leap_platform.git/puppet/modules/site_static/templates, branch clean_vcsrepo

[bugfix] static sites: only enable hidden service by default if one domain is configured

2016-09-13T20:42:36+00:00

The problem is that we have a single onion address per server, so if more
than one domain is configured we need to make sure they don't both try to
use the same onion address.

fix static site apache config

2016-06-30T20:39:11+00:00

Make static tor hidden services work (#8212).

2016-06-28T17:11:37+00:00

When tor hidden services were enabled for static sites, only a very
basic configuration was setup and it didn't take into account the
different location configurations that can be configured for a
static site.

This commit resolves that by making a site_static::hidden_service class
similar to the site_webapp::hidden_service class, and fixes up the
apache vhost template to properly create the location blocks for the
hidden service vhost.

Change-Id: Ice3586f4173bd2d1bd3defca29d21c7403d5a03a

Fix the permissions on the DOMAIN/provider.json file for static sites.

2016-06-27T23:15:26+00:00

migrate from obsolete SSLCertificateChainFile apache option (#8055)

2016-05-03T17:21:17+00:00

Change-Id: I20a28ae77c98071aefc1933e0ea73e5f3b895acb

[bug] [jessie] Fix apache 2.4 auth directives

2016-01-27T20:12:07+00:00

- Resolves: #7853

[refactor] Optimize static apache vhost templates

2016-01-27T20:03:58+00:00

- Related: #7853

change apache header set for HSTS to be always, otherwise it wont be set for redirects (#7540)

2015-10-20T00:59:04+00:00

Change-Id: Ic77c64c03a99dad951f42633de04c352bed17c1e

Implement weakdh recommendations for cipher suites (#7024)

2015-05-27T02:23:22+00:00

This is a first step mitigation until we can have a newer apache that
will allow us to specify dh parameters other than the default.

Change-Id: Ibfcee53b331e8919466027dde1a93117b5210d9d

Disable SSLv3, and RC4 ciphers

2014-10-15T21:08:52+00:00

Change-Id: I7214aa4334e3d817dd1b6d8dce43523e3d955b5d