nginx-ui
Reverse Proxies & Load BalancersYet another WebUI for Nginx
Recent releases
View all 9 releases →
v2.3.10
Bug fix
Minor fixes and improvements.
Full changelog
Features
- None.
Bug Fixes
- Render external notification placeholders before delivery so templated variables display correctly (
030157829) by @0xJacky. - Refresh translations, including corrected spacing for restricted nginx directive messages in Chinese locales (
432a791ca) by @0xJacky.
Contributors
@0xJacky
v2.3.9
Security relevant
Security fixes
- Restricted executable nginx directives in managed config to reduce unsafe directive risks
- Required secure session before backup restore operations
Notable features
- Hardened config write paths to reject unsafe file names and invalid content
Full changelog
🎉 Features
- Harden config write paths across config, site, and stream operations to reject unsafe file names and invalid content earlier, improving write-path safety and frontend error reporting (
3e411d38d,fd61e8ea6) by @0xJacky
🐛 Bug Fixes
- Restrict executable nginx directives in managed config content to reduce the risk of unsafe directives being written through the UI or API (
fd61e8ea6) by @0xJacky - Require a secure session before allowing backup restore operations (
4e4174d89) by @0xJacky
❤️ Contributors
@0xJacky
@eeee2345
v2.3.8
Mixed
Notable features
- 2FA-gated reveal flow for sensitive settings with improved value masking in the UI
- HTTP and WebSocket upstream routes now separated for improved proxy behavior
- Certificate auto-renewal retry churn reduced with clearer error visibility
Full changelog
🎉 Features
- Protect sensitive settings with a 2FA-gated reveal flow and improve sensitive value masking in the UI (
80a6a7273,4d96c3499) by @0xJacky
🐛 Bug Fixes
- Harden the first-run installation flow to make setup more reliable (
25dea9f62) by @0xJacky - Separate HTTP and WebSocket upstream routes to improve proxy behavior (
05e544c8f) by @0xJacky - Reduce certificate auto-renew retry churn and expose renewal errors more clearly (
899c9f199) by @0xJacky - Preserve the forwarded host during Docker WebSocket checks (
57b6f982e) by @0xJacky - Avoid a WebSocket keepalive race in analytics (
d25c9975d) by @0xJacky - Update the bundled
uuiddependency to v14 (171bb5299) by @renovate[bot]
❤️ Contributors
@0xJacky
@renovate[bot]
v2.3.7
Mixed
Notable features
- WebSocket keepalive mechanism improves node availability tracking and connection stability
- Global site check controls with enable/disable, concurrency limits, and configurable intervals
- Honor configured health check protocol during scheduled checks and manual tests
Full changelog
🎉 Features
- Add a WebSocket keepalive mechanism to improve node availability tracking and connection stability (
7ed73f621) by @0xJacky - Add global site check controls, including enable/disable, concurrency limits, and configurable check intervals (
535c8efb3) by @0xJacky - Honor the configured health check protocol during both scheduled checks and manual tests (
c38e0a28b) by @0xJacky
🐛 Bug Fixes
- Restore the WebSocket connection used during certificate issuance so live progress updates work correctly again (
329e8589e) by @0xJacky - Reduce outbound connection pressure in site checks by reusing shared HTTP transports, deduplicating requests, and avoiding unnecessary repeated fetches (
535c8efb3) by @0xJacky - Improve upstream handling reliability and expand test coverage (
89c1fdfb4) by @sleet0922 - Fix embedding for generated assets whose names contain underscores (
32d5ce001) by @TemaSmirnov - Update non-major dependencies and release tooling to improve overall reliability (
f73aabb59,20538d9c7,513d5d6fb) by @renovate[bot]
❤️ Contributors
@0xJacky
@sleet0922
@TemaSmirnov
@renovate[bot]
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
