{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":29207621,"defaultBranch":"master","name":"caddy","ownerLogin":"caddyserver","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2015-01-13T19:45:03.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/12955528?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1716792820.0","currentOid":""},"activityList":{"items":[{"before":"f6d2c293e752254769efe21c8d06a16ebad4845e","after":"e6f46c8d78b77d0aefe50750dfd6f6a18ba138e5","ref":"refs/heads/master","pushedAt":"2024-05-28T00:06:54.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"francislavoie","name":"Francis Lavoie","path":"/francislavoie","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2111701?s=80&v=4"},"commit":{"message":"acmeserver: Add `sign_with_root` for Caddyfile (#6345)\n\n* Added sign_with_root option available in the Caddyfile\n\n* Added tests for sign_with_root to validate the adapted JSON config","shortMessageHtmlLink":"acmeserver: Add sign_with_root for Caddyfile (#6345)"}},{"before":null,"after":"77394f2f66195771d7437ff54c6ddd1a37cf2a90","ref":"refs/heads/h2c-proxy-protocol","pushedAt":"2024-05-27T06:53:40.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"WeidiDeng","name":null,"path":"/WeidiDeng","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/28780594?s=80&v=4"},"commit":{"message":"disable keep alive for h2c requests","shortMessageHtmlLink":"disable keep alive for h2c requests"}},{"before":"2ce5c6526938b604586c987fa3d31117721e40a6","after":"f6d2c293e752254769efe21c8d06a16ebad4845e","ref":"refs/heads/master","pushedAt":"2024-05-24T02:06:17.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"caddyfile: Reject global request matchers earlier (#6339)","shortMessageHtmlLink":"caddyfile: Reject global request matchers earlier (#6339)"}},{"before":"a65a2b9e6290fa3b6ee8ecbbd135fa460694ddc7","after":null,"ref":"refs/heads/reject-global-matcher-earlier","pushedAt":"2024-05-24T02:06:17.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":null,"after":"a65a2b9e6290fa3b6ee8ecbbd135fa460694ddc7","ref":"refs/heads/reject-global-matcher-earlier","pushedAt":"2024-05-23T21:42:50.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"francislavoie","name":"Francis Lavoie","path":"/francislavoie","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2111701?s=80&v=4"},"commit":{"message":"caddyfile: Reject global request matchers earlier","shortMessageHtmlLink":"caddyfile: Reject global request matchers earlier"}},{"before":"61917c34434204ae676411d41facffa7c7633d3a","after":"2ce5c6526938b604586c987fa3d31117721e40a6","ref":"refs/heads/master","pushedAt":"2024-05-23T00:47:06.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"core: Fix bug in AppIfConfigured (fix #6336)","shortMessageHtmlLink":"core: Fix bug in AppIfConfigured (fix #6336)"}},{"before":"224316eaecd6bffd38719e1e03e09f8fe51649e7","after":"61917c34434204ae676411d41facffa7c7633d3a","ref":"refs/heads/master","pushedAt":"2024-05-21T22:41:41.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"francislavoie","name":"Francis Lavoie","path":"/francislavoie","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2111701?s=80&v=4"},"commit":{"message":"fix a typo (#6333)","shortMessageHtmlLink":"fix a typo (#6333)"}},{"before":"458c64af665904dbd51f7ad000ab4221d8fb2cea","after":null,"ref":"refs/heads/fileserver-show","pushedAt":"2024-05-20T19:39:56.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"4385de56a69165e355a35a4a78e33955b8fe02bf","after":null,"ref":"refs/heads/active-health-check-headers","pushedAt":"2024-05-20T19:32:33.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"francislavoie","name":"Francis Lavoie","path":"/francislavoie","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2111701?s=80&v=4"}},{"before":"c0d1d451376a203a1aa18ef1e936197f6fda1ad7","after":null,"ref":"refs/heads/public-ip-certs","pushedAt":"2024-05-20T19:30:22.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"8c708bd7bd0546a56dbe9a3a7830910f68b10663","after":null,"ref":"refs/heads/cmd-issuer","pushedAt":"2024-05-20T19:30:03.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"6e6557926cf8cf732f0a3cb802a15878d8976690","after":null,"ref":"refs/heads/ident-storage","pushedAt":"2024-05-20T19:29:22.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"254b8e205ae4a8eb14d8cf7ebb6dda423916d42f","after":null,"ref":"refs/heads/cache-ask","pushedAt":"2024-05-20T19:23:06.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"3431390fc8c7ab8cd99f6f4280169ec8c4884963","after":null,"ref":"refs/heads/fix-quic-nil-conn","pushedAt":"2024-05-20T19:22:46.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"7f7eea87c0fad62f93bf5bf8276558abec27870a","after":null,"ref":"refs/heads/stripe-kprox","pushedAt":"2024-05-20T19:22:43.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"ea1dbd26e0d45bb61c7fe42c4e808b5fecefe9b3","after":null,"ref":"refs/heads/stripe-kprox-debug","pushedAt":"2024-05-20T19:22:42.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"e202b7b2e9e5f53d90b341604d6d2d7516b02a3e","after":null,"ref":"refs/heads/zerossl-email","pushedAt":"2024-05-20T19:22:30.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"45be7d83be8df7b4927c8ec0e32471efe2719805","after":null,"ref":"refs/heads/autohttp-warn-to-info","pushedAt":"2024-05-20T19:14:40.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"5f6758dab5fc02f74233a92c53ba3b654e476dc0","after":"224316eaecd6bffd38719e1e03e09f8fe51649e7","ref":"refs/heads/master","pushedAt":"2024-05-20T19:14:39.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"autohttps: Move log WARN to INFO, reduce confusion (#6185)\n\n* autohttps: Move log WARN to INFO, reduce confusion\r\n\r\n* Change implicit condition back to WARN\r\n\r\n---------\r\n\r\nCo-authored-by: Matthew Holt ","shortMessageHtmlLink":"autohttps: Move log WARN to INFO, reduce confusion (#6185)"}},{"before":"781d6af3d78fd5310a0a93e9f95d3d80f080dd71","after":null,"ref":"refs/heads/proxy-h3","pushedAt":"2024-05-20T19:06:44.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"a6a45ff6c56d2d0df1ac86f22d38997da3ba3b39","after":"5f6758dab5fc02f74233a92c53ba3b654e476dc0","ref":"refs/heads/master","pushedAt":"2024-05-20T19:06:43.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"reverseproxy: Support HTTP/3 transport to backend (#6312)\n\nCloses #5086","shortMessageHtmlLink":"reverseproxy: Support HTTP/3 transport to backend (#6312)"}},{"before":"a9aad819c3059871023181dd461b9d2c533c7c75","after":"45be7d83be8df7b4927c8ec0e32471efe2719805","ref":"refs/heads/autohttp-warn-to-info","pushedAt":"2024-05-20T19:05:50.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"Change implicit condition back to WARN","shortMessageHtmlLink":"Change implicit condition back to WARN"}},{"before":"610c3439444b56a1ff2859bd7d8f5d015677e2b0","after":null,"ref":"refs/heads/ctx-app-strict","pushedAt":"2024-05-20T17:14:59.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"}},{"before":"73e094e1ddce4504971136d766fd70065a130f24","after":"a6a45ff6c56d2d0df1ac86f22d38997da3ba3b39","ref":"refs/heads/master","pushedAt":"2024-05-20T17:14:58.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"context: AppIfConfigured returns error; consider not-yet-provisioned modules (#6292)\n\n* context: Add new `AppStrict()` method to avoid instantiating empty apps\r\n\r\n* Rename AppStrict -> AppIfConfigured\r\n\r\n---------\r\n\r\nCo-authored-by: Matthew Holt ","shortMessageHtmlLink":"context: AppIfConfigured returns error; consider not-yet-provisioned …"}},{"before":"1e51488f4f5364efc0682f63267234308bdcff99","after":"610c3439444b56a1ff2859bd7d8f5d015677e2b0","ref":"refs/heads/ctx-app-strict","pushedAt":"2024-05-20T16:56:39.000Z","pushType":"push","commitsCount":27,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"Merge branch 'master' into ctx-app-strict","shortMessageHtmlLink":"Merge branch 'master' into ctx-app-strict"}},{"before":"d79c0f0dec390015782ef591de4c59e4a9624149","after":"73e094e1ddce4504971136d766fd70065a130f24","ref":"refs/heads/master","pushedAt":"2024-05-20T16:56:28.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"Fix lint error about deprecated method in smallstep/certificates/authority","shortMessageHtmlLink":"Fix lint error about deprecated method in smallstep/certificates/auth…"}},{"before":"478ee55cc9ff02aec1cb0fdf4c5bd16e677663e3","after":"1e51488f4f5364efc0682f63267234308bdcff99","ref":"refs/heads/ctx-app-strict","pushedAt":"2024-05-20T16:51:10.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"Rename AppStrict -> AppIfConfigured","shortMessageHtmlLink":"Rename AppStrict -> AppIfConfigured"}},{"before":"db3e19b7b5322fba59068ce9f5c3532aa0c90740","after":"d79c0f0dec390015782ef591de4c59e4a9624149","ref":"refs/heads/master","pushedAt":"2024-05-20T16:35:30.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"go.mod: Upgrade dependencies","shortMessageHtmlLink":"go.mod: Upgrade dependencies"}},{"before":"1fc151faec8421bf77c6db8b21880e7bec0d2b02","after":"db3e19b7b5322fba59068ce9f5c3532aa0c90740","ref":"refs/heads/master","pushedAt":"2024-05-20T15:48:59.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mholt","name":"Matt Holt","path":"/mholt","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1128849?s=80&v=4"},"commit":{"message":"caddytls: fix permission requirement with AutomationPolicy (#6328)\n\nCertificate automation has permission modules that are designed to\r\nprevent inappropriate issuance of unbounded or wildcard certificates.\r\nWhen an explicit cert manager is used, no additional permission should\r\nbe necessary. For example, this should be a valid caddyfile:\r\n\r\n https:// {\r\n tls {\r\n get_certificate tailscale\r\n }\r\n respond OK\r\n }\r\n\r\nThis is accomplished when provisioning an AutomationPolicy by tracking\r\nwhether there were explicit managers configured directly on the policy\r\n(in the ManagersRaw field). Only when a number of potentially unsafe\r\nconditions are present AND no explicit cert managers are configured is\r\nan error returned.\r\n\r\nThe problem arises from the fact that ctx.LoadModule deletes the raw\r\nbytes after loading in order to save memory. The first time an\r\nAutomationPolicy is provisioned, the ManagersRaw field is populated, and\r\neverything is fine.\r\n\r\nAn AutomationPolicy with no subjects is treated as a special \"catch-all\"\r\npolicy. App.createAutomationPolicies ensures that this catch-all policy\r\nhas an ACME issuer, and then calls its Provision method again because it\r\nmay have changed. This second time Provision is called, ManagesRaw is no\r\nlonger populated, and the permission check fails because it appears as\r\nthough the policy has no explicit managers.\r\n\r\nAddress this by storing a new boolean on AutomationPolicy recording\r\nwhether it had explicit cert managers configured on it.\r\n\r\nAlso fix an inverted boolean check on this value when setting\r\nfailClosed.\r\n\r\nUpdates #6060\r\nUpdates #6229\r\nUpdates #6327\r\n\r\nSigned-off-by: Will Norris ","shortMessageHtmlLink":"caddytls: fix permission requirement with AutomationPolicy (#6328)"}},{"before":"9ba999141b5ca5adaf45893992f4889629f77a9d","after":"1fc151faec8421bf77c6db8b21880e7bec0d2b02","ref":"refs/heads/master","pushedAt":"2024-05-19T02:47:46.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"francislavoie","name":"Francis Lavoie","path":"/francislavoie","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2111701?s=80&v=4"},"commit":{"message":"caddytls: remove ClientHelloSNICtxKey (#6326)","shortMessageHtmlLink":"caddytls: remove ClientHelloSNICtxKey (#6326)"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEVU6elwA","startCursor":null,"endCursor":null}},"title":"Activity · caddyserver/caddy"}