-
Notifications
You must be signed in to change notification settings - Fork 1.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
add mod_security apache module #948
Conversation
05f3d35
to
716db1f
Compare
|
||
describe file("#{mod_dir}/security.conf") do | ||
it { is_expected.to contain "mod_security2.c" } | ||
end |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
doesn't mod_security also depend on mod_uuid?
@jlambert121 it looks like this will be changing default behavior (enabling mod_sec in apache::vhost by default), unless I'm missing something. If adding the ability to manage this, I'd prefer to keep the default behavior as is. @igalic thoughts? |
@mhaskel after I looked at it again it actually didn't change the defaults, but I had to look at it again to understand it wasn't. I think that alone means it needs a rework so it makes more sense. |
716db1f
to
f417d21
Compare
@mhaskel I have renamed one of the parameters in vhost, let me know if that is clearer. If you include apache::mod::security modsecurity is enabled globally. The parameters in the vhost.pp only allow overriding that global enablement/configuration. |
sounds good to me. |
@@ -862,11 +864,13 @@ mod_reqtimeout configuration. | |||
|
|||
####Class: `apache::mod::reqtimeout` |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The correct change here would've been changing the class title, not changing the description for the class, since apache::mod::reqtimeout is already documented above (see #960)
@jlambert121 ok, so, there was one issue with the README that I commented on, but otherwise 👍 |
f417d21
to
8b4b3b3
Compare
@mhaskel thanks for the catch there - I'm not sure what I did to annoy git on the README. I just checked out the previous version of the readme and applied the updates for mod_security again. |
@jlambert121 we're getting really close! Two more comments: what is the |
8b4b3b3
to
45efd31
Compare
The erb2 template was a development leftover - removed. |
add mod_security apache module
\o/ thanks @jlambert121! |
Not just ubuntu. Fix for puppetlabs#948
MODULES-1561: Add support for the Web Application Firewall mod_security