github
/
nginxconfig.io
mirror of https://github.com/digitalocean/nginxconfig.io
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

apply requested changes

pull/388/head
Robert 2022-10-02 20:09:11 +03:00
parent aba750a9a0
commit df033ebef1
3 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/nginxconfig/generators/conf/security.conf.js
View File

@ -66,8 +66,9 @@ export default (domains, global) => {
} }
if (global.security.blockCommonExploits.computed) { if (global.security.blockCommonExploits.computed) {
// Based on https://github.com/NginxProxyManager/nginx-proxy-manager/blob/v2.9.0/docker/rootfs/etc/nginx/conf.d/include/block-exploits.conf
// Block SQL Injections // Block SQL Injections
config.push(['## Block SQL injections', '']); config.push(['# Block SQL injections', '']);
config.push(['set $block_sql_injections', '0']); config.push(['set $block_sql_injections', '0']);
config.push([ config.push([
'if ($query_string ~ "union.*select.*(")', 'if ($query_string ~ "union.*select.*(")',

1
src/nginxconfig/i18n/en/templates/global_sections/security.js
View File

@ -29,4 +29,5 @@ import common from '../../common';
export default { export default {
whenUsingWordPressUnsafeEvalIsOftenRequiredToAllowFunctionality: `When using ${common.wordPress}, <code class="slim">script-src 'self' 'unsafe-inline' 'unsafe-eval';</code> is often required in the Content Security Policy to allow the admin panel to function correctly.`, whenUsingWordPressUnsafeEvalIsOftenRequiredToAllowFunctionality: `When using ${common.wordPress}, <code class="slim">script-src 'self' 'unsafe-inline' 'unsafe-eval';</code> is often required in the Content Security Policy to allow the admin panel to function correctly.`,
security: 'Security', security: 'Security',
blockCommonExploits: 'Block common exploits',
}; };

6
src/nginxconfig/templates/global_sections/security.vue
View File

@ -158,12 +158,11 @@ THE SOFTWARE.
<div class="field is-horizontal"> <div class="field is-horizontal">
<div class="field-label"> <div class="field-label">
<label class="label">Block common exploits</label> <label class="label">{{$t('templates.globalSections.security.blockCommonExploits')}}</label>
</div> </div>
<div class="field-body"> <div class="field-body">
<div class="field"> <div class="field">
<div <div :class="`control${blockCommonExploits ? ' is-changed' : ''}`">
:class="`control${blockCommonExploits ? ' is-changed' : ''}`">
<div class="checkbox"> <div class="checkbox">
<PrettyCheck v-model="blockCommonExploits" class="p-default p-curve p-fill p-icon"> <PrettyCheck v-model="blockCommonExploits" class="p-default p-curve p-fill p-icon">
{{ $t("common.enable") }} {{ $t("common.enable") }}
@ -222,7 +221,6 @@ THE SOFTWARE.
enabled: true, enabled: true,
}, },
}; };
export default { export default {
name: 'GlobalSecurity', // Component name name: 'GlobalSecurity', // Component name
display: 'templates.globalSections.security.security', // Display name for tab (i18n key) display: 'templates.globalSections.security.security', // Display name for tab (i18n key)