • Added client_max_body_size to the README.md

Changed

  • Updated README.md

1.0.2 - 2016.11.30

Added

Changed

  • Updated README.md

1.0.1 - 2016.11.09

Added

  • Added server_tokens off to disable sending the Nginx version number
  • Added a commented out Content-Security-Policy header in security.conf

Changed

  • Updated README.md

1.0.0 - 2016.11.01

Added

  • Initial release

Brought to you by nystudio107