| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-08-17 | remove includes in defines that are called a lot, it looks like compile time ↵ | mh | |
| goes up with such includes | |||
| 2010-08-16 | automatically include php for php vhosts | mh | |
| 2010-08-16 | impelement itk plus mode | mh | |
| itk plus mode is an additional mode to deploy itk based hostings which should be a bit more performant. The idea is that we have two apache-instances running: A) prefork based, listening on the external interface B) itk based, listening on the loopback interface A) will serve all static webpages, as well as possibly serve all static content of dynamic websites. All requests to dynamic content will be redirected to B). The idea is that A) doesn't load any modules to server dynamic content at all. B) will serve all the dynamic scripts of a vhost. This will mean that for vhosts (static ones) as well as static content (all none dynamic scripts) we can benefit from the fast prefork model, while we can use itk's security model for all the dynamic scripts. There are two new additional run_modes: - proxy-itk: this just passes all requests to apache instance B). This one is similar to plain itk based mode and should be used for vhosts that shouldn't (yet) changed to the mixed mode. - static-itk: this passes only requests to dynamic scripts to B) while all static content is served by A). Beware that the user with which A) is running should be member of the run group of B) and all static files need to readable by the group. This reduces the security model you have with plain itk, as the prefork apache user will be able to read php (config-) files of any vhost that runs in static-itk mode. If you want to keep the level of security for a certain vhost, you need to run the specific vhost in proxy-itk mode. Note 1: you cannot run vhosts in itk mode and others in proxy or static itk mode. There is a duplicate file resource definition that blocks that possibility. Note 2: This mode works currently only on CentOS based systems, as no work have been done so far to implement an init.d script that's able to run 2 apache instances. | |||
| 2010-08-11 | introduce logmode feature | mh | |
| We are now able to select how apache should log accesses. These modes are: * default: as you would use it * semianonym: no ips are logged for CustomLog, ErrorLog still logs ips * anonym: no ips are logged for CustomLog, ErrorLog is sent to /dev/null * nologs: all logs are sent to /dev/null | |||
| 2010-08-07 | remove unnecessary fileserver variable (#2460) | mh | |
| 2010-06-12 | disable mod_security for galleries | mh | |
| 2010-06-12 | get the decision branch right | mh | |
| 2010-06-12 | introduce upload dir for gallery server side uploads | mh | |
| 2010-01-30 | migrate missing parts | mh | |
| - migrate missing (newly introduced) vhosts - pass relevant_only stuff to subdefines | |||
| 2010-01-30 | merged with lavamind | mh | |
| 2010-01-26 | module silverstripe | Andreas | |
| 2010-01-20 | missing variables | Andreas | |
| 2010-01-20 | missing variable | Andreas | |
| 2010-01-10 | make it also possible that safe_mode_exec_bin can be absent | mh | |
| 2010-01-10 | if we should remove everything if set to absent | mh | |
| 2010-01-04 | add $mod_security_relevantonly flag, enabled by default, logs only on ↵ | Jerome Charaoui | |
| suspicious requests, set to 'false' to log all requests (as before) | |||
| 2010-01-04 | config file to manage | mh | |
| 2010-01-02 | actually the default is already utf8 | mh | |
| 2010-01-02 | we have already a default charset flag we manage | mh | |
| 2010-01-01 | not a managed dir | Andreas | |
| 2010-01-01 | create g2data dir | Andreas | |
| 2010-01-01 | redefinition error | Andreas | |
| 2010-01-01 | create gdata dir | Andreas | |
| 2010-01-01 | gallery2 module | Andreas | |
| 2009-11-21 | purge bin dir, only add php option if we actually added binaries | mh | |
| 2009-11-21 | substitute with correct variable so we can use it more than once | mh | |
| 2009-11-21 | add missing parameter | mh | |
| 2009-11-21 | introduce php_default_charset to set charset header in php | mh | |
| 2009-11-20 | docman dmdocuments directory is web writable | Andreas | |
| 2009-11-19 | additional cleanup | mh | |
| - actually the execs are always set to something. - grouping of php parameters | |||
| 2009-11-18 | introduce safe mode exec as well for the other vhost types | mh | |
| 2009-11-18 | group php options together | mh | |
| 2009-11-18 | simplify fileresource | mh | |
| 2009-11-18 | bin-dir: user+group needs to be the documentroot user | Andreas | |
| 2009-11-18 | 'undefined' error | Andreas | |
| 2009-11-18 | typo | Andreas | |
| 2009-11-18 | create php_safe_mode_exec_bin_dir in standard.pp, not earlier; phpdirs not used | Andreas | |
| 2009-11-18 | renames and proc move from webhosting for php_safe_mode_exec_bins | Andreas | |
| 2009-11-18 | add php_bin_dir for typo3 | Andreas | |
| 2009-11-18 | update typo3 managed (i.e. httpd writable) directories | Andreas | |
| 2009-11-18 | added a dir for binaries (php safe_mode_exec_dir) | Andreas | |
| 2009-11-18 | link is not apache specific | Andreas | |
| 2009-11-09 | safe_mode_bin links | Andreas | |
| 2009-11-09 | temp must be writable | Andreas | |
| 2009-11-01 | no apache::typo3 needed at the moment | Andreas Maag | |
| 2009-11-01 | typo3 added | Andreas Maag | |
| 2009-10-20 | tmp shouls also be writeable | mh | |
| 2009-09-20 | allow FileInfo for .htaccess for spip | mh | |
| 2009-09-20 | remove unnecessary param | mh | |
| 2009-08-19 | add spip vhost config | mh | |
 |
index : puppet_apache.git | |
| [puppet_apache] | git repository hosting |
| summaryrefslogtreecommitdiff |