From cbbffa1d3de5a19a72dd7bb88fb1bcb14e5384e1 Mon Sep 17 00:00:00 2001
From: mh <mh@immerda.ch>
Date: Tue, 17 May 2011 22:52:47 +0200
Subject: improve mod_security rules

* handled now by a partial
* possibility to add rules that should be removed
* possibility to add custom mod_sec options"
* use new infrastructure for existing mod_sec tweaks
---
 manifests/vhost.pp | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'manifests/vhost.pp')

diff --git a/manifests/vhost.pp b/manifests/vhost.pp
index 089eb62..af067d1 100644
--- a/manifests/vhost.pp
+++ b/manifests/vhost.pp
@@ -70,6 +70,8 @@ define apache::vhost(
     $htpasswd_path = 'absent',
     $mod_security = true,
     $mod_security_relevantonly = true,
+    $mod_security_rules_to_disable = [],
+    $mod_security_additional_options = 'absent',
     $use_mod_macro = false,
     $ldap_auth = false,
     $ldap_user = 'any'
@@ -123,6 +125,9 @@ define apache::vhost(
                 ldap_auth => $ldap_auth,
                 ldap_user => $ldap_user,
                 mod_security => $mod_security,
+                mod_security_relevantonly => $mod_security_relevantonly,
+                mod_security_rules_to_disable => $mod_security_rules_to_disable,
+                mod_security_additional_options => $mod_security_additional_options,
                 use_mod_macro => $use_mod_macro,
             }
         }
-- 
cgit v1.2.3