improve mod_security rules

* handled now by a partial * possibility to add rules that should be removed * possibility to add custom mod_sec options" * use new infrastructure for existing mod_sec tweaks
author: mh <mh@immerda.ch> 2011-05-17 22:52:47 +0200
committer: mh <mh@immerda.ch> 2011-05-17 22:55:50 +0200
commit: cbbffa1d3de5a19a72dd7bb88fb1bcb14e5384e1 (patch)
tree: ed24e2d85aa47f9e70ecfcc45bf20c7a2495da93 /manifests/vhost.pp
parent: 9081a3c7c3b9f956d0491712bae3ed5e94529e82 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/manifests/vhost.pp b/manifests/vhost.pp
index 089eb62..af067d1 100644
--- a/manifests/vhost.pp
+++ b/manifests/vhost.pp
@@ -70,6 +70,8 @@ define apache::vhost(
     $htpasswd_path = 'absent',
     $mod_security = true,
     $mod_security_relevantonly = true,
+    $mod_security_rules_to_disable = [],
+    $mod_security_additional_options = 'absent',
     $use_mod_macro = false,
     $ldap_auth = false,
     $ldap_user = 'any'
@@ -123,6 +125,9 @@ define apache::vhost(
                 ldap_auth => $ldap_auth,
                 ldap_user => $ldap_user,
                 mod_security => $mod_security,
+                mod_security_relevantonly => $mod_security_relevantonly,
+                mod_security_rules_to_disable => $mod_security_rules_to_disable,
+                mod_security_additional_options => $mod_security_additional_options,
                 use_mod_macro => $use_mod_macro,
             }
         }
author	mh <mh@immerda.ch>	2011-05-17 22:52:47 +0200
committer	mh <mh@immerda.ch>	2011-05-17 22:55:50 +0200
commit	cbbffa1d3de5a19a72dd7bb88fb1bcb14e5384e1 (patch)
tree	ed24e2d85aa47f9e70ecfcc45bf20c7a2495da93 /manifests/vhost.pp
parent	9081a3c7c3b9f956d0491712bae3ed5e94529e82 (diff)