Commit graph

23 commits

Author SHA1 Message Date
jhernandezb
546e0bad00
Fix autocert generation 2018-01-18 10:33:41 -06:00
jhernandezb
32e80eca20
lets encrypt: migrate to http-01 challenge 2018-01-12 22:54:49 -06:00
Jesse Lang
b339532e0c Fix DRONE_HOST check 2017-12-20 06:49:02 -06:00
Jesse Lang
453f415cc4 Validate DRONE_HOST to ensure it contains a scheme and not a trailing slash 2017-12-19 20:08:55 -06:00
Mark Spicer
8476c90bbf Set the redirect handler for lets encrypt.
This commit sets the http handler to the redirect function for let's encrypt
enabled drone instances. In addition, the `Strict-Transport-Security` header is
added to the redirect given `header.Secure` will only be added for gin routes.

This commit resolves #2261.
2017-11-15 23:27:57 -05:00
Mark Spicer
238e916fa0 Redirect HTTP to HTTPS when SSL is enabled.
In our current drone setup, we are not using a proxy, thus letting drone handle
SSL termination. In addition, we are not exposing port 80 (effectively disabling
insecure drone access). When new engineers join and attempt to access drone,
they are not sent a 301 and often complain that they either do not have access
or that drone is broken (when in reality they are just accessing drone via the
incorrect protocol/port).

This commit changes the default behavior when running drone with a server-cert
by only sending redirects on port 80 rather than allowing both secure and
insecure access.
2017-11-15 21:36:02 -05:00
Brad Rydzewski
ae51e9d1b9 force downgrade to http/1.1 because safari 2017-09-19 15:30:31 -07:00
Brad Rydzewski
bf454572f2 Merge pull request #2215 from bradrydzewski/master
add gitlab v3 option for backward compat
2017-09-14 07:57:53 -07:00
Brad Rydzewski
913d8701f2 add gitlab v3 option for backward compat 2017-09-14 07:50:07 -07:00
Matt Leung
820d07263b Add server env var to specify .drone.yml location
Allow setting DRONE_REPO_CONFIG to override default location of .drone.yml
2017-09-12 17:06:12 -07:00
Brad Rydzewski
25c9b8050a introduce limiter for planned refactoring 2017-09-11 10:22:45 -07:00
Joachim Hill-Grannec
c30198e412 Adding Environment variable to configure the session expiration 2017-08-17 12:50:31 -07:00
Brad Rydzewski
241d994a26 abstract the user interface 2017-07-31 15:15:05 -04:00
Brad Rydzewski
99b10537ba enable redirect for http to https when certs provided 2017-07-26 10:44:38 -04:00
Brad Rydzewski
5e735c2632 improve experimental quic setup 2017-07-24 21:46:00 -04:00
Brad Rydzewski
2c8dbef79f implement quic server 2017-07-24 19:15:25 -04:00
Brad Rydzewski
07c82aa1c6 Merge remote-tracking branch 'origin' 2017-07-24 13:23:47 -04:00
Brad Rydzewski
39251a85a9 removed unused and broken packages 2017-07-24 13:23:22 -04:00
mingshun
eb94dc0419 Added integration for coding.net 2017-07-22 17:12:09 +08:00
Brad Rydzewski
35e0ee2e5f implement sync logic 2017-07-14 15:58:38 -04:00
Brad Rydzewski
f7066473c1 require DRONE_HOST on startup 2017-07-12 14:48:56 -04:00
Brad Rydzewski
a625f06c1a enable grpc auth 2017-06-29 19:35:38 -04:00
Brad Rydzewski
1a6920e822 separate agent and server binary 2017-06-29 18:51:22 -04:00