[incubator-openwhisk] branch master updated: Bump nginx version to latest and disable server-side information. (#3581)

[cb...@apache.org]

This is an automated email from the ASF dual-hosted git repository.

cbickel pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/incubator-openwhisk.git


The following commit(s) were added to refs/heads/master by this push:
     new ef0ccbb  Bump nginx version to latest and disable server-side information. (#3581)
ef0ccbb is described below

commit ef0ccbb2257755a5a2c29ea7fba96d6d60121ae4
Author: Markus Thömmes <ma...@me.com>
AuthorDate: Thu Apr 26 11:25:01 2018 +0200

    Bump nginx version to latest and disable server-side information. (#3581)
    
    It's good practice in general to not report version numbers in http responses. This disables that as well as bumping the nginx version to 1.13.
---
 ansible/group_vars/all                      | 2 +-
 ansible/roles/nginx/templates/nginx.conf.j2 | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/ansible/group_vars/all b/ansible/group_vars/all
index 936a704..0bff876 100644
--- a/ansible/group_vars/all
+++ b/ansible/group_vars/all
@@ -170,7 +170,7 @@ nginx:
   confdir: "{{ config_root_dir }}/nginx"
   dir:
     become: "{{ nginx_dir_become | default(false) }}"
-  version: "{{ nginx_version | default('1.12') }}"
+  version: "{{ nginx_version | default('1.13') }}"
   port:
     http: 80
     api: 443
diff --git a/ansible/roles/nginx/templates/nginx.conf.j2 b/ansible/roles/nginx/templates/nginx.conf.j2
index 427b48e..8b2f07b 100644
--- a/ansible/roles/nginx/templates/nginx.conf.j2
+++ b/ansible/roles/nginx/templates/nginx.conf.j2
@@ -60,6 +60,9 @@ http {
 
     proxy_set_header X-OW-EXTRA-LOGGING $extra_logging;
 
+{# Turn off sending information about the server to the client #}
+    server_tokens off;
+
     server {
         listen 443 default ssl;
 

-- 
To stop receiving notification emails like this one, please contact
cbickel@apache.org.