karim Hamza
ba2368907d
remove ng stuff ( #255 )
* remove -ng stuff
* remove ng from template
* remove -ng from readme
* manage listen directive with disabled vhosts
* add json filter
* remove hardcoded path
5 years ago
karim Hamza
9662e8b4ab
Feature (rhel7/httpd 2.4) : hardening apache and code refactoring ( #251 )
* Feature (rhel7/httpd 2.4) : hardening apache and code refactoring
* remove hard returns
* Add default Listen 80 in httpd.conf
In case there no vhosts defined in pillar httpd will listen on port 80.
Without this default it will not start
* empty file autoindex.conf instead of deleting it
* explicit hardening items and references from CIS
* add #3.5 hardening rule
* explain CIS recommendations categories
* add dependencies before start service
* add recommendation #7.1 Install mod_ssl
* link in readme to hardening doc
5 years ago
Niels Abspoel
dccfdf7962
add server_status state ( #250 )
Add server_status state to create a default server_status handler for localhost
6 years ago
Javier Bértoli
06b1606f33
Add OCSP Stapling configuration capabilities to Debian
Document Stapling options in pillar.example
6 years ago
Andreas Thienemann
79673343a5
No automatic listener for port *
The formula currently adds a Listen directive for the port '*' if
any configured vhost is configured to listen on :* which does not
work and instead prevents apache from starting.
It is possible to prevent this by setting the
exclude_listen_directive pillar to True but this is a manual
workaround.
Instead, this commit excludes :* Listeners automatically.
6 years ago
Andreas Thienemann
4ed6e228f5
Improve document root fix for Red Hat ( #241 )
The docroot fix from PR#240 worked fine for default servers.
But as soon as one uses vhosts this broke as the vhosts were
created under the docroot in /var/www/html rather than the better
/var/www.
Fix this by differentiating between docroot and wwwdir.
Further allow to override both in Red Hat-style configs.
The override allows to reuse this formula for the softwarecollections
rpms.
6 years ago
ardin
7bac5c7c30
mod_mpm for RedHat ( #160 )
6 years ago
Arthur Lutz
a5debf58b3
207 configure ssl ( #218 )
* [ssl] [debian] manage ssl.conf with pillars
* [apache] make cyphersuite a list
* [apache/ssl] switch back to strings, lists merge is not good
6 years ago
Javier Bértoli
fcb434e248
Added "Managed by Salt..." headers in template and made them unifom across the formula
6 years ago
Alexander Weidinger
d3110f93f6
Manage TLS defaults
7 years ago
Louis Haddrell
7e96ce8d3e
Replaced Apache 2.4 syntax in RedHat Apache 2.2 config ( fixes #115 )
7 years ago
Niels Abspoel
adea6485ea
update suse config file with latest changes
7 years ago
Alexander Weidinger
5fa91b7b91
Template security.conf in Debian
Including optional per-OS templates
(Solves https://github.com/saltstack-formulas/apache-formula/issues/153 )
7 years ago
Javier Bértoli
475fb8347e
Add default user/group attributes as required by some states
7 years ago
Bernhard M. Wiedemann
cc95c7579e
SUSE: typo fixes
7 years ago
Bernhard M. Wiedemann
57690acd77
SUSE: use different global.conf
sysconfig.d/global.conf is re-written by sysconfig on openSUSE
7 years ago
Patrick Chevalley
780bf3158d
Add Reverse Proxy directives, GeoIP, Certificates management, mostly for RedHat
7 years ago
Alexander Weidinger
6e880d0827
FreeBSD: mod_cgi
8 years ago
Alexander Weidinger
e1c55b9475
FreeBSD: apache.mod_proxy_http
8 years ago
Alexander Weidinger
0590e43973
FreeBSD: apache.manage_security
8 years ago
Alexander Weidinger
9f796f0b6a
apache.global for Debian and FreeBSD
8 years ago
Alexander Weidinger
f03df6e2fb
FreeBSD: mod_rewrite
8 years ago
Alexander Weidinger
5dbe687cda
FreeBSD: mod_perl2
8 years ago
Alexander Weidinger
4e12b404a4
FreeBSD: mod_suexec
8 years ago
Alexander Weidinger
bc81c6ab43
FreeBSD: mod_proxy
8 years ago
Alexander Weidinger
9e3645c53c
FreeBSD: made default SSL key configurable
8 years ago
Alexander Weidinger
4d94109534
FreeBSD: set correct env vars
8 years ago
Alexander Weidinger
385a120590
FreeBSD: envvars
8 years ago
Alexander Weidinger
9a1fb054d6
mod_php5: FreeBSD
8 years ago
Alexander Weidinger
5d27226001
FreeBSD: global DocumentRoot
8 years ago
Alexander Weidinger
c7e533d7e5
mod_ssl: FreeBSD support
8 years ago
Alexander Weidinger
a64ee209cb
FreeBSD support
8 years ago
Jeremy T. Bouse
be3215f0cd
Update Debian mpm_prefork.conf to include ServerLimit ( #152 )
If MaxRequestWorkers is greater than 256 than you also need to set the
ServerLimit value which is defaulted to 256 but has a 20000 hard maximum
8 years ago
Rob Ruma
d5337836b2
Adding exclude_listen_directive option ( #151 )
* Adding exclude_listen_directive option
* Updating Debian config
8 years ago
Dex Bleeker
7b7deaeb5b
Add user-defined envvars
8 years ago
abehling
9aca4c35b7
RedHat: Made AddDefaultCharset Directive configurable ( #147 )
* RedHat: Made AddDefaultCharset Directive configurable
* Added description of apache:lookup:default_charset to pillar.example, sane default equals former hardcoded UTF-8
8 years ago
Tibor Gemes
c7e23edf52
Add custom port to RedHat config
8 years ago
Javier Bértoli
2be52db8b8
Add mod_security management
Add gitignore, kitchen-ci files
Add some tests and documentation
8 years ago
Alexander Behling
3232866cc2
Added configurable variables, Fixed bug if vhostdir is something different than default value
8 years ago
Dominik Menzi
d1c3463154
Add support for NameVirtualHost on Debian
8 years ago
Dominik Menzi
16888bd927
Add support for Ubuntu precise
8 years ago
a.genus
4d04d95b02
Manage ports.conf file on Debian
9 years ago
a.genus
ba6679ef66
Remove breaking changes
9 years ago
Rowcliffe Browne
2557d3d1c8
Allow global directives to be added to apache config
9 years ago
a.genus
5d03deb3b5
Remove ports.conf inclusion
9 years ago
Alexander Kozlov
3e650f5c48
Added ability to configure KeepAlive option
Sometimes it's necessary optimization in nginx+apache2 environment
9 years ago
Alexander Kozlov
03d97659d0
Added newlines to recent files
9 years ago
Alexander Kozlov
8f2308b985
Added ability to configure mod_remoteip
9 years ago
Alexander Kozlov
f7940ecdc1
Added ability to replace default vhost with own version
Added example shows 503 code instead of "It works!" page.
9 years ago
root
dc7970955a
Added support for different templates for the config file based on version
9 years ago