v8.2.2: Add security headers and HTTP/2 support for Nginx configuration in models, templates, and JS

- Introduced `NginxProxyPassSecurity` model for managing security headers and server token settings. - Enhanced templates and JavaScript to support `hide_server_tokens`, `security_headers`, and `hsts` options. - Updated Ansible and migration files to align with new security and HTTP/2 features.
2025-12-21 12:34:01 +08:00 · 2025-07-28 11:57:22 +03:00
parent 9755fe1513
commit 20157572c6
16 changed files with 142 additions and 28 deletions
--- a/app/static/js/edit_config.js
+++ b/app/static/js/edit_config.js
@@ -105,6 +105,14 @@ function openSection(section) {
 				} else {
 					$('#'+section_type+'_whitelist_checkbox').prop("checked", false);
 				}
+				if (data.ssl) {
+					if ($("#https-" + section_type).is(':checked')) {
+						$("#https-hide-" + section_type).show("fast");
+						$("#path-cert-" + section_type).val(data.ssl['cert']);
+					} else {
+						$("#https-hide-" + section_type).hide("fast");
+					}
+				}
 			}
 			if (section_type === 'listen' || section_type === 'backend') {
 				if (data.config.backend_servers) {
@@ -460,12 +468,10 @@ function getFormData($form, form_name) {
 			}
 		} else if (n['name'] === 'ssl') {
 			if ($('input[name="ssl"]').is(':checked')) {
-				let cert = $('input[name="cert"]').val();
 				let ssl_check_backend = true;
-				if ($('input[name="ssl-check"]').is(':checked')) {
-					ssl_check_backend = 0;
-				} else {
-					ssl_check_backend = true;
+				let cert = $form.find('input[name="cert"]').val();
+				if ($form.find('input[name="ssl-check"]').is(':checked')) {
+					ssl_check_backend = false;
 				}
 				indexed_array['ssl'] = {cert, ssl_check_backend};
 			}
@@ -509,6 +515,10 @@ function getFormData($form, form_name) {
 			if ($('input[name="cache"]').is(':checked')) {
 				indexed_array['cache'] = true;
 			}
+		} else if (n['name'] === 'http2') {
+			if ($('input[name="http2"]').is(':checked')) {
+				indexed_array['http2'] = true;
+			}
 		} else if (n['name'] === 'circuit_breaking') {
 			if ($('input[name="circuit_breaking"]').is(':checked')) {
 				let observe = $('select[name="circuit_breaking_observe"] option:selected').val();
@@ -805,6 +815,23 @@ function openNginxSection(section) {
 					$("#scheme").selectmenu();
 					$("#scheme").selectmenu('refresh');
 				}
+				if (data.security) {
+					if (data.security.hide_server_tokens) {
+						$('#hide_server_tokens').prop("checked", true);
+					} else {
+						$('#hide_server_tokens').prop("checked", false);
+					}
+					if (data.security.security_headers) {
+						$('#security_headers').prop("checked", true);
+					} else {
+						$('#security_headers').prop("checked", false);
+					}
+				}
+				if (data.hsts) {
+					$('#hsts').prop("checked", true);
+				} else {
+					$('#hsts').prop("checked", false);
+				}
 			}
 			$(section_id + ' select[name="server"]').selectmenu();
 			$(section_id + ' select[name="server"]').selectmenu('refresh');