Releases: tobychui/zoraxy
v3.1.5
v3.1.5
This version introduce the new architecture for future SSO implementation, the authentication provider settings. With the first PR in place (authelia), you can now use Authelia to replace basic auth on your preferred proxy host names.
This release also include a new default site options to close the connection without responding (or just send empty response in TLS mode, as SNI header sniffer already processed the request and can't be closed directly). A slightly different alternative to nginx's 444 response.
Another cool feature is that this version of Zoraxy introduced an external geoIP database mode where you can place the required csv file under conf/geodb/geoipv4.csv (and geoipv6.csv) to use your own table. You can also use the new flag -update_geoip to start zoraxy in automatic geodb update mode, pull the two files from cdn and exit. Suitable for those who want to setup and forget their zoraxy instance to keep their access list up-to-date.
Notes: This version ship with an internal config updater where it will upgrade your config to the v3.1.5 format. Please remember to backup your config (from v3.1.4) before drop-in replacing the executable with v3.1.5.
Change Log
- Fixed hostname case sensitive bug
- Fixed ACME table too wide css bug
- Fixed HSTS toggle button bug
- Fixed slow GeoIP resolve mode concurrent r/w bug
- Added close connection as default site option
- Added experimental authelia support
- Added custom header support to websocket
- Added levelDB as database implementation (not currently used)
- Added external GeoIP db loading support
- Restructured a lot of modules
v3.1.4
Updates v3.1.4
This version mainly improve on user experience with the introduction of the new dark theme mode and more automatic sniffing logic. As seen there are a lot of users exposing their webmin interface to the internet, the robots.txt file is introduce to prevent search engine bot from indexing the webmin panel.
Notes for Docker Users
ZeroTier configuration data is no longer stored in /var/lib/zerotier-one/ and is now included in the Zoraxy configuration directory /opt/zoraxy/config/zerotier/. If you still have a ZeroTier configuration mounted in the original location, you shouldn't experience breaking changes, however this is now an unsupported configuration and is recommended to move the configuration data.
Notes for Dark Theme
The dark theme feature is done using CSS override. If you encounter any wired issue in dark theme mode including "text is hard to see" or "color is too close between two sections", please consider reporting them as a UX bug.
Change Log
- Added Dark Theme Mode
- Added an auto sniffer for self-signed certificates.
- Added robots.txt to the project.
- Introduced an EU wrapper in the front-end for automatic registration of 26 countries.
- Moved all hard-coded values to a dedicated def.go file.
- Fixed a panic issue occurring on unsupported platform exits.
- Integrated fixes for SSH proxy and Docker snippet updates.
- Changed the default listening port to 443 and enable TLS by default
- Optimized GeoIP database slow-search mode CPU usage
v3.1.3
v3.1.3
This release fixed a critical security bug in the WebSSH module. The rest of the code base is identical to v3.1.2.
Change Log
- Fixed CVE-2024-52010
v3.1.2
v3.1.2
This updates primarily improved user experience for new users and fixed minor bugs in previous releases.
Change Log
- Added auto start port 80 listener on acme certificate generator
- Added polling interval and propagation timeout option in ACME module
- Added support for custom header variables
- Added support for X-Remote-User
- Added port scanner
- Optimized code base for stream proxy and config file storage
- Removed sorting on cert list
- Fixed request certificate button bug
- Fixed cert auto renew logic
- Fixed unable to remove new stream proxy bug
- Fixed many other minor bugs
- Added more code to SSO system (disabled in release)
v3.1.1r3
v3.1.1r3
This version is a patch release for the docker image of Zoraxy v3.1.1. The following binaries are identical to the v3.1.1r2 release. If you are using the executable version of Zoraxy v3.1.1, you can optionally skip this release / update.
Change log
- Fixed docker image for Zoraxy v3.1.1r2 by @PassiveLemon
Remarks
See here for more details.
Contributors
Assets 9
v3.1.1r2
v3.1.1r2
This version is a patch release for the docker image of Zoraxy v3.1.1. The following binaries are pretty much identical to the v3.1.1 release but with updated geo-ip database. If you are using the executable version of Zoraxy v3.1.1, you can optionally skip this release / update.
Change log
- Fixed docker image for Zoraxy v3.1.1 by @PassiveLemon
- Updated geodb
Contributors
Assets 9
v3.1.1
Updates v3.1.1
This version mainly fixed bugs in previous version and added a tour mode for beginners.
Change Log
- Updated country name in access list
- Added tour for basic operations
- Updated acme log to system wide logger implementation
- Fixed path traversal in file manager
- Removed Proxmox debug code
- Fixed trie tree implementations
By contributors
- Fix existing containers list in docker popup
- Fix network I/O chart not rendering
- Fix typo
remvoeClasstoremoveClass - Updated weighted random upstream implementation
Tour Mode
If you are beginner and need a guided tour for using Zoraxy, feel free to check out the new tour mode! You can activate a tour by going to the "Quick start" tab, selecting a tour and click "Start Walkthrough"
v3.1.0
v3.1.0 Updates
This is a new version that fixed quite some bugs, improved security and compatibility. One of the key feature of this release is that Zoraxy finally support automatic sniffing logic for Proxmox and will run in compatibility mode when an upstream is detected as proxmox web ui. No more 501 when you are trying to reverse proxy poxmox web management interface!
Change Log
- Updated log viewer with filter and auto refresh
- Fixed csrf vulnerability
- Fixed promox issue
- Fixed status code bug in upstream log
- Added host overwrite and hop-by-hop header remover
- Added early renew days settings
- Updated make file to force no CGO in cicd process
- Fixed bug in updater
- Fixed wildcard certificate renew bug
- Added certificate download function
v3.0.9
This is a quick patch for docker file compatibility issues with the new logging system startup flags
Change Log
v3.0.8
v3.0.8 Updates
This is yet another huge rewrite of the upstream proxying system. With this version of Zoraxy onward, multiple upstreams is supported with weighted random load balance with fallback (currently need to set manually, will move to automatic fallback in later versions).
Breaking Changes & Updater
This version of Zoraxy introduce a breaking change to the structure of the proxy rule storage config under the ./conf/proxy/ folder. However, this version also introduce a new automatic updater that, in theory, will update the config for you automatically. If you are trying to do manual migration from v3.0.7 to v3.0.8, please make sure the following:
- The file
./conf/versionnot exists (Zoraxy will assume it is from pre-3.0.8) - Make sure you have a backup of the whole config folder
- Only start your v3.0.8 zoraxy after the above steps are done
After update is succeed, you should see a file named version is generated under conf folder with the current zoraxy version written into it.
Warning for Docker Users
This version docker build is broken (fixes are work in progress). If you use docker, you can wait for the v3.0.9 release.
Warning for Production Uses
This upstream implementation is experimental and not recommend to be used in production environment. But from my tests on two of my homelab servers for 2 weeks, everything seems fine so far. Anyway, use this version with your own risk :)
Change Log
- Added apache style logging mechanism (and build-in log viewer) #218
- Fixed keep alive flushing issues #235
- Added multi-upstream supports #100
- Added stick session load balancer
- Added weighted random load balancer
- Added domain cleaning logic to domain / IP input fields
- Added HSTS "include subdomain" auto injector
- Added work-in-progress SSO / Oauth Server UI
- Fixed uptime monitor not updating on proxy rule change bug
- Optimized UI for create new proxy rule
- Removed service expose proxy feature