diff options
author | mh <mh@immerda.ch> | 2011-05-17 22:52:47 +0200 |
---|---|---|
committer | mh <mh@immerda.ch> | 2011-05-17 22:55:50 +0200 |
commit | cbbffa1d3de5a19a72dd7bb88fb1bcb14e5384e1 (patch) | |
tree | ed24e2d85aa47f9e70ecfcc45bf20c7a2495da93 /manifests/vhost/proxy.pp | |
parent | 9081a3c7c3b9f956d0491712bae3ed5e94529e82 (diff) |
improve mod_security rules
* handled now by a partial
* possibility to add rules that should be removed
* possibility to add custom mod_sec options"
* use new infrastructure for existing mod_sec tweaks
Diffstat (limited to 'manifests/vhost/proxy.pp')
-rw-r--r-- | manifests/vhost/proxy.pp | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/manifests/vhost/proxy.pp b/manifests/vhost/proxy.pp index 6cfdd16..dfc6a0b 100644 --- a/manifests/vhost/proxy.pp +++ b/manifests/vhost/proxy.pp @@ -29,6 +29,9 @@ define apache::vhost::proxy( $logmode = 'default', $mod_security = false, $ssl_mode = false, + $mod_security_relevantonly = true, + $mod_security_rules_to_disable = [], + $mod_security_additional_options = 'absent', $additional_options = 'absent' ){ # create vhost configuration file @@ -49,6 +52,9 @@ define apache::vhost::proxy( allow_override => $allow_override, run_mode => 'normal', mod_security => $mod_security, + mod_security_relevantonly => $mod_security_relevantonly, + mod_security_rules_to_disable => $mod_security_rules_to_disable, + mod_security_additional_options => $mod_security_additional_options, options => $target_url, ssl_mode => $ssl_mode, additional_options => $additional_options, |