summaryrefslogtreecommitdiff
path: root/manifests/vhost/php
AgeCommit message (Collapse)Author
2012-06-08fix dynamic scope variables, function accessmh
2012-06-05new style for 2.7mh
2012-05-31fix various puppet language thingsmh
2011-11-29additional foldermh
2011-11-29fix a few things that should be writablemh
2011-10-18fix variable namingmh
2011-10-17fix gallery template partial passingmh
2011-10-13if we run as fcgid, we need to tell safe_mode that gid is finemh
2011-10-09remove old parammh
2011-10-09we need these rewrite rules, otherwise it won't work with cgimh
2011-10-09do the same for fcgidmh
2011-10-09fix typomh
2011-10-09this options should be set globallymh
2011-10-09include php::itk on itk setupsmh
2011-10-08log php errors to a per vhost logfilemh
2011-10-08pass php_settings to fcgid-starter and only set them in vhost, if we don't ↵mh
run as fgcid
2011-10-08type is a metaparammh
2011-10-08migrate over to new stdlib functionmh
2011-10-08also include mod_fcgid for php stuffmh
2011-10-08add mod_fcgid stuffmh
2011-10-08by default safe_mode is off for mediawikismh
2011-10-08the key will always be heremh
2011-10-08fix namemh
2011-10-08remove old template mode optionmh
2011-10-08merge functions to new stdlibs, fix has_key hash problemmh
2011-10-08fix includemh
2011-10-08introduce a new template style, less duplicated things, more handy optionsmh
2011-10-08first work on php_settings via hashmh
2011-07-15it is not anymore necessary to add an empty source to purge directoriesmh
2011-05-17improve mod_security rulesmh
* handled now by a partial * possibility to add rules that should be removed * possibility to add custom mod_sec options" * use new infrastructure for existing mod_sec tweaks
2011-05-12we need also to allow limit on mediawiki dir htaccessmh
2011-02-24use a better subsitutionmh
2011-02-24try a more unique placeholder, because the old one failed with binaries ↵mh
which contained _ in the name
2011-02-24allow setting of a specific bin_dirmh
2011-02-23add a directory for global exec binsmh
2011-02-22add missing parammh
2011-02-22add missing parammh
2011-02-22first way to a unified partial based vhost templatemh
2010-08-17set correct domain, if domain is absent, what it is most of the timemh
2010-08-17fix cronjob domainmh
2010-08-17remove includes in defines that are called a lot, it looks like compile time ↵mh
goes up with such includes
2010-08-16automatically include php for php vhostsmh
2010-08-16impelement itk plus modemh
itk plus mode is an additional mode to deploy itk based hostings which should be a bit more performant. The idea is that we have two apache-instances running: A) prefork based, listening on the external interface B) itk based, listening on the loopback interface A) will serve all static webpages, as well as possibly serve all static content of dynamic websites. All requests to dynamic content will be redirected to B). The idea is that A) doesn't load any modules to server dynamic content at all. B) will serve all the dynamic scripts of a vhost. This will mean that for vhosts (static ones) as well as static content (all none dynamic scripts) we can benefit from the fast prefork model, while we can use itk's security model for all the dynamic scripts. There are two new additional run_modes: - proxy-itk: this just passes all requests to apache instance B). This one is similar to plain itk based mode and should be used for vhosts that shouldn't (yet) changed to the mixed mode. - static-itk: this passes only requests to dynamic scripts to B) while all static content is served by A). Beware that the user with which A) is running should be member of the run group of B) and all static files need to readable by the group. This reduces the security model you have with plain itk, as the prefork apache user will be able to read php (config-) files of any vhost that runs in static-itk mode. If you want to keep the level of security for a certain vhost, you need to run the specific vhost in proxy-itk mode. Note 1: you cannot run vhosts in itk mode and others in proxy or static itk mode. There is a duplicate file resource definition that blocks that possibility. Note 2: This mode works currently only on CentOS based systems, as no work have been done so far to implement an init.d script that's able to run 2 apache instances.
2010-08-11introduce logmode featuremh
We are now able to select how apache should log accesses. These modes are: * default: as you would use it * semianonym: no ips are logged for CustomLog, ErrorLog still logs ips * anonym: no ips are logged for CustomLog, ErrorLog is sent to /dev/null * nologs: all logs are sent to /dev/null
2010-08-07remove unnecessary fileserver variable (#2460)mh
2010-06-12disable mod_security for galleriesmh
2010-06-12get the decision branch rightmh
2010-06-12introduce upload dir for gallery server side uploadsmh
2010-01-30migrate missing partsmh
- migrate missing (newly introduced) vhosts - pass relevant_only stuff to subdefines
2010-01-30merged with lavamindmh