summaryrefslogtreecommitdiff
path: root/puppet/modules/site_webapp/manifests/hidden_service.pp
diff options
context:
space:
mode:
authorvarac <varacanero@zeromail.org>2015-09-30 10:40:59 +0000
committervarac <varacanero@zeromail.org>2015-09-30 10:40:59 +0000
commit29d001f6a7f415579147b4bf94b765d39dc119b6 (patch)
treeb6f227631d87e534d8238bafe6506c5192ffe014 /puppet/modules/site_webapp/manifests/hidden_service.pp
parent4143b3001754aae28c05464f5ecda48d1faeb00f (diff)
parentf8b2a72aa09fca368d3038efa9100a48126f8ae9 (diff)
Merge branch 'bug/server-status_7456' into 'develop'
Fix server-status availability to tor hidden services (#7456) Make the server-status information unavailable by putting the vhost on a port that isn't configured as available to the tor hidden-service. Change-Id: Idd3bfefb5b7fc26fb0a8cf48cdf6afc68a4192bb See merge request !73
Diffstat (limited to 'puppet/modules/site_webapp/manifests/hidden_service.pp')
-rw-r--r--puppet/modules/site_webapp/manifests/hidden_service.pp10
1 files changed, 8 insertions, 2 deletions
diff --git a/puppet/modules/site_webapp/manifests/hidden_service.pp b/puppet/modules/site_webapp/manifests/hidden_service.pp
index 16b6e2e7..99a756ca 100644
--- a/puppet/modules/site_webapp/manifests/hidden_service.pp
+++ b/puppet/modules/site_webapp/manifests/hidden_service.pp
@@ -32,12 +32,18 @@ class site_webapp::hidden_service {
owner => 'debian-tor',
group => 'debian-tor',
mode => '0600';
+
+ '/etc/apache2/mods-enabled/status.conf':
+ ensure => absent,
+ notify => Service['apache'];
}
apache::vhost::file {
'hidden_service':
- content => template('site_apache/vhosts.d/hidden_service.conf.erb')
+ content => template('site_apache/vhosts.d/hidden_service.conf.erb');
+ 'server_status':
+ vhost_source => 'modules/site_webapp/server-status.conf';
}
include site_shorewall::tor
-} \ No newline at end of file
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-29 21:19:19 +0000