alkdev/reverse-proxy
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 6400c90cb3 Mark review/post-security-fix-review as completed — all 10 criteria PASS main glm-5.1 2026-06-12 14:35:34 +00:00
  • 75d9c263cb Mark fix/upstream-host-validation as completed glm-5.1 2026-06-12 14:34:24 +00:00
  • ccb574c259 Merge remote-tracking branch 'origin/fix/fix/upstream-host-validation' glm-5.1 2026-06-12 14:33:56 +00:00
  • 4ee9486561 feat(upstream-host-validation): validate host part of upstream address in config glm-5.1 2026-06-12 14:33:48 +00:00
  • 9730d155d2 Mark fix/token-bucket-field-visibility as completed glm-5.1 2026-06-12 14:33:01 +00:00
  • 64a651242c Merge remote-tracking branch 'origin/fix/fix/token-bucket-field-visibility' glm-5.1 2026-06-12 14:32:36 +00:00
  • cf3f00fc53 fix(token-bucket-field-visibility): make TokenBucket fields private except last_access glm-5.1 2026-06-12 14:32:29 +00:00
  • a8155d92f9 Mark fix/tls-mode-wildcard-mismatch as completed glm-5.1 2026-06-12 14:31:08 +00:00
  • 717ee8e6cd Merge remote-tracking branch 'origin/fix/fix/tls-mode-wildcard-mismatch' glm-5.1 2026-06-12 14:30:08 +00:00
  • dbedb8846c Mark fix/rename-misleading-test as completed glm-5.1 2026-06-12 14:29:51 +00:00
  • f6e6e15ebf feat(fix/tls-mode-wildcard-mismatch): remove unreachable TlsMode wildcard arm and add count mismatch check glm-5.1 2026-06-12 14:29:48 +00:00
  • d9b3a436f1 Merge remote-tracking branch 'origin/fix/fix/rename-misleading-test' glm-5.1 2026-06-12 14:28:41 +00:00
  • 855c0f1d67 fix(rename-misleading-test): rename misleading test and use from_sites in dynamic config test glm-5.1 2026-06-12 14:28:19 +00:00
  • 8ff8c71783 Mark fix/rate-limiter-connectinfo-tests as completed glm-5.1 2026-06-12 14:27:08 +00:00
  • c2201707bb Merge remote-tracking branch 'origin/fix/fix/rate-limiter-connectinfo-tests' glm-5.1 2026-06-12 14:25:22 +00:00
  • 603d722ad0 feat(rate-limiter): add ConnectInfo-based tests for rate limiter (ADR-025) glm-5.1 2026-06-12 14:24:17 +00:00
  • 21186b8265 Mark fix/http-port-type-u16 and fix/log-root-cert-count as completed glm-5.1 2026-06-12 14:21:37 +00:00
  • 1ae06b0478 Merge remote-tracking branch 'origin/fix/fix/log-root-cert-count' glm-5.1 2026-06-12 14:21:12 +00:00
  • 8ac39d9cd8 feat(fix/log-root-cert-count): log system root certificate count at startup glm-5.1 2026-06-12 14:20:43 +00:00
  • d338dcab38 Merge remote-tracking branch 'origin/fix/fix/http-port-type-u16' glm-5.1 2026-06-12 14:20:37 +00:00
  • 77117c29eb feat(http-port-type): change http_port from u32 to u16 per spec (W12) glm-5.1 2026-06-12 14:20:15 +00:00
  • 9a3b8831c7 Mark fix/json-format-without-logfile as completed glm-5.1 2026-06-12 14:19:49 +00:00
  • 245d2a69ff Merge remote-tracking branch 'origin/fix/fix/json-format-without-logfile' glm-5.1 2026-06-12 14:19:02 +00:00
  • 01e3b1cd9a Mark 6 fix tasks as completed (admin-socket-resource-limits, upstream-uri-error-handling, remove-dead-code-remnants, acme-contact-validation, admin-socket-reload-mutex-visibility, connector-timeout-ceiling) glm-5.1 2026-06-12 14:18:23 +00:00
  • 5ea0bee73f fix(logging): add .json() to stdout-only layer in init_json None branch glm-5.1 2026-06-12 14:18:17 +00:00
  • d224d7b409 Merge remote-tracking branch 'origin/fix/fix/connector-timeout-ceiling' glm-5.1 2026-06-12 14:16:47 +00:00
  • 16ec84eea2 Merge remote-tracking branch 'origin/fix/fix/admin-socket-reload-mutex-visibility' glm-5.1 2026-06-12 14:15:13 +00:00
  • b0f83669c0 fix(proxy): raise connector timeout ceiling to 30s per ADR-026 glm-5.1 2026-06-12 14:15:00 +00:00
  • eb46d9825a Merge remote-tracking branch 'origin/fix/fix/acme-contact-validation' glm-5.1 2026-06-12 14:14:55 +00:00
  • 075624368b Merge remote-tracking branch 'origin/fix/fix/remove-dead-code-remnants' glm-5.1 2026-06-12 14:14:39 +00:00
  • 80b90b5716 Merge remote-tracking branch 'origin/fix/fix/upstream-uri-error-handling' glm-5.1 2026-06-12 14:14:02 +00:00
  • 636807d26e Merge remote-tracking branch 'origin/fix/fix/admin-socket-resource-limits' glm-5.1 2026-06-12 14:13:27 +00:00
  • 159eeda266 feat(admin): gate reload_mutex() with #[cfg(test)] glm-5.1 2026-06-12 14:11:40 +00:00
  • 66cd116d54 feat(validation): tighten ACME contact validation to require non-empty email with @ sign glm-5.1 2026-06-12 14:10:28 +00:00
  • 42b74f92af Remove dead code remnants identified in security review #003 glm-5.1 2026-06-12 14:05:31 +00:00
  • e2440f2edb fix: return 502 on upstream URI parse failure instead of dropping query string glm-5.1 2026-06-12 14:04:03 +00:00
  • 4c6b55a780 Add read timeout and line length limit to admin socket (ADR-027) glm-5.1 2026-06-12 14:03:22 +00:00
  • db982e9c4d Mark fix/inflight-counter-increment, fix/consolidate-config-types, fix/rate-limiter-ip-source as completed glm-5.1 2026-06-12 14:02:02 +00:00
  • e6d22bdcb8 Merge remote-tracking branch 'origin/fix/fix/rate-limiter-ip-source' glm-5.1 2026-06-12 14:01:16 +00:00
  • ad9b9b9b78 fix(rate_limit): use ConnectInfo as sole IP source, reject without it glm-5.1 2026-06-12 14:00:31 +00:00
  • 77ea1160de Merge remote-tracking branch 'origin/fix/fix/consolidate-config-types' glm-5.1 2026-06-12 14:00:10 +00:00
  • 1ba1d2a4de Consolidate config types: remove RawConfig, use FullConfig in load_config glm-5.1 2026-06-12 13:58:36 +00:00
  • 05fea1a8e2 Fix InFlightCounter: increment in new(), use new() constructor, drain interval 100ms glm-5.1 2026-06-12 13:58:04 +00:00
  • 54f1725173 Decompose security review #003 findings into 17 fix tasks and 1 review task glm-5.1 2026-06-12 13:42:37 +00:00
  • 80d1fd0fb3 Update architecture docs to address security review #003 findings glm-5.1 2026-06-12 13:17:39 +00:00
  • 4f537c80d2 Add security and bug review #003 (4 critical, 12 warnings, 10 suggestions) glm-5.1 2026-06-12 13:03:20 +00:00
  • c8ab794ef3 Add LICENSE, README, AGENTS.md, and deployment setup guide glm-5.1 2026-06-12 11:42:08 +00:00
  • 0d54eba41e Update architecture specs to reflect live deployment findings and fix two bugs glm-5.1 2026-06-12 11:28:31 +00:00
  • c2eefddb4f Disable ANSI colors in logs and fix fail2ban regex glm-5.1 2026-06-12 10:15:50 +00:00
  • 9ebb8ee7a8 Fix HTTP/2 support: use ALPN-based protocol detection and fallback to URI host glm-5.1 2026-06-12 06:14:46 +00:00
  • da28ea749d Mark fix/clean-dead-code as completed glm-5.1 2026-06-12 05:13:10 +00:00
  • cfba7491ae Merge branch 'fix/fix/clean-dead-code' glm-5.1 2026-06-12 05:12:47 +00:00
  • cbcd746c9f Remove dead_code annotations and add #[non_exhaustive] to public enums glm-5.1 2026-06-12 05:12:32 +00:00
  • 8f3c56e6bc Mark fix/add-code-comments as completed glm-5.1 2026-06-12 05:05:36 +00:00
  • 9b3fe23499 Add clarifying comments for correct-but-non-obvious behaviors (C3, W8, W10, W11, S9) glm-5.1 2026-06-12 05:05:10 +00:00
  • 516efb0403 Mark fix/connect-timeout as completed glm-5.1 2026-06-12 05:02:41 +00:00
  • 0c769e682e Wire upstream_connect_timeout_secs to enforce separate connect timeout glm-5.1 2026-06-12 05:01:54 +00:00
  • 1da01a2336 Mark fix/graceful-shutdown as completed glm-5.1 2026-06-12 05:00:03 +00:00
  • 6cb0f8e6fe Merge branch 'fix/fix/graceful-shutdown' into fix/acme-contact-and-challenge glm-5.1 2026-06-12 04:59:32 +00:00
  • 280fe782a1 Implement graceful shutdown for listeners, admin socket, eviction task, and ACME glm-5.1 2026-06-12 04:59:18 +00:00
  • 9bdc2b72af Add acme_contact to test config TOML strings fix/acme-contact-and-challenge glm-5.1 2026-06-12 04:48:25 +00:00
  • abc8a44134 Mark fix/request-timeout-scope as completed glm-5.1 2026-06-12 04:47:15 +00:00
  • 3f20c9d01f Add request timeout scope comment (fix/request-timeout-scope) glm-5.1 2026-06-12 04:47:06 +00:00
  • f02670d5ef Mark Batch 2 tasks as completed (remove-health, access-logging, acme-contact) glm-5.1 2026-06-12 04:46:34 +00:00
  • 5529cf2add Merge branch 'fix/fix/access-logging' glm-5.1 2026-06-12 04:46:26 +00:00
  • 4cdc3aa0b8 Merge branch 'fix/fix/remove-health-and-hardcode-https' glm-5.1 2026-06-12 04:44:54 +00:00
  • 3f2550fa20 Fix ACME contact email wiring and remove unused challenge config glm-5.1 2026-06-12 04:44:41 +00:00
  • 23c8b74058 Wire up access logging in proxy handler glm-5.1 2026-06-12 04:43:59 +00:00
  • a826106673 Remove /health route from main listener and hardcode X-Forwarded-Proto to https glm-5.1 2026-06-12 04:43:59 +00:00
  • 19efbd42ee Mark fix/normalize-host-ipv6 as completed glm-5.1 2026-06-12 04:41:52 +00:00
  • f59a86a8cf Merge branch 'fix/fix/normalize-host-ipv6' glm-5.1 2026-06-12 04:41:20 +00:00
  • 42c721e954 fix: normalize_host handles IPv6 bracket notation glm-5.1 2026-06-12 04:40:43 +00:00
  • 53d601522e Mark fix/config-reload-static-drift as completed glm-5.1 2026-06-12 04:36:34 +00:00
  • a78e3bf374 Fix ConfigReloadHandle static config drift causing stale diff warnings glm-5.1 2026-06-12 04:35:20 +00:00
  • d7f811ffb5 Mark fix/logging-test-global-subscriber as completed glm-5.1 2026-06-12 04:29:48 +00:00
  • 634ceb365a Merge branch 'fix/fix/logging-test-global-subscriber' glm-5.1 2026-06-12 04:29:40 +00:00
  • 667495cf43 fix(logging): handle global subscriber conflict in test glm-5.1 2026-06-12 04:29:28 +00:00
  • c50d2e8d1b Mark fix/http-port-validation as completed glm-5.1 2026-06-12 04:29:02 +00:00
  • d24148dae9 Add http_port range validation (0 or 1-65535) glm-5.1 2026-06-12 04:28:35 +00:00
  • 53ef5b32c3 Mark fix/fragile-error-detection as completed glm-5.1 2026-06-12 04:25:49 +00:00
  • 8f9e3b639d Merge branch 'fix/fix/fragile-error-detection' glm-5.1 2026-06-12 04:25:35 +00:00
  • 067f8a9012 fix: use typed hyper::Error::is_incomplete_message() instead of fragile string matching glm-5.1 2026-06-12 04:25:11 +00:00
  • 4db4ecbeb9 Mark fix/integration-test-toml as completed glm-5.1 2026-06-12 04:23:27 +00:00
  • c4872cb88c fix: correct TOML nesting from [[listeners.listeners.sites]] to [[listeners.sites]] glm-5.1 2026-06-12 04:22:46 +00:00
  • 426333eeda Mark fix/token-bucket-nanosecond as completed glm-5.1 2026-06-12 04:22:35 +00:00
  • a701c82c90 fix: use nanosecond precision in token bucket refill calculation glm-5.1 2026-06-12 04:21:53 +00:00
  • f9d7b8112b Decompose implementation review fixes into 14 atomic tasks with post-fix review glm-5.1 2026-06-12 04:08:45 +00:00
  • fe1ae6c05e Resolve all open questions, remove /health from main listener (ADR-022) glm-5.1 2026-06-12 03:39:52 +00:00
  • 68d27c4789 Triage implementation review findings and update architecture specs glm-5.1 2026-06-11 15:04:09 +00:00
  • 5478df7ab7 Add W13-W14, S9-S11 findings to implementation review glm-5.1 2026-06-11 14:49:50 +00:00
  • 39e1b82308 Add post-implementation code review (4 critical, 12 warning, 8 suggestion findings) glm-5.1 2026-06-11 14:20:06 +00:00
  • 57cb071ff2 Fix task status: 'complete' -> 'completed' for taskgraph compatibility glm-5.1 2026-06-11 14:06:20 +00:00
  • cf002cc40f Fix spec deviations and implement graceful shutdown drain glm-5.1 2026-06-11 14:01:55 +00:00
  • 9e11e755ea Mark integration/startup-orchestration as complete glm-5.1 2026-06-11 13:46:46 +00:00
  • 7bed7db615 Wire startup orchestration: correct sequence, middleware order, TLS, ConnectInfo, sd_notify glm-5.1 2026-06-11 13:45:39 +00:00
  • 3754b40904 Mark deploy/systemd-and-container as complete glm-5.1 2026-06-11 13:42:57 +00:00
  • 6d497eb5d3 Add systemd unit, Dockerfile, docker-compose, and fail2ban configs for production deployment glm-5.1 2026-06-11 13:42:08 +00:00
  • 5d1e29fde9 Mark tls/tls-listener-setup as complete glm-5.1 2026-06-11 13:40:14 +00:00
  • e0f7e100d9 Merge feat/tls/tls-listener-setup into main glm-5.1 2026-06-11 13:40:04 +00:00
  • 7ccb2ae64f feat: implement multi-listener TLS setup with ConnectInfo propagation glm-5.1 2026-06-11 13:38:39 +00:00