mirror of
https://github.com/linuxserver/docker-swag.git
synced 2026-03-21 13:39:03 +09:00
Compare commits
1 Commits
5.4.0-ls44
...
deny-dotfi
| Author | SHA1 | Date | |
|---|---|---|---|
|
716b1237c5 |
2
Jenkinsfile
vendored
2
Jenkinsfile
vendored
@@ -283,7 +283,7 @@ pipeline {
|
|||||||
-v ${WORKSPACE}:/mnt \
|
-v ${WORKSPACE}:/mnt \
|
||||||
-e AWS_ACCESS_KEY_ID=\"${S3_KEY}\" \
|
-e AWS_ACCESS_KEY_ID=\"${S3_KEY}\" \
|
||||||
-e AWS_SECRET_ACCESS_KEY=\"${S3_SECRET}\" \
|
-e AWS_SECRET_ACCESS_KEY=\"${S3_SECRET}\" \
|
||||||
ghcr.io/linuxserver/baseimage-alpine:3.23 s6-envdir -fn -- /var/run/s6/container_environment /bin/bash -c "\
|
ghcr.io/linuxserver/baseimage-alpine:3 s6-envdir -fn -- /var/run/s6/container_environment /bin/bash -c "\
|
||||||
apk add --no-cache python3 && \
|
apk add --no-cache python3 && \
|
||||||
python3 -m venv /lsiopy && \
|
python3 -m venv /lsiopy && \
|
||||||
pip install --no-cache-dir -U pip && \
|
pip install --no-cache-dir -U pip && \
|
||||||
|
|||||||
@@ -170,7 +170,7 @@ This image can be run with a read-only container filesystem. For details please
|
|||||||
To help you get started creating a container from this image you can either use docker-compose or the docker cli.
|
To help you get started creating a container from this image you can either use docker-compose or the docker cli.
|
||||||
|
|
||||||
>[!NOTE]
|
>[!NOTE]
|
||||||
>Unless a parameter is flagged as 'optional', it is *mandatory* and a value must be provided.
|
>Unless a parameter is flaged as 'optional', it is *mandatory* and a value must be provided.
|
||||||
|
|
||||||
### docker-compose (recommended, [click here for more info](https://docs.linuxserver.io/general/docker-compose))
|
### docker-compose (recommended, [click here for more info](https://docs.linuxserver.io/general/docker-compose))
|
||||||
|
|
||||||
|
|||||||
@@ -1,7 +1,7 @@
|
|||||||
NAME VERSION TYPE
|
NAME VERSION TYPE
|
||||||
Simple Launcher 1.1.0.14 binary (+5 duplicates)
|
Simple Launcher 1.1.0.14 binary (+5 duplicates)
|
||||||
acl-libs 2.3.2-r1 apk
|
acl-libs 2.3.2-r1 apk
|
||||||
acme 5.4.0 python
|
acme 5.3.0 python
|
||||||
alpine-baselayout 3.7.0-r0 apk
|
alpine-baselayout 3.7.0-r0 apk
|
||||||
alpine-baselayout-data 3.7.0-r0 apk
|
alpine-baselayout-data 3.7.0-r0 apk
|
||||||
alpine-keys 2.5-r0 apk
|
alpine-keys 2.5-r0 apk
|
||||||
@@ -15,15 +15,15 @@ argon2-libs 20190702-r5 apk
|
|||||||
attrs 25.4.0 python
|
attrs 25.4.0 python
|
||||||
autocommand 2.2.2 python
|
autocommand 2.2.2 python
|
||||||
azure-common 1.1.28 python
|
azure-common 1.1.28 python
|
||||||
azure-core 1.38.3 python
|
azure-core 1.38.0 python
|
||||||
azure-identity 1.25.3 python
|
azure-identity 1.25.1 python
|
||||||
azure-mgmt-core 1.6.0 python
|
azure-mgmt-core 1.6.0 python
|
||||||
azure-mgmt-dns 9.0.0 python
|
azure-mgmt-dns 9.0.0 python
|
||||||
backports-tarfile 1.2.0 python
|
backports-tarfile 1.2.0 python
|
||||||
bash 5.2.37-r0 apk
|
bash 5.2.37-r0 apk
|
||||||
beautifulsoup4 4.14.3 python
|
beautifulsoup4 4.14.3 python
|
||||||
boto3 1.42.68 python
|
boto3 1.42.44 python
|
||||||
botocore 1.42.68 python
|
botocore 1.42.44 python
|
||||||
brotli-libs 1.1.0-r2 apk
|
brotli-libs 1.1.0-r2 apk
|
||||||
bs4 0.0.2 python
|
bs4 0.0.2 python
|
||||||
busybox 1.37.0-r20 apk
|
busybox 1.37.0-r20 apk
|
||||||
@@ -33,18 +33,18 @@ c-client 2007f-r15 apk
|
|||||||
ca-certificates 20250911-r0 apk
|
ca-certificates 20250911-r0 apk
|
||||||
ca-certificates-bundle 20250911-r0 apk
|
ca-certificates-bundle 20250911-r0 apk
|
||||||
catatonit 0.2.1-r0 apk
|
catatonit 0.2.1-r0 apk
|
||||||
certbot 5.4.0 python
|
certbot 5.3.0 python
|
||||||
certbot-dns-acmedns 0.1.0 python
|
certbot-dns-acmedns 0.1.0 python
|
||||||
certbot-dns-aliyun 2.0.0 python
|
certbot-dns-aliyun 2.0.0 python
|
||||||
certbot-dns-azure 1.5.0 python
|
certbot-dns-azure 1.5.0 python
|
||||||
certbot-dns-bunny 3.0.0 python
|
certbot-dns-bunny 3.0.0 python
|
||||||
certbot-dns-cloudflare 5.4.0 python
|
certbot-dns-cloudflare 5.3.0 python
|
||||||
certbot-dns-cpanel 0.4.0 python
|
certbot-dns-cpanel 0.4.0 python
|
||||||
certbot-dns-desec 1.3.2 python
|
certbot-dns-desec 1.3.2 python
|
||||||
certbot-dns-digitalocean 5.4.0 python
|
certbot-dns-digitalocean 5.3.0 python
|
||||||
certbot-dns-directadmin 1.0.15 python
|
certbot-dns-directadmin 1.0.15 python
|
||||||
certbot-dns-dnsimple 5.4.0 python
|
certbot-dns-dnsimple 5.3.0 python
|
||||||
certbot-dns-dnsmadeeasy 5.4.0 python
|
certbot-dns-dnsmadeeasy 5.3.0 python
|
||||||
certbot-dns-dnspod 0.1.0 python
|
certbot-dns-dnspod 0.1.0 python
|
||||||
certbot-dns-do 0.31.0 python
|
certbot-dns-do 0.31.0 python
|
||||||
certbot-dns-domeneshop 0.2.9 python
|
certbot-dns-domeneshop 0.2.9 python
|
||||||
@@ -52,48 +52,48 @@ certbot-dns-dreamhost 1.0 python
|
|||||||
certbot-dns-duckdns 1.8.0 python
|
certbot-dns-duckdns 1.8.0 python
|
||||||
certbot-dns-dynudns 0.0.6 python
|
certbot-dns-dynudns 0.0.6 python
|
||||||
certbot-dns-freedns 0.2.0 python
|
certbot-dns-freedns 0.2.0 python
|
||||||
certbot-dns-gehirn 5.4.0 python
|
certbot-dns-gehirn 5.3.0 python
|
||||||
certbot-dns-glesys 2.1.0 python
|
certbot-dns-glesys 2.1.0 python
|
||||||
certbot-dns-godaddy 2.8.0 python
|
certbot-dns-godaddy 2.8.0 python
|
||||||
certbot-dns-google 5.4.0 python
|
certbot-dns-google 5.3.0 python
|
||||||
certbot-dns-he 1.0.0 python
|
certbot-dns-he 1.0.0 python
|
||||||
certbot-dns-hetzner 3.0.0 python
|
certbot-dns-hetzner 3.0.0 python
|
||||||
certbot-dns-hetzner-cloud 1.0.5 python
|
certbot-dns-hetzner-cloud 1.0.5 python
|
||||||
certbot-dns-infomaniak 0.2.4 python
|
certbot-dns-infomaniak 0.2.4 python
|
||||||
certbot-dns-inwx 3.0.3 python
|
certbot-dns-inwx 3.0.3 python
|
||||||
certbot-dns-ionos 2024.11.9 python
|
certbot-dns-ionos 2024.11.9 python
|
||||||
certbot-dns-linode 5.4.0 python
|
certbot-dns-linode 5.3.0 python
|
||||||
certbot-dns-loopia 1.0.1 python
|
certbot-dns-loopia 1.0.1 python
|
||||||
certbot-dns-luadns 5.4.0 python
|
certbot-dns-luadns 5.3.0 python
|
||||||
certbot-dns-namecheap 1.0.0 python
|
certbot-dns-namecheap 1.0.0 python
|
||||||
certbot-dns-netcup 2.0.0 python
|
certbot-dns-netcup 2.0.0 python
|
||||||
certbot-dns-njalla 2.0.2 python
|
certbot-dns-njalla 2.0.2 python
|
||||||
certbot-dns-nsone 5.4.0 python
|
certbot-dns-nsone 5.3.0 python
|
||||||
certbot-dns-ovh 5.4.0 python
|
certbot-dns-ovh 5.3.0 python
|
||||||
certbot-dns-porkbun 0.11.0 python
|
certbot-dns-porkbun 0.11.0 python
|
||||||
certbot-dns-rfc2136 5.4.0 python
|
certbot-dns-rfc2136 5.3.0 python
|
||||||
certbot-dns-route53 5.4.0 python
|
certbot-dns-route53 5.3.0 python
|
||||||
certbot-dns-sakuracloud 5.4.0 python
|
certbot-dns-sakuracloud 5.3.0 python
|
||||||
certbot-dns-standalone 1.2.1 python
|
certbot-dns-standalone 1.2.1 python
|
||||||
certbot-dns-transip 0.5.2 python
|
certbot-dns-transip 0.5.2 python
|
||||||
certbot-dns-vultr 1.1.0 python
|
certbot-dns-vultr 1.1.0 python
|
||||||
certbot-plugin-gandi 1.5.0 python
|
certbot-plugin-gandi 1.5.0 python
|
||||||
certifi 2026.2.25 python
|
certifi 2026.1.4 python
|
||||||
cffi 2.0.0 python
|
cffi 2.0.0 python
|
||||||
charset-normalizer 3.4.5 python
|
charset-normalizer 3.4.4 python
|
||||||
cli UNKNOWN binary
|
cli UNKNOWN binary
|
||||||
cli-32 UNKNOWN binary
|
cli-32 UNKNOWN binary
|
||||||
cli-64 UNKNOWN binary
|
cli-64 UNKNOWN binary
|
||||||
cli-arm64 UNKNOWN binary
|
cli-arm64 UNKNOWN binary
|
||||||
cloudflare 2.19.4 python
|
cloudflare 2.19.4 python
|
||||||
composer 2.9.5 binary
|
composer 2.9.5 binary
|
||||||
configargparse 1.7.5 python
|
configargparse 1.7.1 python
|
||||||
configobj 5.0.9 python
|
configobj 5.0.9 python
|
||||||
coreutils 9.7-r1 apk
|
coreutils 9.7-r1 apk
|
||||||
coreutils-env 9.7-r1 apk
|
coreutils-env 9.7-r1 apk
|
||||||
coreutils-fmt 9.7-r1 apk
|
coreutils-fmt 9.7-r1 apk
|
||||||
coreutils-sha512sum 9.7-r1 apk
|
coreutils-sha512sum 9.7-r1 apk
|
||||||
cryptography 46.0.5 python
|
cryptography 46.0.4 python
|
||||||
curl 8.14.1-r2 apk
|
curl 8.14.1-r2 apk
|
||||||
distro 1.9.0 python
|
distro 1.9.0 python
|
||||||
dns-lexicon 3.23.2 python
|
dns-lexicon 3.23.2 python
|
||||||
@@ -104,7 +104,7 @@ domeneshop 0.4.4 python
|
|||||||
fail2ban 1.1.0 python
|
fail2ban 1.1.0 python
|
||||||
fail2ban 1.1.0-r3 apk
|
fail2ban 1.1.0-r3 apk
|
||||||
fail2ban-pyc 1.1.0-r3 apk
|
fail2ban-pyc 1.1.0-r3 apk
|
||||||
filelock 3.25.2 python
|
filelock 3.20.3 python
|
||||||
findutils 4.10.0-r0 apk
|
findutils 4.10.0-r0 apk
|
||||||
fontconfig 2.15.0-r3 apk
|
fontconfig 2.15.0-r3 apk
|
||||||
freetype 2.13.3-r0 apk
|
freetype 2.13.3-r0 apk
|
||||||
@@ -120,12 +120,12 @@ gnupg-gpgconf 2.4.9-r0 apk
|
|||||||
gnupg-keyboxd 2.4.9-r0 apk
|
gnupg-keyboxd 2.4.9-r0 apk
|
||||||
gnupg-utils 2.4.9-r0 apk
|
gnupg-utils 2.4.9-r0 apk
|
||||||
gnupg-wks-client 2.4.9-r0 apk
|
gnupg-wks-client 2.4.9-r0 apk
|
||||||
gnutls 3.8.12-r0 apk
|
gnutls 3.8.8-r0 apk
|
||||||
google-api-core 2.30.0 python
|
google-api-core 2.29.0 python
|
||||||
google-api-python-client 2.192.0 python
|
google-api-python-client 2.189.0 python
|
||||||
google-auth 2.49.1 python
|
google-auth 2.48.0 python
|
||||||
google-auth-httplib2 0.3.0 python
|
google-auth-httplib2 0.3.0 python
|
||||||
googleapis-common-protos 1.73.0 python
|
googleapis-common-protos 1.72.0 python
|
||||||
gpg 2.4.9-r0 apk
|
gpg 2.4.9-r0 apk
|
||||||
gpg-agent 2.4.9-r0 apk
|
gpg-agent 2.4.9-r0 apk
|
||||||
gpg-wks-server 2.4.9-r0 apk
|
gpg-wks-server 2.4.9-r0 apk
|
||||||
@@ -135,7 +135,7 @@ gui UNKNOWN binary
|
|||||||
gui-32 UNKNOWN binary
|
gui-32 UNKNOWN binary
|
||||||
gui-64 UNKNOWN binary
|
gui-64 UNKNOWN binary
|
||||||
gui-arm64 UNKNOWN binary
|
gui-arm64 UNKNOWN binary
|
||||||
hcloud 2.17.0 python
|
hcloud 2.16.0 python
|
||||||
httplib2 0.31.2 python
|
httplib2 0.31.2 python
|
||||||
icu-data-en 76.1-r1 apk
|
icu-data-en 76.1-r1 apk
|
||||||
icu-libs 76.1-r1 apk
|
icu-libs 76.1-r1 apk
|
||||||
@@ -188,8 +188,8 @@ libmnl 1.0.5-r2 apk
|
|||||||
libncursesw 6.5_p20250503-r0 apk
|
libncursesw 6.5_p20250503-r0 apk
|
||||||
libnftnl 1.2.9-r0 apk
|
libnftnl 1.2.9-r0 apk
|
||||||
libpanelw 6.5_p20250503-r0 apk
|
libpanelw 6.5_p20250503-r0 apk
|
||||||
libpng 1.6.55-r0 apk
|
libpng 1.6.54-r0 apk
|
||||||
libpq 17.9-r0 apk
|
libpq 17.7-r0 apk
|
||||||
libproc2 4.0.4-r3 apk
|
libproc2 4.0.4-r3 apk
|
||||||
libpsl 0.21.5-r3 apk
|
libpsl 0.21.5-r3 apk
|
||||||
libsasl 2.1.28-r8 apk
|
libsasl 2.1.28-r8 apk
|
||||||
@@ -225,14 +225,15 @@ memcached 1.6.32-r0 apk
|
|||||||
mock 5.2.0 python
|
mock 5.2.0 python
|
||||||
more-itertools 10.8.0 python
|
more-itertools 10.8.0 python
|
||||||
mpdecimal 4.0.1-r0 apk
|
mpdecimal 4.0.1-r0 apk
|
||||||
msal 1.35.1 python
|
msal 1.34.0 python
|
||||||
msal-extensions 1.3.1 python
|
msal-extensions 1.3.1 python
|
||||||
musl 1.2.5-r10 apk
|
musl 1.2.5-r10 apk
|
||||||
musl-utils 1.2.5-r10 apk
|
musl-utils 1.2.5-r10 apk
|
||||||
|
my-test-package 1.0 python
|
||||||
nano 8.4-r0 apk
|
nano 8.4-r0 apk
|
||||||
ncurses-terminfo-base 6.5_p20250503-r0 apk
|
ncurses-terminfo-base 6.5_p20250503-r0 apk
|
||||||
netcat-openbsd 1.229.1-r0 apk
|
netcat-openbsd 1.229.1-r0 apk
|
||||||
nettle 3.10.2-r0 apk
|
nettle 3.10.1-r0 apk
|
||||||
nghttp2-libs 1.65.0-r0 apk
|
nghttp2-libs 1.65.0-r0 apk
|
||||||
nginx 1.28.2-r0 apk
|
nginx 1.28.2-r0 apk
|
||||||
nginx-mod-devel-kit 1.28.2-r0 apk
|
nginx-mod-devel-kit 1.28.2-r0 apk
|
||||||
@@ -324,7 +325,7 @@ pyasn1 0.6.2 python
|
|||||||
pyasn1-modules 0.4.2 python
|
pyasn1-modules 0.4.2 python
|
||||||
pyc 3.12.12-r0 apk
|
pyc 3.12.12-r0 apk
|
||||||
pycparser 3.0 python
|
pycparser 3.0 python
|
||||||
pyjwt 2.12.1 python
|
pyjwt 2.11.0 python
|
||||||
pynamecheap 0.0.3 python
|
pynamecheap 0.0.3 python
|
||||||
pyopenssl 25.3.0 python
|
pyopenssl 25.3.0 python
|
||||||
pyotp 2.9.0 python
|
pyotp 2.9.0 python
|
||||||
@@ -341,9 +342,10 @@ readline 8.2.13-r1 apk
|
|||||||
requests 2.32.5 python
|
requests 2.32.5 python
|
||||||
requests-file 3.0.1 python
|
requests-file 3.0.1 python
|
||||||
requests-mock 1.12.1 python
|
requests-mock 1.12.1 python
|
||||||
|
rsa 4.9.1 python
|
||||||
s3transfer 0.16.0 python
|
s3transfer 0.16.0 python
|
||||||
scanelf 1.3.8-r1 apk
|
scanelf 1.3.8-r1 apk
|
||||||
setuptools 82.0.1 python
|
setuptools 81.0.0 python
|
||||||
shadow 4.17.3-r0 apk
|
shadow 4.17.3-r0 apk
|
||||||
six 1.17.0 python
|
six 1.17.0 python
|
||||||
skalibs-libs 2.14.4.0-r0 apk
|
skalibs-libs 2.14.4.0-r0 apk
|
||||||
@@ -354,7 +356,7 @@ tiff 4.7.1-r0 apk
|
|||||||
tldextract 5.3.1 python
|
tldextract 5.3.1 python
|
||||||
tomli 2.4.0 python
|
tomli 2.4.0 python
|
||||||
typing-extensions 4.15.0 python
|
typing-extensions 4.15.0 python
|
||||||
tzdata 2026a-r0 apk
|
tzdata 2025c-r0 apk
|
||||||
unixodbc 2.3.12-r0 apk
|
unixodbc 2.3.12-r0 apk
|
||||||
uritemplate 4.2.0 python
|
uritemplate 4.2.0 python
|
||||||
urllib3 2.6.3 python
|
urllib3 2.6.3 python
|
||||||
|
|||||||
@@ -219,6 +219,7 @@ init_diagram: |
|
|||||||
"swag:latest" <- Base Images
|
"swag:latest" <- Base Images
|
||||||
# changelog
|
# changelog
|
||||||
changelogs:
|
changelogs:
|
||||||
|
- {date: "08.02.26:", desc: "[Existing users should update:](https://github.com/linuxserver/docker-swag/blob/master/README.md#updating-configs) site-confs/default.conf - Deny access to all dotfiles."}
|
||||||
- {date: "23.01.26:", desc: "Reorder init to fix proxy conf version checks."}
|
- {date: "23.01.26:", desc: "Reorder init to fix proxy conf version checks."}
|
||||||
- {date: "21.12.25:", desc: "Add support for hetzner-cloud dns validation."}
|
- {date: "21.12.25:", desc: "Add support for hetzner-cloud dns validation."}
|
||||||
- {date: "04.11.25:", desc: "Switch default Gandi credentials from API Key to Token, allow DNS propagation time for Azure DNS plugin."}
|
- {date: "04.11.25:", desc: "Switch default Gandi credentials from API Key to Token, allow DNS propagation time for Azure DNS plugin."}
|
||||||
|
|||||||
@@ -1,4 +1,4 @@
|
|||||||
## Version 2026/03/07 - Changelog: https://github.com/linuxserver/docker-swag/commits/master/root/defaults/nginx/site-confs/default.conf.sample
|
## Version 2026/02/08 - Changelog: https://github.com/linuxserver/docker-swag/commits/master/root/defaults/nginx/site-confs/default.conf.sample
|
||||||
|
|
||||||
# redirect all traffic to https
|
# redirect all traffic to https
|
||||||
server {
|
server {
|
||||||
@@ -13,9 +13,9 @@ server {
|
|||||||
# main server block
|
# main server block
|
||||||
server {
|
server {
|
||||||
listen 443 ssl default_server;
|
listen 443 ssl default_server;
|
||||||
# listen 443 quic reuseport default_server;
|
|
||||||
listen [::]:443 ssl default_server;
|
listen [::]:443 ssl default_server;
|
||||||
# listen [::]:443 quic reuseport default_server;
|
#listen 443 quic reuseport default_server;
|
||||||
|
#listen [::]:443 quic reuseport default_server;
|
||||||
|
|
||||||
server_name _;
|
server_name _;
|
||||||
|
|
||||||
@@ -36,9 +36,6 @@ server {
|
|||||||
# enable for Authentik (requires authentik-location.conf in the location block)
|
# enable for Authentik (requires authentik-location.conf in the location block)
|
||||||
#include /config/nginx/authentik-server.conf;
|
#include /config/nginx/authentik-server.conf;
|
||||||
|
|
||||||
# enable for Tinyauth (requires tinyauth-location.conf in the location block)
|
|
||||||
#include /config/nginx/tinyauth-server.conf;
|
|
||||||
|
|
||||||
location / {
|
location / {
|
||||||
# enable for basic auth
|
# enable for basic auth
|
||||||
#auth_basic "Restricted";
|
#auth_basic "Restricted";
|
||||||
@@ -53,9 +50,6 @@ server {
|
|||||||
# enable for Authentik (requires authentik-server.conf in the server block)
|
# enable for Authentik (requires authentik-server.conf in the server block)
|
||||||
#include /config/nginx/authentik-location.conf;
|
#include /config/nginx/authentik-location.conf;
|
||||||
|
|
||||||
# enable for Tinyauth (requires tinyauth-server.conf in the server block)
|
|
||||||
#include /config/nginx/tinyauth-location.conf;
|
|
||||||
|
|
||||||
try_files $uri $uri/ /index.html /index.htm /index.php$is_args$args;
|
try_files $uri $uri/ /index.html /index.htm /index.php$is_args$args;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -80,9 +74,17 @@ server {
|
|||||||
include /etc/nginx/fastcgi_params;
|
include /etc/nginx/fastcgi_params;
|
||||||
}
|
}
|
||||||
|
|
||||||
# deny access to .htaccess/.htpasswd files
|
# deny access to all dotfiles
|
||||||
location ~ /\.ht {
|
location ~ /\. {
|
||||||
deny all;
|
deny all;
|
||||||
|
log_not_found off;
|
||||||
|
access_log off;
|
||||||
|
return 404;
|
||||||
|
}
|
||||||
|
|
||||||
|
# Allow access to the ".well-known" directory
|
||||||
|
location ^~ /.well-known {
|
||||||
|
allow all;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user