akanealw/caddy-proxy-manager
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

implemented upstream pinning

Browse Source
This commit is contained in:
fuomag9
2026-02-22 01:11:56 +01:00
parent 191b86af40
commit bb8a0d1023
11 changed files with 917 additions and 53 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/components/proxy-hosts/HostDialogs.tsx
View File

@@ -17,6 +17,7 @@ import { AuthentikFields } from "./AuthentikFields";
import { DnsResolverFields } from "./DnsResolverFields";
import { LoadBalancerFields } from "./LoadBalancerFields";
import { SettingsToggles } from "./SettingsToggles";
import { UpstreamDnsResolutionFields } from "./UpstreamDnsResolutionFields";
import { UpstreamInput } from "./UpstreamInput";
export function CreateHostDialog({
@@ -124,6 +125,7 @@ export function CreateHostDialog({
<AuthentikFields defaults={authentikDefaults} authentik={initialData?.authentik} />
<LoadBalancerFields loadBalancer={initialData?.load_balancer} />
<DnsResolverFields dnsResolver={initialData?.dns_resolver} />
<UpstreamDnsResolutionFields upstreamDnsResolution={initialData?.upstream_dns_resolution} />
</Stack>
</AppDialog>
);
@@ -220,6 +222,7 @@ export function EditHostDialog({
<AuthentikFields authentik={host.authentik} />
<LoadBalancerFields loadBalancer={host.load_balancer} />
<DnsResolverFields dnsResolver={host.dns_resolver} />
<UpstreamDnsResolutionFields upstreamDnsResolution={host.upstream_dns_resolution} />
</Stack>
</AppDialog>
);

77
src/components/proxy-hosts/UpstreamDnsResolutionFields.tsx Normal file
View File

@@ -0,0 +1,77 @@
import { Alert, Box, MenuItem, Stack, TextField, Typography } from "@mui/material";
import type { ProxyHost } from "@/src/lib/models/proxy-hosts";
type ResolutionMode = "inherit" | "enabled" | "disabled";
type FamilyMode = "inherit" | "ipv6" | "ipv4" | "both";
function toResolutionMode(enabled: boolean | null | undefined): ResolutionMode {
if (enabled === true) return "enabled";
if (enabled === false) return "disabled";
return "inherit";
}
function toFamilyMode(family: "ipv6" | "ipv4" | "both" | null | undefined): FamilyMode {
if (family === "ipv6" || family === "ipv4" || family === "both") {
return family;
}
return "inherit";
}
export function UpstreamDnsResolutionFields({
upstreamDnsResolution
}: {
upstreamDnsResolution?: ProxyHost["upstream_dns_resolution"] | null;
}) {
const mode = toResolutionMode(upstreamDnsResolution?.enabled);
const family = toFamilyMode(upstreamDnsResolution?.family);
return (
<Box
sx={{
borderRadius: 2,
border: "1px solid",
borderColor: "info.main",
bgcolor: "rgba(2, 136, 209, 0.06)",
p: 2.5
}}
>
<input type="hidden" name="upstream_dns_resolution_present" value="1" />
<Stack spacing={2}>
<Typography variant="subtitle1" fontWeight={600}>
Upstream DNS Pinning
</Typography>
<TextField
name="upstream_dns_resolution_mode"
label="Resolution Mode"
select
defaultValue={mode}
helperText="Inherit uses the global setting. Enabled/Disabled overrides per host."
size="small"
fullWidth
>
<MenuItem value="inherit">Inherit Global</MenuItem>
<MenuItem value="enabled">Enabled</MenuItem>
<MenuItem value="disabled">Disabled</MenuItem>
</TextField>
<TextField
name="upstream_dns_resolution_family"
label="Address Family Preference"
select
defaultValue={family}
helperText="Both resolves AAAA + A with IPv6 preferred ordering."
size="small"
fullWidth
>
<MenuItem value="inherit">Inherit Global</MenuItem>
<MenuItem value="both">Both (Prefer IPv6)</MenuItem>
<MenuItem value="ipv6">IPv6 only</MenuItem>
<MenuItem value="ipv4">IPv4 only</MenuItem>
</TextField>
<Alert severity="info">
When enabled, hostname upstreams are resolved during config apply and written to Caddy as concrete IP dials. If this handler has
multiple different HTTPS upstream hostnames, HTTPS pinning is skipped for those HTTPS upstreams to avoid SNI mismatch.
</Alert>
</Stack>
</Box>
);
}