salt
/
apache-formula
форк від ExternalMirrors/apache-formula
Слідкувати 1
В обрані 0
Форк 0
Код Релізи 0 Активність
Saltstack Official Apache Formula
Ви не можете вибрати більше 25 тем Теми мають розпочинатися з літери або цифри, можуть містити дефіси (-) і не повинні перевищувати 35 символів.
264 Коміти
1 Гілка
Дерево: c7e23edf52
Гілки Теги
${ item.name }
Створити гілку ${ searchTerm }
з 'c7e23edf52'
${ noResults }
apache-formula/pillar.example

pillar.example 4.9KB
Неформатований Normal View Історія

Added package-map.jinja
11 роки тому
Added apache.vhost formula
11 роки тому
add lookup section to pillar.example
9 роки тому
Added apache.vhost formula
11 роки тому
add lookup section to pillar.example
9 роки тому
fix Options in pillar.example
8 роки тому
This branch is foundational for further version-specific work to come. * Add apache version (2.2, 2.4) detection based on osfinger (defaults to 2.4). * Version can be overridden in pillar (for Apache 2.4 on RHEL 6 for example)
9 роки тому
add lookup section to pillar.example
9 роки тому
Updated README with these changes moved Pillar examples into pillar file
11 роки тому
Add mod_security management Add gitignore, kitchen-ci files Add some tests and documentation
8 роки тому
Allow global directives to be added to apache config
9 роки тому
Add mod_security management Add gitignore, kitchen-ci files Add some tests and documentation
8 роки тому
Allow global directives to be added to apache config
9 роки тому
Add support for NameVirtualHost on Debian
8 роки тому
Add mod_security management Add gitignore, kitchen-ci files Add some tests and documentation
8 роки тому
Add support for NameVirtualHost on Debian
8 роки тому
Add mod_security management Add gitignore, kitchen-ci files Add some tests and documentation
8 роки тому
Add support for NameVirtualHost on Debian
8 роки тому
Moved all Pillar examples under the same dictionary key Having multiple different examples in the same file was causing confusion.
10 роки тому
Added apache.vhost formula
11 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
add an 'enabled' attribute for a site in pillar
9 роки тому
Add new templates 'proxy.tmpl' and 'redirect.tmpl'. Add comment pointing to new templates to pillar.example.
10 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
Added apache.vhost formula
11 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
Added apache.vhost formula
11 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
Added apache.vhost formula
11 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
Added apache.vhost formula
11 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
Added apache.vhost formula
11 роки тому
Fix incorrect syntax in pillar example for SSLCertificateFile, SSLCertificateKeyFile Fix check for SSLCertificateFile, SSLCertificateKeyFile variables in vhosts/standard.tmpl, now using dict.get()
9 роки тому
ssl: also support the SSLCertificateChainFile required by some providers
9 роки тому
Add basic SSL functionality.
9 роки тому
Added apache.vhost formula
11 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
fix Options in pillar.example
8 роки тому
Adding support for Apache 2.4 on Ubuntu 14.04 - Adding confext to virtualhost names. - Renaming the default config file for Ubuntu (000-default.conf). - Adding ability to use "Require all granted".
10 роки тому
Added apache.vhost formula
11 роки тому
Add example code for new templates 'redirect.tmpl' and 'proxy.tmpl'.
10 роки тому
fix Options in pillar.example
8 роки тому
Issue#41 configure multi proxypass configuration in vhost
9 роки тому
Add example code for new templates 'redirect.tmpl' and 'proxy.tmpl'.
10 роки тому
Added support for Alias and Locations, as well as enabling Dav
9 роки тому
Added apache.vhost formula
11 роки тому
Moved all Pillar examples under the same dictionary key Having multiple different examples in the same file was causing confusion.
10 роки тому
Updated README with these changes moved Pillar examples into pillar file
11 роки тому
Removed Jinja-esque placeholders from example Pillar; added instructions The structure of this example file was quite confusing. Most of these values are not required and should be denoted as such. Jinja notiation to denote re-used Pillar values was also a bad and confusing choice. Closes #8
10 роки тому
Updated README with these changes moved Pillar examples into pillar file
11 роки тому
Add optional templating to register_site Add optional templating for the register site aspect of a pillar. User can specify keys to be included as defaults, otherwise it is treated as a normal managed file.
9 роки тому
Add ability to specify modules in pillar
10 роки тому
Added ability to manage security settings By reassigning options with `blockreplace` at `/etc/apache2/conf-available/security.conf`, which is linked as conf-enabled by default on Debian packages
9 роки тому
Added ability to configure KeepAlive option Sometimes it's necessary optimization in nginx+apache2 environment
9 роки тому
Fixed YAML parsing On/Off as True/False True and False are not correct values for apache config
9 роки тому
Added ability to configure KeepAlive option Sometimes it's necessary optimization in nginx+apache2 environment
9 роки тому
Added ability to manage security settings By reassigning options with `blockreplace` at `/etc/apache2/conf-available/security.conf`, which is linked as conf-enabled by default on Debian packages
9 роки тому
Follow-up to 8f2308b98
9 роки тому
Added newlines to recent files
9 роки тому
Add mod_security management Add gitignore, kitchen-ci files Add some tests and documentation
8 роки тому
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161 
  1. # ``apache`` formula configuration:

  2. apache:

  3. 

  4.   # lookup section overrides ``map.jinja`` values

  5.   lookup:

  6.     server: apache2

  7.     service: apache2

  8. 

  9.     vhostdir: /etc/apache2/sites-available

  10.     confdir: /etc/apache2/conf.d

  11.     confext: .conf

  12.     logdir: /var/log/apache2

  13.     wwwdir: /srv/apache2

  14. 

  15.     # apache version (generally '2.2' or '2.4')

  16.     version: '2.2'

  17. 

  18.     # ``apache.mod_wsgi`` formula additional configuration:

  19.     mod_wsgi: mod_wsgi

  20. 

  21. 

  22.   global:

  23.     # global apache directives

  24.     AllowEncodedSlashes: 'On'

  25. 

  26. 

  27.   name_virtual_hosts:

  28.     - interface: '*'

  29.       port: 80

  30.     - interface: '*'

  31.       port: 443

  32. 

  33.   # ``apache.vhosts`` formula additional configuration:

  34.   sites:

  35.     example.net:

  36.       template_file: salt://apache/vhosts/minimal.tmpl

  37. 

  38.     example.com: # must be unique; used as an ID declaration in Salt.

  39.       enabled: True

  40.       template_file: salt://apache/vhosts/standard.tmpl # or redirect.tmpl or proxy.tmpl

  41. 

  42.       ####################### DEFAULT VALUES BELOW ############################

  43.       # NOTE: the values below are simply default settings that *can* be

  44.       # overridden and are not required in order to use this formula to create

  45.       # vhost entries.

  46.       #

  47.       # Do not copy the values below into your Pillar unless you intend to

  48.       # modify these vaules.

  49.       ####################### DEFAULT VALUES BELOW ############################

  50.       template_engine: jinja

  51. 

  52.       interface: '*'

  53.       port: '80'

  54. 

  55.       ServerName: example.com # uses the unique ID above unless specified

  56.       ServerAlias: www.example.com

  57. 

  58.       ServerAdmin: webmaster@example.com

  59. 

  60.       LogLevel: warn

  61.       ErrorLog: /path/to/logs/example.com-error.log # E.g.: /var/log/apache2/example.com-error.log

  62.       CustomLog: /path/to/logs/example.com-access.log # E.g.: /var/log/apache2/example.com-access.log

  63. 

  64.       DocumentRoot: /path/to/www/dir/example.com # E.g., /var/www/example.com

  65. 

  66.       SSLCertificateFile: /etc/ssl/mycert.pem # if ssl is desired

  67.       SSLCertificateKeyFile: /etc/ssl/mycert.pem.key # if key for cert is needed or in an extra file

  68.       SSLCertificateChainFile: /etc/ssl/mycert.chain.pem # if you require a chain of server certificates file

  69. 

  70.       Directory:

  71.         # "default" is a special case; Adds ``/path/to/www/dir/example.com``

  72.         # E.g.: /var/www/example.com

  73.         default:

  74.           Options: -Indexes +FollowSymLinks

  75.           Order: allow,deny    # For Apache < 2.4

  76.           Allow: from all      # For apache < 2.4

  77.           Require: all granted # For apache > 2.4.

  78.           AllowOverride: None

  79.           Formula_Append: |

  80.             Additional config as a

  81.             multi-line string here

  82. 

  83.       # if template is 'redirect.tmpl'

  84.       # RedirectSource: '/'

  85.       # RedirectTarget: 'http://www.example.net'

  86. 

  87.       # if template is 'proxy.tmpl'

  88.       # ProxyPreserveHost: 'On'

  89.       # ProxyRoute:

  90.       #   my sample route:

  91.       #      ProxyPassSource: '/'

  92.       #      ProxyPassTarget: 'http://www.example.net'

  93.       #      ProxyPassReverseSource: '/'

  94.       #      ProxyPassReverseTarget: 'http://www.example.net'

  95. 

  96.       Alias:

  97.         /docs: /usr/share/docs

  98. 

  99.       Location:

  100.         /docs:

  101.           Order: allow,deny    # For Apache < 2.4

  102.           Allow: from all      # For apache < 2.4

  103.           Require: all granted # For apache > 2.4.

  104.           Formula_Append: |

  105.             Additional config as a

  106.             multi-line string here

  107. 

  108.       Formula_Append: |

  109.         Additional config as a

  110.         multi-line string here

  111. 

  112.   # ``apache.debian_full`` formula additional configuration:

  113.   register-site:

  114.     # any name as an array index, and you can duplicate this section

  115.     UNIQUE_VALUE_HERE:

  116.       name: 'my name'

  117.       path: 'salt://path/to/sites-available/conf/file'

  118.       state: 'enabled'

  119.       # Optional - use managed file as Jinja Template

  120.       #template: true

  121.       #defaults:

  122.       #  custom_var: "default value"

  123. 

  124.   modules:

  125.     enabled:  # List modules to enable

  126.       - ldap

  127.       - ssl

  128.     disabled:  # List modules to disable

  129.       - rewrite

  130. 

  131.   # KeepAlive: Whether or not to allow persistent connections (more than

  132.   # one request per connection). Set to "Off" to deactivate.

  133.   keepalive: 'On'

  134. 

  135.   security:

  136.     # can be Full | OS | Minimal | Minor | Major | Prod

  137.     # where Full conveys the most information, and Prod the least.

  138.     ServerTokens: Prod

  139. 

  140.   # ``apache.mod_remoteip`` formula additional configuration:

  141.   mod_remoteip:

  142.     RemoteIPHeader: X-Forwarded-For

  143.     RemoteIPTrustedProxy:

  144.       - 10.0.8.0/24

  145.       - 127.0.0.1

  146. 

  147.   # ``apache.mod_security`` formula additional configuration:

  148.   mod_security:

  149.     crs_install: True

  150.     # If not set, default distro's configuration is installed as is

  151.     manage_config: True

  152.     sec_rule_engine: 'On'

  153.     sec_request_body_access: 'On'

  154.     sec_request_body_limit: '14000000'

  155.     sec_request_body_no_files_limit: '114002'

  156.     sec_request_body_in_memory_limit: '114002'

  157.     sec_request_body_limit_action: 'Reject'

  158.     sec_pcre_match_limit: '15000'

  159.     sec_pcre_match_limit_recursion: '15000'

  160.     sec_debug_log_level: '3'

  161.