An error occurred fetching the project authors.
  1. 16 Apr, 2019 1 commit
  2. 15 Apr, 2019 1 commit
  3. 12 Apr, 2019 6 commits
    • Łukasz Nowak's avatar
      c82f00de
    • Łukasz Nowak's avatar
      caddy-frontend: Disable ATS cache promise plugin · 451032ee
      Łukasz Nowak authored
      ATS cache fillup is uncontrollable during test run.
      451032ee
    • Łukasz Nowak's avatar
      caddy-frontend: Re-do zero-SSL BBB · 1d271f4d
      Łukasz Nowak authored
      Instead of complex architecture in the profiles, reuse kedifa-updater
      capability to do backward compatibility certificate management thanks to its
      fall-back mechanism.
      
      kedifa-updater uses state file to know, if it ever succeed to download
      certificate from KeDiFa, and so it really makes it that pushing at least once
      certificate to KeDiFa, even if it is sometimes unresponsive, will switch to
      it.
      
      Fallback certificate is used, thus each slave listens immediately on HTTP and
      HTTPS. Thanks to this, asynchronous updates do not need to communicate with
      slapos node instance, and slapos node instance does not care about the
      certificates anymore.
      1d271f4d
    • Łukasz Nowak's avatar
      caddy-frontend: Pick up kedifa with async updater · 25902c06
      Łukasz Nowak authored
      Instead of fetching certificates on each slapos node instance use new
      kedifa-updater, which is a tool to asynchronously fetch certificates and
      has a hook to reload the server in case if new certificate is available.
      
      custom_ssl_directory is NOT BBB
      25902c06
    • Łukasz Nowak's avatar
      caddy-frontend: Sort slave list during processing · eb33377c
      Łukasz Nowak authored
      This mostly useful during tests to have stable results, especially when
      some slaves are rejected.
      
      This change is expected to be no-op during normal run.
      
      Note: The slave rejection system does not guarantee any ordering, as the sort
            order can change, because of parameters can reorder slaves. Thus, even
            if slave A was requested before slave B, and they conflict each other,
            slave A can be rejected instead of "expected" slave B.
      eb33377c
    • Łukasz Nowak's avatar
      de58f83e
  4. 05 Apr, 2019 3 commits
  5. 26 Mar, 2019 3 commits
  6. 22 Mar, 2019 1 commit
    • Jérome Perrin's avatar
      caddy: use same log format as apache · 5c23e132
      Jérome Perrin authored
      in apache frontend, we have been using:
      
      ```
      LogFormat "%h %l %{REMOTE_USER}i %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %D" combined
      ```
      
      The %l is (from mod_log_config docs): Remote logname (from identd, if
      supplied). This will return a dash unless mod_ident is present and
      IdentityCheck is set On.
      
      In the case of apache frontend, it was always a - . This is missing in
      caddy frontend and our existing log processing tools (apachedex) cannot
      be used on frontend logs since we switched to Caddy.
      
      /reviewed-on nexedi/slapos!530
      5c23e132
  7. 21 Mar, 2019 3 commits
    • Łukasz Nowak's avatar
      caddy-frontend: Fix timeout on the backend · 5107d40b
      Łukasz Nowak authored
      dict in headers is smallcase, so it was never working in reality.
      5107d40b
    • Łukasz Nowak's avatar
      caddy-frontend: Prove that stale-if-error works · 115b6bf5
      Łukasz Nowak authored
      Added assertion which proves that the ATS is serving stale content in case if
      the backend does not work, according to RFC5861.
      
      It is beleived that stale-while-revalidate will work the same way, but it is
      much harder to test, thus it is not done directly.
      115b6bf5
    • Łukasz Nowak's avatar
      caddy-frontend: Adapt to ATS 7 · 7017a46e
      Łukasz Nowak authored
      Adapted configuration and instantiation to ATS 7.
      
      Deployment:
       * traffic_line has been replaced with traffic_ctl
       * access log, of squid style, is ascii instead of binary, to do so
         logging.config is generated
       * ip_allow.config is configured to allow access from any host
       * RFC 5861 (stale content on error or revalidate) is implemented with core
         instead with deprecated plugin
       * trafficserver-autoconf-port renamed to trafficserver-synthetic-port
       * proxy.config.system.mmap_max removed, as it is not used by the system anymore
      
      Tests:
       * As Via header is not returned to the client, it is dropped from the
         tests, instead its existence in the backend is checked.
       * Promise plugin trafficserver-cache-availability.py is re enabled, as
         it is expected to work immediately.
      7017a46e
  8. 13 Mar, 2019 3 commits
  9. 11 Mar, 2019 1 commit
    • Łukasz Nowak's avatar
      caddy-frontend/test: Select ports for services · e2265d46
      Łukasz Nowak authored
      As the test runs in erp5.util.testnode, which has some ports reserved,
      and they collide with default ports of caddy-frontend services, select
      ports for those services, and leave out default for monitor, as test expects.
      e2265d46
  10. 07 Mar, 2019 2 commits
  11. 04 Mar, 2019 1 commit
  12. 01 Mar, 2019 1 commit
  13. 28 Feb, 2019 2 commits
  14. 26 Feb, 2019 1 commit
  15. 14 Feb, 2019 1 commit
  16. 08 Feb, 2019 2 commits
  17. 17 Jan, 2019 1 commit
  18. 16 Jan, 2019 1 commit
    • Łukasz Nowak's avatar
      caddy-frontend/test: Workaround requests issue with Accept-Encoding · 28b1abe9
      Łukasz Nowak authored
      requests set Accept-Encoding header, but in the testr environment we
      want to have full control over its behaviour, thus not setting any header if
      not really wanted.
      
      As there is not known way to avoid setting the header (skip_accept_encoding is
      internal to httplib) set dummy Accept-Encoding header, which is enough for our
      environment.
      28b1abe9
  19. 10 Jan, 2019 1 commit
  20. 04 Jan, 2019 1 commit
  21. 02 Jan, 2019 1 commit
  22. 30 Dec, 2018 2 commits
  23. 28 Dec, 2018 1 commit