GitLab-Mirror/hagrid
1
0
Fork 0
mirror of https://gitlab.com/keys.openpgp.org/hagrid.git synced 2025-10-05 16:12:44 +02:00
Code Issues Projects Releases Wiki Activity
983 Commits 34 Branches 8 Tags
master
Commit Graph

47 Commits

Author SHA1 Message Date
Vincent Breitmoser
355b301c67 about: add to readme and adapt example routes file 2025-09-29 22:37:55 +02:00
Vincent Breitmoser
a5294b07cb nginx: simplify routes for hagrid v2 2025-03-24 22:49:11 +01:00
Vincent Breitmoser
475bcbffb8 nginx: route all requests via hagrid 2025-02-28 22:05:32 +01:00
Vincent Breitmoser
f0e0e179ce nginx: increase burst window for fpr lookups to 1000 2021-06-11 11:25:27 +02:00
Vincent Breitmoser
71ca5b2888 nginx: use application/octet-stream content-type for WKD routes 
The format of keys returned on WKD routes is binary, however
`application/pgp-keys` is specified to contain keys in ASCII-armored
format. The WKD spec says the returned content-type SHOULD be
`application/octet-stream`, too.

references:
https://www.ietf.org/archive/id/draft-koch-openpgp-webkey-service-11.txt
https://tools.ietf.org/html/rfc3156#section-7
 2021-04-28 13:22:37 +02:00
Vincent Breitmoser
53270cfb04 nginx: add option for loose rate limiting 2021-03-05 13:23:51 +01:00
Vincent Breitmoser
10162c6f88 Revert social-proof commits 
This reverts commit 149a698a3f.
This reverts commit 29018f024d.
This reverts commit 42372f27cb.
This reverts commit a424642256.
 2020-11-06 11:25:40 +00:00
Vincent Breitmoser
7c5ca6fd01 vks: return api errors on invalid endpoints for all of /vks 2020-09-07 10:54:13 +02:00
Vincent Breitmoser
149a698a3f nginx: adapt csp for profile pages 2020-08-06 11:35:29 +02:00
Wiktor Kwapisiewicz
a424642256 profiles: add profile pages with social proofs support 2020-08-06 11:08:00 +02:00
Vincent Breitmoser
35a6b9e057 nginx: slightly improve etag, cors and cache-control handling again 2020-05-11 00:07:08 +02:00
Vincent Breitmoser
c86c31cf64 nginx: include CORS headers for failed requests, too! 2020-05-04 19:47:35 +02:00
Vincent Breitmoser
619f9f9554 nginx: fix pks routes (again) 
Fixes #142
 2020-03-26 16:52:12 +01:00
Vincent Breitmoser
c3f4881069 wkd: fix location of policy file 2020-02-05 14:24:07 +01:00
Vincent Breitmoser
92cb32d36f wkd: add nginx routes 2020-01-31 17:27:14 +01:00
Vincent Breitmoser
7fde285968 nginx: discourage caching of key results, and remove etag header 2020-01-30 12:34:35 +01:00
Vincent Breitmoser
ff66332ea7 news: add atom feed 2019-10-05 14:46:00 +02:00
Vincent Breitmoser
52e863281d nginx: fix hkp routes 
Changes handling of hkp routes:
- uri decode the search paramter before passing to /pks/internal/$op/$query
- strip <> surrounded text in lua, instead of an nginx rule
 2019-09-12 12:02:29 +00:00
Vincent Breitmoser
4dcdff15c2 nginx: further improve rewrite rules (get rid of most ifs) 2019-07-12 12:27:31 +02:00
Vincent Breitmoser
9a551dc16e errors: use 429 for rate limiting instead of 503 
GnuPG really doesn't like 503 errors, see https://dev.gnupg.org/T4600
 2019-07-12 12:27:31 +02:00
Vincent Breitmoser
a69695dc2c fix pks index after rate limiting 2019-07-12 12:27:30 +02:00
Vincent Breitmoser
5248b1d0b9 nginx: add some rate limiting and improve error handling 2019-07-12 12:27:30 +02:00
Vincent Breitmoser
dd6c69f11d errors: add hagrid templated error handler 2019-07-12 12:27:28 +02:00
Daniel Kahn Gillmor
d79f5c3ef2 nginx: be more flexible when handling full-uid --searches 
This addresses the final bit of #94.

It is concretely useful for fielding queries like:

    gpg --search '=Alice Jones <alice@example.net>'

Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
 2019-07-02 18:01:09 +00:00
Vincent Breitmoser
556b065767 debug: add /debug to display key debug info 2019-06-23 15:54:10 +02:00
Vincent Breitmoser
fd7437b673 nginx: pass /vks/by-email routes through hagrid, for now 2019-06-15 15:42:34 +02:00
Vincent Breitmoser
0fd71dc1c6 nginx: forward vks upload routes 2019-06-15 15:42:33 +02:00
Vincent Breitmoser
46b854cf03 nginx: use lua for case transformation 2019-06-11 18:16:34 +02:00
Vincent Breitmoser
28a070d651 handle more errors in nginx 2019-06-11 18:16:34 +02:00
Vincent Breitmoser
f8df6ed1e7 split human-readable interface and hkp 2019-06-11 17:55:39 +02:00
Vincent Breitmoser
41edc08d49 database: keep links in their own dir, and rename "published" dir to "pub" 2019-06-10 22:23:56 +02:00
Vincent Breitmoser
f19d5592be rewrite requests to workaround angular bracket issue 
unescaped angular brackets aren't allowed, but used by gnupg. this
causes issues with Rocket that we can't fix in Hagrid. see
https://gitlab.com/sequoia-pgp/hagrid/issues/94

upstream rocket bug
https://github.com/SergioBenitez/Rocket/pull/941#issuecomment-492035708
 2019-06-10 17:33:27 +02:00
Vincent Breitmoser
ad19bd01d9 increase buffer size in nginx config 2019-06-06 16:43:52 +00:00
Vincent Breitmoser
9a225410c9 Rework API 2019-06-04 16:12:36 +02:00
Vincent Breitmoser
4fc1f787f2 add CORS headers to /vks/v1 and /pks/lookup endpoints 2019-05-14 21:24:08 +02:00
Vincent Breitmoser
59d538593a redirect all HTTP 502 errors to HTTP 500 in nginx 2019-05-14 16:27:12 +00:00
Vincent Breitmoser
676f2613d1 update hagrid-routes again 2019-05-14 16:27:12 +00:00
Vincent Breitmoser
34bce1ee22 fix paths handling in hagrid (for nginx, too) 2019-05-14 16:27:12 +00:00
Justus Winter
00296ee6f7 Rename functions, templates, paths to publish key bindings. 
- This change consistently names things related to key publishing.

  - It also moves it out of the /vks/v1 prefix.  Iff we decide to
    make (parts of) it machine-usable, we can (partially) move it back
    in.
 2019-03-12 16:12:59 +01:00
Justus Winter
5f684b7d26 Rename functions, templates, paths to delete key bindings. 
- This change consistently names things related to key binding
    deletion.

  - It also moves it out of the /vks/v1 prefix.  Iff we decide to
    make (parts of) it machine-usable, we can (partially) move it back
    in.
 2019-03-12 16:12:58 +01:00
Justus Winter
acfa6d1ce4 Serve /apidoc, improve README. 
- Fixes #63.
 2019-03-07 11:19:42 +01:00
Justus Winter
2d47b349ad Limit size of uploads. 
- Fixes #70.
 2019-03-06 13:40:36 +01:00
Justus Winter
c4fee9ffe3 Add missing route for /pks/add. 2019-03-06 12:30:37 +01:00
Justus Winter
e735758e50 Version our VKS API. 
- Fixes #64.
 2019-03-04 15:23:53 +01:00
Justus Winter
df1f63bdc3 Fix Content-Disposition headers for HKP served via nginx. 
- Previously, the filename contained a '/'.
 2019-03-01 13:30:35 +01:00
Justus Winter
7cd3280bf6 Use /vks/ as prefix for our API. 
- Fixes #59.
 2019-02-28 16:57:03 +01:00
Vincent Breitmoser
d3e1fc0ae9 split up nginx files 2019-02-27 11:39:38 +01:00