Ossi Salmi
53a0422843
apache: Add support for port based SSL virtual hosts
2013-09-24 15:11:12 +03:00
06eb2bdf9a
apache: Added proxy support to apache::sslsite.
2013-09-24 11:40:56 +03:00
6cebef3715
apache: Combined proxy.http.conf.erb to site.http.conf.erb.
2013-09-24 11:21:29 +03:00
Ossi Salmi
7f92851e16
apache: Add Ubuntu support to apache::mod::auth_openid
2013-08-20 14:43:53 +03:00
Ossi Salmi
e6d7688bdc
apache: Add support for HTTP Strict Transport Security
2013-08-14 14:31:23 +03:00
Ossi Salmi
ebde843cc6
Changed remaining fqdn references to homename
2013-08-03 00:10:39 +03:00
Ossi Salmi
92f7a164e4
apache: Removed redundant imports
2013-07-19 23:00:44 +03:00
Ossi Salmi
a3fb12fe37
apache: Increased proxy CacheMaxFileSize to 100 MB
2013-07-01 12:16:19 +03:00
Ossi Salmi
341c86a0a0
apache: Added support for forward proxy with optional caching
2013-06-29 23:25:47 +03:00
Ossi Salmi
345a8f9589
apache: Allow disabling mod_wsgi's embedded mode
2013-06-27 19:37:04 +03:00
Ossi Salmi
583f687dfb
apache: Increased mod_fcgid timeout to 120 seconds
2013-06-20 13:34:45 +03:00
Ossi Salmi
ff003d864c
apache: Allow enabling modules separately for http/https
...
Added parameters http and https (both enabled by default) for the
following classes:
* apache::mod::fcgid
* apache::mod::passenger
* apache::mod::perl
* apache::mod::php
* apache::mod::python
* apache::mod::wsgi
2013-06-16 17:33:17 +03:00
Ossi Salmi
fc12e7e03e
apache: Fix fcgid on CentOS, dependency fix for wsgi
...
Create separate mod_fcgid socket dirs for http and httpsd. Also tune the
process limits.
2013-06-16 01:42:13 +03:00
Ossi Salmi
17654bb71a
Merge branch 'master' into puppet3
2013-05-08 16:35:12 +03:00
6d3526125f
apache: Added /var/run/passenger directory creation.
2013-05-08 08:46:33 +03:00
Ossi Salmi
c8c5f097b4
Merge branch 'master' into puppet3
2013-05-08 00:28:29 +03:00
945a9f2af3
apache: Added support for proxy http sites.
2013-05-07 10:03:22 +03:00
Ossi Salmi
dc51af1ca2
Updated all templates to use instance variables
2013-05-05 00:07:55 +03:00
Ossi Salmi
e8251bae66
apache: Added apache::mod::passenger
2013-05-02 21:42:05 +03:00
Ossi Salmi
bd631831ae
Added system user for webalizer
2013-04-25 17:30:21 +03:00
4976e2eb73
Added check for correct user when running www-webalizer.sh.
2013-04-25 00:53:03 +03:00
Ossi Salmi
39f16b7c6c
apache: Changed Ubuntu's server limits to match CentOS's defaults
2013-04-24 21:51:13 +03:00
7bd26f33d3
Fixed Apache module for Fedora 18 (eg. Apache 2.4 series).
2013-04-24 08:44:19 +03:00
Ossi Salmi
07b220391b
apache: Allow setting WSGI process group via environment variable
2013-04-16 15:37:08 +03:00
Ossi Salmi
8bcbd022a4
apache: Disable directory indexes by default
2013-04-03 14:58:21 +03:00
Ossi Salmi
bf19695573
Initial support for mod_auth_openid
2013-03-30 19:29:54 +02:00
Ossi Herrala
0548ead8cd
Allow Apache to use MD5 signed certs in Centos >=6.4.
...
Centos 6.4 changed the NSS library to reject X.509 certificates which
are signed with MD5:
"[VALID] The upstream Mozilla NSS disabled support for MD5 hash
signed certificates in the 3.14 release, which was added to CentOS
6.4. More details and workarounds can be found in this Fedora bugzilla
report https://bugzilla.redhat.com/show_bug.cgi?id=895513 "
This change can be reverted when the world has changed from MD5 to something else :)
2013-03-09 15:57:45 +00:00
Ossi Salmi
fee22f529c
Merge tmakinen/puppet
2013-02-06 12:57:11 +02:00
f7298b5671
Fixed SELinux context from apache logrotate script in Fedora.
2013-02-06 09:23:27 +02:00
Ossi Salmi
93f029a4a3
Fixed paths in apache::debian::sslsite
2013-02-02 21:58:26 +02:00
Ossi Salmi
68ac64b13f
Added 'first' parameter to apache::sslsite
...
When set to true, ensures the site configuration is loaded first, thus
becoming the default virtual host when NameVirtualHost (and SNI) is
used.
2013-02-02 21:58:26 +02:00
Ossi Salmi
42360e66e8
Added seltype for http log directories
2013-02-02 21:55:18 +02:00
Ossi Salmi
3a40b11a62
Added fix for mod_wsgi socket path on CentOS/RedHat/Fedora
2013-01-24 13:00:20 +02:00
18af82f97f
Fixed Apache ssl.conf for Fedora 18.
2013-01-23 17:51:03 +02:00
936499737c
Fixed operatingsystemrelease comparison from httpsd.conf.
2013-01-23 11:12:05 +02:00
b10de9c0b2
Fixed apache module loading for Fedora 18.
2013-01-23 10:06:32 +02:00
7ee51d6f4c
Added "chkconfig --add" to httpsd service.
2013-01-22 15:47:36 +02:00
Ossi Salmi
3071640518
Removed useless require variables from apache module
2012-12-05 20:28:37 +02:00
Ossi Herrala
cd91e65ab2
Fix too widely open regexp targeting SSL/TLS settings of Microsoft
...
Internet Explorer.
See rant:
http://newestindustry.org/2007/06/06/dear-apache-software-foundation-fix-the-msie-ssl-keepalive-settings/
This is also ack'ed by Apache and fixed in their httpd's trunk:
https://issues.apache.org/bugzilla/show_bug.cgi?id=49484
http://svn.apache.org/viewvc/httpd/httpd/trunk/docs/conf/extra/httpd-ssl.conf.in?view=markup
2012-11-22 13:44:27 +00:00
Ossi Salmi
98767cfb2a
Merge tmakinen/puppet
...
Conflicts:
dovecot/manifests/init.pp
libvirt/manifests/init.pp
munin/manifests/init.pp
puppet/manifests/init.pp
tftp/manifests/init.pp
2012-11-16 19:40:31 +02:00
Paavo Pokkinen
eebd1512cf
puppet 3.0 fixes
2012-10-10 15:13:50 +03:00
Ossi Salmi
24ecb51f6f
Added support for RHEL and did some syntax cleaning
...
Assume that "RedHat" also works where "CentOS" does.
2012-09-05 17:29:36 +03:00
c69fb5afb0
Fixed SELinux contexts from Apache log directories.
2012-08-28 08:50:56 +03:00
500c026131
SELinux fixes for apache module.
2012-08-01 12:18:12 +03:00
Ossi Salmi
dd9a78d8ae
Give webalizer cron job more time to run before log rotation
2012-07-29 21:51:46 +03:00
a935a763b8
Fixed description from httpsd service file.
2012-06-13 22:53:00 +03:00
a3b6071afb
Improved checking of included http and https server.
2012-06-13 12:09:16 +03:00
5901b6d25c
Improved ciphers from apache::sslsite to prevent BEAST attacks.
2012-05-09 14:25:20 +03:00
5631a973bf
Added /etc/sysconfig/httpsd file to apache::sslserver.
2012-04-02 17:01:19 +03:00
77decd746e
Changed apache::sslserver to use systemd on Fedora.
2012-04-02 16:43:14 +03:00
