#50 - Re-allow hosting HTML, JS & CSS from *.org - Codeberg-Infrastructure/build-deploy-forgejo

momar commented

2021-02-20 20:34:58 +01:00

Member

This resolves a regression from 5553585631 - Content-Type: text/plain was mistakenly set on pages like fonts.codeberg.org for HTML, JS and CSS files.

This resolves a regression from 5553585631 - `Content-Type: text/plain` was mistakenly set on pages like fonts.codeberg.org for HTML, JS and CSS files.

hw commented

2021-02-21 16:37:01 +01:00

Member

Can you please also review #52?

momar referenced this pull request

2021-02-21 17:59:16 +01:00

Support for raw content subdomain #52

momar commented

2021-02-21 18:00:09 +01:00

Author

Member

Did that, I guess they're quite closely related and don't work at the same time, but solve different issues 🙈

momar referenced this pull request from Codeberg-e.V./registration-server

2021-02-28 18:17:46 +01:00

WIP: codeberg design & gettext translation #12

momar referenced this pull request

2021-03-06 21:30:09 +01:00

Allow custom repo name for *.org pages & add design.codeberg.org #51

momar force-pushed bugfix/fix-raw-content-type from df67f0f85f to b23d3e83ac

2021-03-14 12:34:55 +01:00

Compare

momar referenced this pull request

2021-03-14 12:38:27 +01:00

Support for raw content subdomain #52

momar commented

2021-03-14 12:38:41 +01:00

Author

Member

This has now been rebased to include #52, together with some changes (see Codeberg/build-deploy-gitea#52 (comment)).

This has now been rebased to include #52, together with some changes (see https://codeberg.org/Codeberg/build-deploy-gitea/issues/52#issuecomment-183030).

momar commented

2021-03-14 13:14:18 +01:00

Author

Member

I have deployed this to codeberg-test.org, and raw content it works when adding 116.203.144.175 raw.codeberg.eu to /etc/hosts (.eu instead of .page because it doesn't have HSTS; .page instead of .org because raw.* doesn't work on .org, as seen in #52).

I have deployed this to codeberg-test.org, and raw content it works when adding `116.203.144.175 raw.codeberg.eu` to `/etc/hosts` (`.eu` instead of `.page` because it doesn't have HSTS; `.page` instead of `.org` because `raw.*` doesn't work on `.org`, as seen in #52).

hw commented

2021-03-14 21:51:38 +01:00

Member

I have deployed this to codeberg-test.org, and raw content it works when adding 116.203.144.175 raw.codeberg.eu to /etc/hosts (.eu instead of .page because it doesn't have HSTS; .page instead of .org because raw.* doesn't work on .org, as seen in #52).

not sure if I understand, where is the reference to .page coming from?

> I have deployed this to codeberg-test.org, and raw content it works when adding `116.203.144.175 raw.codeberg.eu` to `/etc/hosts` (`.eu` instead of `.page` because it doesn't have HSTS; `.page` instead of `.org` because `raw.*` doesn't work on `.org`, as seen in #52). not sure if I understand, where is the reference to `.page` coming from?

momar commented

2021-03-15 11:27:00 +01:00

Author

Member

Because I'm not sure what domain is intended to be used for raw.* - it doesn't seem to be raw.codeberg.org, because Codeberg/build-deploy-gitea@b23d3e83ac/var/www/pages/index.php (L47) is in the else branch, so it won't work on *.org - my question mainly is if that was intended.

Because I'm not sure what domain is intended to be used for `raw.*` - it doesn't seem to be `raw.codeberg.org`, because https://codeberg.org/Codeberg/build-deploy-gitea/src/commit/b23d3e83ac2654ad8d6bba6001097f1acf14d1cd/var/www/pages/index.php#L47 is in the `else` branch, so it won't work on `*.org` - my question mainly is if that was intended.

momar force-pushed bugfix/fix-raw-content-type from 684342ffad to b23d3e83ac

2021-03-16 13:26:21 +01:00

Compare

momar force-pushed bugfix/fix-raw-content-type from b23d3e83ac to 48c37c9d8d

2021-03-16 13:28:20 +01:00

Compare

momar commented

2021-03-16 13:28:59 +01:00

Author

Member

I just rebased this onto master - what's missing here @hw? Do you want raw.codeberg.org, raw.codeberg.page or raw.codeberg.eu? Security-wise it shouldn't matter.

hw commented

2021-03-16 13:33:47 +01:00

Member

Because I'm not sure what domain is intended to be used for raw.* - it doesn't seem to be raw.codeberg.org, because Codeberg/build-deploy-gitea@b23d3e83ac/var/www/pages/index.php (L47) is in the else branch, so it won't work on *.org - my question mainly is if that was intended.

raw.* content must be served from dedicated domain (can be included from any site, the reason people asked for this is to be able to securely embed cross-site content).

> Because I'm not sure what domain is intended to be used for `raw.*` - it doesn't seem to be `raw.codeberg.org`, because https://codeberg.org/Codeberg/build-deploy-gitea/src/commit/b23d3e83ac2654ad8d6bba6001097f1acf14d1cd/var/www/pages/index.php#L47 is in the `else` branch, so it won't work on `*.org` - my question mainly is if that was intended. `raw.*` content must be served from dedicated domain (can be included from any site, the reason people asked for this is to be able to securely embed cross-site content).

hw commented

2021-03-16 13:34:43 +01:00

Member

I just rebased this onto master - what's missing here @hw? Do you want raw.codeberg.org, raw.codeberg.page or raw.codeberg.eu? Security-wise it shouldn't matter.

Either .page/.eu, or a new dedicated domain (if we think this is worth it). The main missing bit was a thourough review ;)

> I just rebased this onto master - what's missing here @hw? Do you want raw.codeberg.org, raw.codeberg.page or raw.codeberg.eu? Security-wise it shouldn't matter. Either `.page/.eu`, or a new dedicated domain (if we think this is worth it). The main missing bit was a thourough review ;)

momar added 1 commit

2021-03-16 15:46:33 +01:00

Allow CORS only to design.codeberg.org and fonts.codeberg.org, or on "raw.*.non-org-tld" b97227a51d

momar commented

2021-03-16 15:50:52 +01:00

Author

Member

Hm, you're right that Cookies might be set across subdomains.

I just disabled CORS to get-it-on.codeberg.org and docs.codeberg.org with an additional commit; it's needed though for design.codeberg.org and fonts.codeberg.org.

I think codeberg-raw.org or something makes sense for the raw content? But as this basically contains everything CORS-related, what can we do to make design.codeberg.org finally work? Deploy this as it is so raw.codeberg.page and raw.codeberg.eu works?

Hm, you're right that Cookies might be set across subdomains. I just disabled CORS to get-it-on.codeberg.org and docs.codeberg.org with an additional commit; it's needed though for design.codeberg.org and fonts.codeberg.org. I think codeberg-raw.org or something makes sense for the raw content? But as this basically contains everything CORS-related, what can we do to make design.codeberg.org finally work? Deploy this as it is so raw.codeberg.page and raw.codeberg.eu works?

👍 1

momar force-pushed bugfix/fix-raw-content-type from c6582ad10b to 4bc21c7082

2021-03-17 00:51:40 +01:00

Compare

momar commented

2021-03-17 00:55:44 +01:00

Author

Member

Alright, it's now using the Gitea API and contains a lot of extra measurements to make sure that the path is safe.

URL format is now: https://raw.codeberg.page/username/reponame/@branch/path/to/file, with the @branch component being optional. LFS or other identifiers than the branch are not possible with this version, but I guess that's alright for now.

Fun fact: I'm also working on a new Pages server in Go that supports repositories with a pages branch (like https://example.codeberg.page/myrepo/), caching, compression, and custom domains with Let's Encrypt.

Alright, it's now using the Gitea API and contains a lot of extra measurements to make sure that the path is safe. URL format is now: https://raw.codeberg.page/username/reponame/@branch/path/to/file, with the `@branch` component being optional. LFS or other identifiers than the branch are not possible with this version, but I guess that's alright for now. Fun fact: I'm also working on a new Pages server in Go that supports repositories with a `pages` branch (like https://example.codeberg.page/myrepo/), caching, compression, and custom domains with Let's Encrypt.

❤️ 1

hw commented

2021-03-17 10:57:19 +01:00

Member

We should set the Link: <URL>; rel="canonical" HTTP header for branches, to avoid redundant indexing by search engines, and keep crawler traffic within reasonable bounds, also add a disallow wildcard to robots.txt.

We should set the `Link: <URL>; rel="canonical"` HTTP header for branches, to avoid redundant indexing by search engines, and keep crawler traffic within reasonable bounds, also add a disallow wildcard to `robots.txt`.

👍 1

hw commented

2021-03-17 10:59:36 +01:00

Member

I just disabled CORS to get-it-on.codeberg.org

Shouldn't badges be embeddable across sites?

> I just disabled CORS to get-it-on.codeberg.org Shouldn't badges be embeddable across sites?

hw merged commit 4bc21c7082 into master

2021-03-17 11:04:55 +01:00

hw commented

2021-03-17 11:05:32 +01:00

Member

Merged for early testing, let's address the comments above in follow-up PR.

👍 1

momar commented

2021-03-17 11:06:41 +01:00

Author

Member

Shouldn't badges be embeddable across sites?

They are - CORS is basically only needed when requesting something directly from JavaScript, or if it's a web font. Embedding pictures or even scripts and stylesheets doesn't need CORS.

> Shouldn't badges be embeddable across sites? They are - CORS is basically only needed when requesting something directly from JavaScript, or if it's a web font. Embedding pictures or even scripts and stylesheets doesn't need CORS.

momar referenced this pull request

2021-03-17 11:08:11 +01:00

Support for raw content subdomain #52

hw referenced this pull request

2021-03-17 11:10:02 +01:00

Support for raw content subdomain #52

momar referenced this pull request

2021-03-17 11:19:02 +01:00

SEO for pages #56

momar referenced this pull request from a commit

2021-04-04 19:33:12 +02:00

Implement raw.codeberg.page, allow custom repo name for *.org pages & add design.codeberg.org (#50, #51, #52)