summaryrefslogtreecommitdiff
path: root/templates/vhosts/partials/mod_security.erb
diff options
context:
space:
mode:
Diffstat (limited to 'templates/vhosts/partials/mod_security.erb')
-rw-r--r--templates/vhosts/partials/mod_security.erb24
1 files changed, 12 insertions, 12 deletions
diff --git a/templates/vhosts/partials/mod_security.erb b/templates/vhosts/partials/mod_security.erb
index 5b4fca8..380e78f 100644
--- a/templates/vhosts/partials/mod_security.erb
+++ b/templates/vhosts/partials/mod_security.erb
@@ -1,27 +1,27 @@
<IfModule mod_security2.c>
-<% if mod_security.to_s == 'true' then -%>
+<% if @mod_security.to_s == 'true' -%>
SecRuleEngine On
-<% if mod_security_relevantonly.to_s == 'true' then -%>
+<% if @mod_security_relevantonly.to_s == 'true' -%>
SecAuditEngine RelevantOnly
-<% else -%>
+<% else -%>
SecAuditEngine On
-<% end -%>
+<% end -%>
<% else -%>
SecRuleEngine Off
SecAuditEngine Off
<% end -%>
SecAuditLogType Concurrent
- SecAuditLogStorageDir <%= logdir %>/
- SecAuditLog <%= logdir %>/mod_security_audit.log
- SecDebugLog <%= logdir %>/mod_security_debug.log
-<% unless mod_security_rules_to_disable.to_a.empty? -%>
+ SecAuditLogStorageDir <%= @logdir %>/
+ SecAuditLog <%= @logdir %>/mod_security_audit.log
+ SecDebugLog <%= @logdir %>/mod_security_debug.log
+<% unless (disabled_rules=Array(@mod_security_rules_to_disable)).empty? -%>
-<% mod_security_rules_to_disable.to_a.each do |rule| -%>
+<% disabled_rules.each do |rule| -%>
SecRuleRemoveById "<%= rule %>"
+<% end -%>
<% end -%>
-<% end -%>
-<% unless mod_security_additional_options.to_s == 'absent' -%>
+<% unless (s=@mod_security_additional_options).to_s == 'absent' -%>
- <%= mod_security_additional_options %>
+ <%= s %>
<% end -%>
</IfModule>
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-17 20:34:59 +0000