proxmox-mirrors/pve-manager
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-manager synced 2025-05-02 20:53:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
980 Commits 6 Branches 0 Tags 12 MiB
6fcbe87a35
Commit Graph

50 Commits

Author SHA1 Message Date
Dietmar Maurer
6fcbe87a35 fix typo 2014-05-02 07:10:29 +02:00
Dietmar Maurer
1370ec6145 move formater registration to HTTPServer 2014-05-02 07:03:12 +02:00
Dietmar Maurer
3ed610334e add generic formater support 2014-04-30 15:28:30 +02:00
Dietmar Maurer
c9c0cd346c allow to return HTTP::Response object from format_response_data() 
A formater can generate HTTP redirect now.
 2014-04-30 09:30:36 +02:00
Dietmar Maurer
9195c8f947 HTTPServer: correctly unescape url 2014-04-30 08:42:50 +02:00
Dietmar Maurer
d804d82f50 introduce base_handler_class 
To make the framework more generic. The final plan is to move the
generic server code to package pve-common.

Signed-off-by: Dietmar Maurer <dietmar@proxmox.com>
 2014-04-30 08:31:14 +02:00
Dietmar Maurer
6a123049cc remove unused code 
Signed-off-by: Dietmar Maurer <dietmar@proxmox.com>
 2014-04-30 08:28:49 +02:00
Dietmar Maurer
949118487d bump version to 3.1-44, re-add spiceconfig support 2014-02-24 12:51:07 +01:00
Dietmar Maurer
36e0802d07 remove spiceconfig format 2013-12-11 08:38:22 +01:00
Dietmar Maurer
e1bae24c4c allow to use vmid 0 in spice tickets 
VMID 0 will be used by spiceterm for task that run on the host.
 2013-12-10 06:08:25 +01:00
Dietmar Maurer
8dc1715b1f delay UNAUTHORIZED response to avoid DOS attack 2013-11-18 11:19:27 +01:00
Dietmar Maurer
ce429a15b0 spice: ignore the case of the characters in hostname match 2013-10-28 08:07:00 +01:00
Dietmar Maurer
943776b047 disable SSL compression 
To avoid CRIME attacks:

http://en.wikipedia.org/wiki/CRIME_%28security_exploit%29

http://en.wikipedia.org/wiki/CRIME_%28security_exploit%29http://en.wikipedia.org/wiki/CRIME_%28security_exploit%29# with '#' will be ignored, and an empty message aborts the commit.
 2013-09-17 07:13:20 +02:00
Dietmar Maurer
e88a5cde5f add favicon.ico 2013-08-16 13:06:32 +02:00
Dietmar Maurer
64363f40c6 fix proxy loop assertion for spiceproxy 2013-07-24 12:42:30 +02:00
Dietmar Maurer
94c803f44a log handle_spice_proxy_request() errors to syslog 2013-07-24 12:40:46 +02:00
Dietmar Maurer
40ca6e9c11 fix proxy loop assertion 2013-07-23 08:34:56 +02:00
Alexandre Derumier
f60bd577b7 spiceproxy : allow only spice port range 
Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
 2013-07-22 13:04:16 +02:00
Dietmar Maurer
f2c8b26931 try to detect proxy loops 2013-07-22 09:13:41 +02:00
Dietmar Maurer
c3b83ed1f9 call $rpcenv->init_request before calling remote_node_ip 
Else get get undefined values.
 2013-07-19 11:38:34 +02:00
Dietmar Maurer
8963443427 spiceproxy: forward calls to remote nodes 2013-07-18 12:27:02 +02:00
Dietmar Maurer
cffad9045e spiceproxy: code cleanups 2013-07-18 08:53:07 +02:00
Dietmar Maurer
8a223d4f74 spiceproxy: use tcp instead of unix socket 2013-07-17 11:48:02 +02:00
Dietmar Maurer
8d5310c1b0 spiceproxy: improve loggin code 
* use the same log file as pveproxy: /var/log/pveproxy/access.log

 * log early just after establishing the connection.
 2013-06-27 06:50:32 +02:00
Dietmar Maurer
33afb29b29 add spiceproxy server 2013-06-26 13:21:14 +02:00
Alexandre Derumier
6e30b52dd4 rest : handle application/x-spice-configuration response format 
Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
 2013-06-25 08:22:50 +02:00
Dietmar Maurer
a49706cb78 avoid gzip http response for jar 
Java archives (.jar) are simple zip files - already compressed.
 2013-06-11 07:00:05 +02:00
Alexandre Derumier
0ebf2fa8d9 avoid gzip http response for png & gif 
Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
 2013-06-11 06:58:25 +02:00
Dietmar Maurer
23699d1eee fix bug 401: disable connection timeout during API call processing 
Only enable timeouts when we really expect data to be send/received.
 2013-06-07 09:54:26 +02:00
Dietmar Maurer
139cb2dac1 avoid using HTTP_PROXY environment variable 
People run into problems on upgrades, for example:

 export http_proxy=http://172.xxx.xxx.xxx:8888/
 aptitude update && aptitude full-upgrade

This restarts pveproxy, and after that login was no longer possible.

Another way to reproduce the bug is:

 http_proxy=http://1.2.3.4:8888/ pveproxy --debug
 2013-05-23 07:24:46 +02:00
Dietmar Maurer
17c8ec6486 try to add resonable warning if client connections vanished 
The proxy call is done async, so the original connection can be
closed already. This just adds a reasonable warning message. We
can remove the message later if that turns out to work as expected.
 2013-05-22 10:54:21 +02:00
Dietmar Maurer
e3110298e3 allow to upload files with spaces in filename 2013-05-22 06:44:04 +02:00
Dietmar Maurer
1319da8142 avoid warning about uninitialized value 2013-05-21 09:40:54 +02:00
Dietmar Maurer
5c49583304 fix bug #385: correctly handle Accept-Encoding 2013-05-13 09:09:52 +02:00
Dietmar Maurer
15903af61d do not use AnyEvent::Strict in production environment 2013-04-29 08:21:29 +02:00
Dietmar Maurer
88ad410336 pveproxy: implement if-modified-since 2013-04-23 11:53:32 +02:00
Dietmar Maurer
a908636e70 pveproxy: implement host based access control 2013-04-23 10:30:10 +02:00
Dietmar Maurer
f6c357cf35 code cleanups 2013-04-17 08:28:05 +02:00
Dietmar Maurer
2c32df3609 improve syslog for file uploads 
Log correct file size and MD5SUM.
 2013-04-16 09:37:47 +02:00
Dietmar Maurer
0266798235 stop keep-alive when there are many open connections 
We try to avoid to reach the max_conn limit.
 2013-04-16 09:09:41 +02:00
Dietmar Maurer
209b203ebf improve security by setting size limits 2013-04-16 08:59:50 +02:00
Dietmar Maurer
e66d68a923 accept len=0 for http requests 2013-04-16 07:02:58 +02:00
Dietmar Maurer
a81182b00b fix multipart parser 
Content-Type is optional and not well defined, so do not use it.
 2013-04-16 06:29:23 +02:00
Dietmar Maurer
d0547f7fde use correct protocol version for http response 2013-04-15 12:26:20 +02:00
Dietmar Maurer
d06a1c62c3 implement file upload 
And remove CGI.pm dependency (because we want nonblocking upload).
 2013-04-15 11:20:17 +02:00
Dietmar Maurer
5a68b2b2f0 do not use keep_alive for connections to localhost 2013-04-11 09:06:38 +02:00
Dietmar Maurer
353fef2430 add tls_ctx to proxy requests 
and fix a typo
 2013-04-11 08:53:35 +02:00
Dietmar Maurer
f91072d56f code cleanups 2013-04-11 08:31:03 +02:00
Dietmar Maurer
c2e9823c0a use syncrounous IO for log writer 2013-04-11 07:47:33 +02:00
Dietmar Maurer
57f93db1b9 move HTTPServer into separate file 2013-04-11 06:48:01 +02:00