Since switching to "absolute" image names, this image pull instruction
also needs an update to this full image name.

As pointed out in a github issue[1] and the docs[2] using `SIGINT` will
not just make postgres stop accepting new connections but also make it
drop existing onces. Since most applications use longer lasting
connections or connection pooling these days, it's definitely a good
idea, to drop those connection even when it means that some transactions
will be rejected.

[1]: https://github.com/docker-library/postgres/issues/714
[2]: https://www.postgresql.org/docs/11/server-shutdown.html

Postgresql needs some time to shutdown. The default `stop_grace_period`
is quite short and in worst case causes database corruptions. This
change increased this shutdown period a lot in order to help postgres
ending its processing gracefully and not being killed by the container
engine using `kill -9`.

Details:
https://github.com/docker-library/postgres/issues/544

Currently container image names are all over the place. From short form
to full form and other things. This patch will update all of them to
"absolute" image names which should prevent any issues if the default
container registry for the moby-engine is ever changed.

This CLI allows management of the minecraft container. It can be used to
allow people to manage the container who are not overly experienced with
UNIX shell commands.

The idea is to provide a simplified CLI that can do take care of the
most essential tasks.

The format for alt-svc headers in traefik 2.0 was wrongly used in all
templates. This patch fixes the header by using
`customresponseheaders.alt-svc=h2=` instead of
`customresponseheaders.alt-svc:h2=`.

After doing this the header is set again, properly. Thanks to perflyst
for the report.

This patch adds the ability to specify an array of encryption keys that
are used for the backup encryption. This should provide better
recoverability in a crisis situation.

The usual recommendation is to backup the gpg key, that is used for
encryption and signing. But the time between storing this key and being
in a recovery situation is huge and in worst case keys get lost.

Adding a second key, that is more frequently used i.e. an encryption key
stored on a yubikey that is used on a daily basis, might saves the day
here. This of course means the backup has to be downloaded, decrypted
and uploaded, but a backup that takes a few days to recover is better
than a backup that can't be recovered at all.

In order to use the new feature extend the `backup_gpg` config with a
`sign_key` identifier and a `encryption_keys` identifier array.

Example (old vs new):

```yaml
---

backup_gpg:
  id: "123456789"
  passphrase: "abcdefghiklmnopqrstuvwxyz"
```

vs.

```yaml
---

backup_gpg:
  id: "123456789"
  passphrase: "abcdefghiklmnopqrstuvwxyz"
  sign_key: "123456789"
  encryption_keys:
    - "123456789"
    - "098765432"
```

Note: The `backup_gpg.passphrase` is for the signing key, not for the
encryption keys. The `backup_gpg.id` field exists only for backwards
compatiblity.

Containers can gain a significant security benefit from read-only
filesystems. This patch adds the ability to host nginx-based static
websites in read-only mode and this way reduce the attack surface
drastically.

The patch provides the needed changes as well as an extension of the
example in the README.

As always it seems like I put the memory limits a bit too low. With this
changes the outages for the bouncer should stop.

Due to the use of eval, some parts of the UI, such as the comment field
on MRs, were broken. This patch should fix those issues by adding an
`unsafe-eval` statement to the CSP.

The upstream image seems rather untouched for a while now. This patch
switches to an own version of the upstream image, from the container
library [1], which not only contains a newer version of HAproxy but is
also rebuild on a regular basis.

[1]: https://git.shivering-isles.com/container-library/docker-socket-proxy

This patch fixes the problem that globbing doesn't work while it's
quotes. Since globbing is always messy, this patch fixes the problem
entirely by going for full paths instead of partical quoting.

Seems like there is a typo in the new option… This patch fixes it.
Thanks :)

This patch should clearify that acme_dumper only works for traefik 1.x

This patch updates the mailserver role to use the new integrated acme
dumper service from traefik instead of using the separate tooling that
was developed for traefik 1.x

This patch adds ACME-dumper as a service to the docker-compose config.
It provide all certs in the acme-v2.json in the format pem format.
Allowing them to be used like they would be generated by certbot or
alike.

The container exporting the certificates does this without network
connection and with all privileges dropped making it a toothless user
called root with an uid 0. From the exported directory external tools
can copy the files if needed in import them into their certificate
location to be used for non-traefik-proxied purposes.

After reading a bit more about CORS and checking my matrials, I figured
out that I never understood how CORS actually work. TL;DR: Not like
this.

CORS are a concept only for `fetch()` or `XMLHttpRequests` and will be
used for APIs. They are not applied to regular get requests or DOM
requested content. Making them useless for the usecase of the camo
proxy.

References to my Ahh-material:
https://www.youtube.com/watch?v=af5RI6bLkyw
https://www.youtube.com/watch?v=JVZIhCVFJ9c
https://www.youtube.com/watch?v=QjtO9TQCJ_8

Text-based documentation:
https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
https://www.html5rocks.com/en/tutorials/cors/

For an unknown reason the specification of the CORS header using traefik
is ignored. This patch works around the problem by letting camo define
the header.

Will get some further investigation.

Camo is a nice little pice of software that allows proper content
proxying using signed URLs for images. This can be used as proxy for
images by GitLab or hopefully soon by CodiMD.

CHANGELOG

[v3.1.3] - 2020-04-05
Added

- Add ability to filter audit log in admin UI ([Gargron](https://github.com/tootsuite/mastodon/pull/13381))
- Add titles to warning presets in admin UI ([Gargron](https://github.com/tootsuite/mastodon/pull/13252))
- Add option to include resolved DNS records when blacklisting e-mail domains in admin UI ([Gargron](https://github.com/tootsuite/mastodon/pull/13254))
- Add ability to delete files uploaded for settings in admin UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13192))
- Add sorting by username, creation and last activity in admin UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13076))
- Add explanation as to why unlocked accounts may have follow requests in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13385))
- Add link to bookmarks to dropdown in web UI ([mayaeh](https://github.com/tootsuite/mastodon/pull/13273))
- Add support for links to statuses in announcements to be opened in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13212), [ThibG](https://github.com/tootsuite/mastodon/pull/13250))
- Add tooltips to audio/video player buttons in web UI ([ariasuni](https://github.com/tootsuite/mastodon/pull/13203))
- Add submit button to the top of preferences pages ([guigeekz](https://github.com/tootsuite/mastodon/pull/13068))
- Add specific rate limits for posting, following and reporting ([Gargron](https://github.com/tootsuite/mastodon/pull/13172), [Gargron](https://github.com/tootsuite/mastodon/pull/13390))
  - 300 posts every 3 hours
  - 400 follows or follow requests every 24 hours
  - 400 reports every 24 hours
- Add federation support for the "hide network" preference ([ThibG](https://github.com/tootsuite/mastodon/pull/11673))
- Add `--skip-media-remove` option to `tootctl statuses remove` ([tateisu](https://github.com/tootsuite/mastodon/pull/13080))

Changed

- **Change design of polls in web UI** ([Sasha-Sorokin](https://github.com/tootsuite/mastodon/pull/13257), [ThibG](https://github.com/tootsuite/mastodon/pull/13313))
- Change status click areas in web UI to be bigger ([ariasuni](https://github.com/tootsuite/mastodon/pull/13327))
- **Change `tootctl media remove-orphans` to work for all classes** ([Gargron](https://github.com/tootsuite/mastodon/pull/13316))
- **Change local media attachments to perform heavy processing asynchronously** ([Gargron](https://github.com/tootsuite/mastodon/pull/13210))
- Change video uploads to always be converted to H264/MP4 ([Gargron](https://github.com/tootsuite/mastodon/pull/13220), [ThibG](https://github.com/tootsuite/mastodon/pull/13239), [ThibG](https://github.com/tootsuite/mastodon/pull/13242))
- Change video uploads to enforce certain limits ([Gargron](https://github.com/tootsuite/mastodon/pull/13218))
  - Dimensions smaller than 1920x1200px
  - Frame rate at most 60fps
- Change the tooltip "Toggle visibility" to "Hide media" in web UI ([ariasuni](https://github.com/tootsuite/mastodon/pull/13199))
- Change description of privacy levels to be more intuitive in web UI ([ariasuni](https://github.com/tootsuite/mastodon/pull/13197))
- Change GIF label to be displayed even when autoplay is enabled in web UI ([koyuawsmbrtn](https://github.com/tootsuite/mastodon/pull/13209))
- Change the string "Hide everything from …" to "Block domain …" in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13178), [mayaeh](https://github.com/tootsuite/mastodon/pull/13221))
- Change wording of media display preferences to be more intuitive ([ariasuni](https://github.com/tootsuite/mastodon/pull/13198))

Deprecated

- `POST /api/v1/media` → `POST /api/v2/media` ([Gargron](https://github.com/tootsuite/mastodon/pull/13210))

Fixed

- Fix `tootctl media remove-orphans` ignoring `PAPERCLIP_ROOT_PATH` ([Gargron](https://github.com/tootsuite/mastodon/pull/13375))
- Fix returning results when searching for URL with non-zero offset ([Gargron](https://github.com/tootsuite/mastodon/pull/13377))
- Fix pinning a column in web UI sometimes redirecting out of web UI ([Gargron](https://github.com/tootsuite/mastodon/pull/13376))
- Fix background jobs not using locks like they are supposed to ([Gargron](https://github.com/tootsuite/mastodon/pull/13361))
- Fix content warning being unnecessarily cleared when hiding content warning input in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13348))
- Fix "Show more" not switching to "Show less" on public pages ([ThibG](https://github.com/tootsuite/mastodon/pull/13174))
- Fix import overwrite option not being selectable ([noellabo](https://github.com/tootsuite/mastodon/pull/13347))
- Fix wrong color for ellipsis in boost confirmation dialog in web UI ([ariasuni](https://github.com/tootsuite/mastodon/pull/13355))
- Fix unnecessary unfollowing when importing follows with overwrite option ([noellabo](https://github.com/tootsuite/mastodon/pull/13350))
- Fix 404 and 410 API errors being silently discarded in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13279))
- Fix OCR not working on Safari because of unsupported worker-src CSP ([ThibG](https://github.com/tootsuite/mastodon/pull/13323))
- Fix media not being marked sensitive when a content warning is set with no text ([ThibG](https://github.com/tootsuite/mastodon/pull/13277))
- Fix crash after deleting announcements in web UI ([codesections](https://github.com/tootsuite/mastodon/pull/13283), [ThibG](https://github.com/tootsuite/mastodon/pull/13312))
- Fix bookmarks not being searchable ([Kjwon15](https://github.com/tootsuite/mastodon/pull/13271), [noellabo](https://github.com/tootsuite/mastodon/pull/13293))
- Fix reported accounts not being whitelisted from further spam checks when resolving a spam check report ([ThibG](https://github.com/tootsuite/mastodon/pull/13289))
- Fix web UI crash in single-column mode on prehistoric browsers ([ThibG](https://github.com/tootsuite/mastodon/pull/13267))
- Fix some timeouts when searching for URLs ([ThibG](https://github.com/tootsuite/mastodon/pull/13253))
- Fix detailed view of direct messages displaying a 0 boost count in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13244))
- Fix regression in “Edit media” modal in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13243))
- Fix public posts from silenced accounts not being changed to unlisted visibility ([ThibG](https://github.com/tootsuite/mastodon/pull/13096))
- Fix error when searching for URLs that contain the mention syntax ([ThibG](https://github.com/tootsuite/mastodon/pull/13151))
- Fix text area above/right of emoji picker being accidentally clickable in web UI ([ariasuni](https://github.com/tootsuite/mastodon/pull/13148))
- Fix too large announcements not being scrollable in web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13211))
- Fix `tootctl media remove-orphans` crashing when encountering invalid media ([ThibG](https://github.com/tootsuite/mastodon/pull/13170))
- Fix installation failing when Redis password contains special characters ([ThibG](https://github.com/tootsuite/mastodon/pull/13156))
- Fix announcements with fully-qualified mentions to local users crashing web UI ([ThibG](https://github.com/tootsuite/mastodon/pull/13164))

Security

- Fix re-sending of e-mail confirmation not being rate limited ([Gargron](https://github.com/tootsuite/mastodon/pull/13360))