freighthop 0.2.1 → 0.3.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (322) hide show
  1. data/Puppetfile +4 -3
  2. data/Puppetfile.lock +14 -2
  3. data/Vagrantfile +5 -1
  4. data/data/common.json +4 -3
  5. data/freighthop.gemspec +1 -1
  6. data/lib/freighthop/cli/checks.rb +12 -0
  7. data/lib/freighthop/cli/help.rb +7 -0
  8. data/lib/freighthop/cli/init.rb +35 -0
  9. data/lib/freighthop/cli/ssh.rb +1 -0
  10. data/lib/freighthop/cli/vagrant.rb +1 -0
  11. data/lib/freighthop/cli.rb +5 -17
  12. data/lib/freighthop/config.rb +5 -1
  13. data/lib/freighthop/version.rb +1 -1
  14. data/lib/freighthop.rb +6 -1
  15. data/local_modules/freighthop/manifests/database/mysql/grant.pp +11 -0
  16. data/local_modules/freighthop/manifests/database/mysql.pp +5 -15
  17. data/local_modules/freighthop/manifests/database/postgres.pp +2 -2
  18. data/local_modules/freighthop/manifests/database.pp +3 -3
  19. data/local_modules/freighthop/manifests/init.pp +6 -23
  20. data/local_modules/freighthop/manifests/language/ruby.pp +5 -25
  21. data/local_modules/freighthop/manifests/language.pp +1 -4
  22. data/local_modules/freighthop/manifests/packages.pp +2 -12
  23. data/local_modules/freighthop/manifests/params.pp +19 -11
  24. data/local_modules/freighthop/manifests/web/apache.pp +60 -0
  25. data/local_modules/freighthop/manifests/web/nginx.pp +22 -0
  26. data/local_modules/freighthop/manifests/web/ssl.pp +13 -0
  27. data/local_modules/freighthop/manifests/web.pp +25 -21
  28. data/local_modules/freighthop/templates/apache/passenger.conf.erb +18 -0
  29. data/local_modules/freighthop/templates/nginx/vagrant-rails.conf.erb +5 -3
  30. data/modules/apache/CHANGELOG.md +172 -0
  31. data/modules/apache/CONTRIBUTING.md +234 -0
  32. data/modules/apache/Gemfile +25 -0
  33. data/modules/apache/LICENSE +15 -0
  34. data/modules/apache/Modulefile +12 -0
  35. data/modules/apache/README.md +1515 -0
  36. data/modules/apache/README.passenger.md +93 -0
  37. data/modules/apache/Rakefile +1 -0
  38. data/modules/apache/files/httpd +24 -0
  39. data/modules/apache/lib/puppet/provider/a2mod/a2mod.rb +35 -0
  40. data/modules/apache/lib/puppet/provider/a2mod/gentoo.rb +116 -0
  41. data/modules/apache/lib/puppet/provider/a2mod/modfix.rb +12 -0
  42. data/modules/apache/lib/puppet/provider/a2mod/redhat.rb +60 -0
  43. data/modules/apache/lib/puppet/provider/a2mod.rb +34 -0
  44. data/modules/apache/lib/puppet/type/a2mod.rb +30 -0
  45. data/modules/apache/manifests/balancer.pp +80 -0
  46. data/modules/apache/manifests/balancermember.pp +52 -0
  47. data/modules/apache/manifests/confd/no_accf.pp +10 -0
  48. data/modules/apache/manifests/default_confd_files.pp +12 -0
  49. data/modules/apache/manifests/default_mods/load.pp +8 -0
  50. data/modules/apache/manifests/default_mods.pp +108 -0
  51. data/modules/apache/manifests/dev.pp +11 -0
  52. data/modules/apache/manifests/init.pp +329 -0
  53. data/modules/apache/manifests/listen.pp +9 -0
  54. data/modules/apache/manifests/mod/alias.pp +17 -0
  55. data/modules/apache/manifests/mod/auth_basic.pp +3 -0
  56. data/modules/apache/manifests/mod/auth_kerb.pp +5 -0
  57. data/modules/apache/manifests/mod/authnz_ldap.pp +19 -0
  58. data/modules/apache/manifests/mod/autoindex.pp +12 -0
  59. data/modules/apache/manifests/mod/cache.pp +3 -0
  60. data/modules/apache/manifests/mod/cgi.pp +4 -0
  61. data/modules/apache/manifests/mod/cgid.pp +23 -0
  62. data/modules/apache/manifests/mod/dav.pp +3 -0
  63. data/modules/apache/manifests/mod/dav_fs.pp +20 -0
  64. data/modules/apache/manifests/mod/dav_svn.pp +5 -0
  65. data/modules/apache/manifests/mod/deflate.pp +12 -0
  66. data/modules/apache/manifests/mod/dev.pp +5 -0
  67. data/modules/apache/manifests/mod/dir.pp +21 -0
  68. data/modules/apache/manifests/mod/disk_cache.pp +24 -0
  69. data/modules/apache/manifests/mod/event.pp +54 -0
  70. data/modules/apache/manifests/mod/expires.pp +3 -0
  71. data/modules/apache/manifests/mod/fastcgi.pp +24 -0
  72. data/modules/apache/manifests/mod/fcgid.pp +3 -0
  73. data/modules/apache/manifests/mod/headers.pp +3 -0
  74. data/modules/apache/manifests/mod/include.pp +3 -0
  75. data/modules/apache/manifests/mod/info.pp +14 -0
  76. data/modules/apache/manifests/mod/itk.pp +64 -0
  77. data/modules/apache/manifests/mod/ldap.pp +12 -0
  78. data/modules/apache/manifests/mod/mime.pp +21 -0
  79. data/modules/apache/manifests/mod/mime_magic.pp +14 -0
  80. data/modules/apache/manifests/mod/negotiation.pp +12 -0
  81. data/modules/apache/manifests/mod/nss.pp +25 -0
  82. data/modules/apache/manifests/mod/passenger.pp +38 -0
  83. data/modules/apache/manifests/mod/perl.pp +3 -0
  84. data/modules/apache/manifests/mod/peruser.pp +73 -0
  85. data/modules/apache/manifests/mod/php.pp +26 -0
  86. data/modules/apache/manifests/mod/prefork.pp +74 -0
  87. data/modules/apache/manifests/mod/proxy.pp +15 -0
  88. data/modules/apache/manifests/mod/proxy_ajp.pp +4 -0
  89. data/modules/apache/manifests/mod/proxy_balancer.pp +10 -0
  90. data/modules/apache/manifests/mod/proxy_html.pp +28 -0
  91. data/modules/apache/manifests/mod/proxy_http.pp +4 -0
  92. data/modules/apache/manifests/mod/python.pp +5 -0
  93. data/modules/apache/manifests/mod/reqtimeout.pp +12 -0
  94. data/modules/apache/manifests/mod/rewrite.pp +4 -0
  95. data/modules/apache/manifests/mod/rpaf.pp +20 -0
  96. data/modules/apache/manifests/mod/setenvif.pp +12 -0
  97. data/modules/apache/manifests/mod/ssl.pp +26 -0
  98. data/modules/apache/manifests/mod/status.pp +42 -0
  99. data/modules/apache/manifests/mod/suphp.pp +14 -0
  100. data/modules/apache/manifests/mod/userdir.pp +17 -0
  101. data/modules/apache/manifests/mod/vhost_alias.pp +3 -0
  102. data/modules/apache/manifests/mod/worker.pp +75 -0
  103. data/modules/apache/manifests/mod/wsgi.pp +21 -0
  104. data/modules/apache/manifests/mod/xsendfile.pp +4 -0
  105. data/modules/apache/manifests/mod.pp +120 -0
  106. data/modules/apache/manifests/namevirtualhost.pp +9 -0
  107. data/modules/apache/manifests/package.pp +48 -0
  108. data/modules/apache/manifests/params.pp +207 -0
  109. data/modules/apache/manifests/peruser/multiplexer.pp +17 -0
  110. data/modules/apache/manifests/peruser/processor.pp +17 -0
  111. data/modules/apache/manifests/php.pp +18 -0
  112. data/modules/apache/manifests/proxy.pp +15 -0
  113. data/modules/apache/manifests/python.pp +18 -0
  114. data/modules/apache/manifests/service.pp +35 -0
  115. data/modules/apache/manifests/ssl.pp +18 -0
  116. data/modules/apache/manifests/vhost.pp +516 -0
  117. data/modules/apache/spec/acceptance/basic_spec.rb +12 -0
  118. data/modules/apache/spec/acceptance/class_spec.rb +58 -0
  119. data/modules/apache/spec/acceptance/default_mods_spec.rb +97 -0
  120. data/modules/apache/spec/acceptance/itk_spec.rb +35 -0
  121. data/modules/apache/spec/acceptance/mod_php_spec.rb +52 -0
  122. data/modules/apache/spec/acceptance/mod_suphp_spec.rb +44 -0
  123. data/modules/apache/spec/acceptance/nodesets/centos-64-x64.yml +8 -0
  124. data/modules/apache/spec/acceptance/nodesets/default.yml +8 -0
  125. data/modules/apache/spec/acceptance/nodesets/ubuntu-server-12042-x64.yml +8 -0
  126. data/modules/apache/spec/acceptance/nodesets/vagrant.key +27 -0
  127. data/modules/apache/spec/acceptance/prefork_worker_spec.rb +81 -0
  128. data/modules/apache/spec/acceptance/service_spec.rb +19 -0
  129. data/modules/apache/spec/acceptance/vhost_spec.rb +290 -0
  130. data/modules/apache/spec/classes/apache_spec.rb +464 -0
  131. data/modules/apache/spec/classes/dev_spec.rb +38 -0
  132. data/modules/apache/spec/classes/mod/auth_kerb_spec.rb +41 -0
  133. data/modules/apache/spec/classes/mod/authnz_ldap_spec.rb +65 -0
  134. data/modules/apache/spec/classes/mod/dav_svn_spec.rb +41 -0
  135. data/modules/apache/spec/classes/mod/dev_spec.rb +23 -0
  136. data/modules/apache/spec/classes/mod/dir_spec.rb +88 -0
  137. data/modules/apache/spec/classes/mod/event_spec.rb +17 -0
  138. data/modules/apache/spec/classes/mod/fastcgi_spec.rb +32 -0
  139. data/modules/apache/spec/classes/mod/fcgid_spec.rb +41 -0
  140. data/modules/apache/spec/classes/mod/info_spec.rb +99 -0
  141. data/modules/apache/spec/classes/mod/itk_spec.rb +31 -0
  142. data/modules/apache/spec/classes/mod/mime_magic_spec.rb +93 -0
  143. data/modules/apache/spec/classes/mod/passenger_spec.rb +112 -0
  144. data/modules/apache/spec/classes/mod/perl_spec.rb +41 -0
  145. data/modules/apache/spec/classes/mod/peruser_spec.rb +17 -0
  146. data/modules/apache/spec/classes/mod/php_spec.rb +99 -0
  147. data/modules/apache/spec/classes/mod/prefork_spec.rb +47 -0
  148. data/modules/apache/spec/classes/mod/proxy_html_spec.rb +45 -0
  149. data/modules/apache/spec/classes/mod/python_spec.rb +41 -0
  150. data/modules/apache/spec/classes/mod/rpaf_spec.rb +77 -0
  151. data/modules/apache/spec/classes/mod/ssl_spec.rb +53 -0
  152. data/modules/apache/spec/classes/mod/status_spec.rb +166 -0
  153. data/modules/apache/spec/classes/mod/suphp_spec.rb +27 -0
  154. data/modules/apache/spec/classes/mod/worker_spec.rb +44 -0
  155. data/modules/apache/spec/classes/mod/wsgi_spec.rb +54 -0
  156. data/modules/apache/spec/classes/params_spec.rb +21 -0
  157. data/modules/apache/spec/classes/service_spec.rb +109 -0
  158. data/modules/apache/spec/defines/mod_spec.rb +105 -0
  159. data/modules/apache/spec/defines/vhost_spec.rb +1152 -0
  160. data/modules/apache/spec/fixtures/modules/site_apache/templates/fake.conf.erb +1 -0
  161. data/modules/apache/spec/spec.opts +4 -0
  162. data/modules/apache/spec/spec_helper.rb +1 -0
  163. data/modules/apache/spec/spec_helper_acceptance.rb +27 -0
  164. data/modules/apache/spec/unit/provider/a2mod/gentoo_spec.rb +184 -0
  165. data/modules/apache/templates/confd/no-accf.conf.erb +4 -0
  166. data/modules/apache/templates/httpd.conf.erb +92 -0
  167. data/modules/apache/templates/listen.erb +6 -0
  168. data/modules/apache/templates/mod/alias.conf.erb +9 -0
  169. data/modules/apache/templates/mod/authnz_ldap.conf.erb +5 -0
  170. data/modules/apache/templates/mod/autoindex.conf.erb +56 -0
  171. data/modules/apache/templates/mod/cgid.conf.erb +1 -0
  172. data/modules/apache/templates/mod/dav_fs.conf.erb +1 -0
  173. data/modules/apache/templates/mod/deflate.conf.erb +4 -0
  174. data/modules/apache/templates/mod/dir.conf.erb +1 -0
  175. data/modules/apache/templates/mod/disk_cache.conf.erb +8 -0
  176. data/modules/apache/templates/mod/event.conf.erb +9 -0
  177. data/modules/apache/templates/mod/fastcgi.conf.erb +6 -0
  178. data/modules/apache/templates/mod/info.conf.erb +6 -0
  179. data/modules/apache/templates/mod/itk.conf.erb +8 -0
  180. data/modules/apache/templates/mod/ldap.conf.erb +7 -0
  181. data/modules/apache/templates/mod/mime.conf.erb +36 -0
  182. data/modules/apache/templates/mod/mime_magic.conf.erb +1 -0
  183. data/modules/apache/templates/mod/mpm_event.conf.erb +9 -0
  184. data/modules/apache/templates/mod/negotiation.conf.erb +2 -0
  185. data/modules/apache/templates/mod/nss.conf.erb +228 -0
  186. data/modules/apache/templates/mod/passenger.conf.erb +30 -0
  187. data/modules/apache/templates/mod/peruser.conf.erb +12 -0
  188. data/modules/apache/templates/mod/php5.conf.erb +30 -0
  189. data/modules/apache/templates/mod/prefork.conf.erb +8 -0
  190. data/modules/apache/templates/mod/proxy.conf.erb +23 -0
  191. data/modules/apache/templates/mod/proxy_html.conf.erb +24 -0
  192. data/modules/apache/templates/mod/reqtimeout.conf.erb +2 -0
  193. data/modules/apache/templates/mod/rpaf.conf.erb +15 -0
  194. data/modules/apache/templates/mod/setenvif.conf.erb +34 -0
  195. data/modules/apache/templates/mod/ssl.conf.erb +24 -0
  196. data/modules/apache/templates/mod/status.conf.erb +12 -0
  197. data/modules/apache/templates/mod/suphp.conf.erb +19 -0
  198. data/modules/apache/templates/mod/userdir.conf.erb +19 -0
  199. data/modules/apache/templates/mod/worker.conf.erb +9 -0
  200. data/modules/apache/templates/mod/wsgi.conf.erb +13 -0
  201. data/modules/apache/templates/namevirtualhost.erb +8 -0
  202. data/modules/apache/templates/ports_header.erb +5 -0
  203. data/modules/apache/templates/vhost/_aliases.erb +12 -0
  204. data/modules/apache/templates/vhost/_block.erb +10 -0
  205. data/modules/apache/templates/vhost/_custom_fragment.erb +5 -0
  206. data/modules/apache/templates/vhost/_directories.erb +143 -0
  207. data/modules/apache/templates/vhost/_error_document.erb +7 -0
  208. data/modules/apache/templates/vhost/_fastcgi.erb +18 -0
  209. data/modules/apache/templates/vhost/_itk.erb +28 -0
  210. data/modules/apache/templates/vhost/_php_admin.erb +12 -0
  211. data/modules/apache/templates/vhost/_proxy.erb +20 -0
  212. data/modules/apache/templates/vhost/_rack.erb +7 -0
  213. data/modules/apache/templates/vhost/_redirect.erb +12 -0
  214. data/modules/apache/templates/vhost/_requestheader.erb +10 -0
  215. data/modules/apache/templates/vhost/_rewrite.erb +40 -0
  216. data/modules/apache/templates/vhost/_scriptalias.erb +24 -0
  217. data/modules/apache/templates/vhost/_serveralias.erb +7 -0
  218. data/modules/apache/templates/vhost/_setenv.erb +12 -0
  219. data/modules/apache/templates/vhost/_ssl.erb +41 -0
  220. data/modules/apache/templates/vhost/_suphp.erb +11 -0
  221. data/modules/apache/templates/vhost/_wsgi.erb +15 -0
  222. data/modules/apache/templates/vhost.conf.erb +63 -0
  223. data/modules/apache/tests/apache.pp +6 -0
  224. data/modules/apache/tests/dev.pp +1 -0
  225. data/modules/apache/tests/init.pp +1 -0
  226. data/modules/apache/tests/mod_load_params.pp +11 -0
  227. data/modules/apache/tests/mods.pp +9 -0
  228. data/modules/apache/tests/mods_custom.pp +16 -0
  229. data/modules/apache/tests/php.pp +4 -0
  230. data/modules/apache/tests/vhost.pp +237 -0
  231. data/modules/apache/tests/vhost_directories.pp +30 -0
  232. data/modules/apache/tests/vhost_ip_based.pp +25 -0
  233. data/modules/apache/tests/vhost_ssl.pp +23 -0
  234. data/modules/apache/tests/vhosts_without_listen.pp +53 -0
  235. data/modules/freighthop/manifests/database/mysql/grant.pp +11 -0
  236. data/modules/freighthop/manifests/database/mysql.pp +5 -15
  237. data/modules/freighthop/manifests/database/postgres.pp +2 -2
  238. data/modules/freighthop/manifests/database.pp +3 -3
  239. data/modules/freighthop/manifests/init.pp +6 -23
  240. data/modules/freighthop/manifests/language/ruby.pp +5 -25
  241. data/modules/freighthop/manifests/language.pp +1 -4
  242. data/modules/freighthop/manifests/packages.pp +2 -12
  243. data/modules/freighthop/manifests/params.pp +19 -11
  244. data/modules/freighthop/manifests/web/apache.pp +60 -0
  245. data/modules/freighthop/manifests/web/nginx.pp +22 -0
  246. data/modules/freighthop/manifests/web/ssl.pp +13 -0
  247. data/modules/freighthop/manifests/web.pp +25 -21
  248. data/modules/freighthop/templates/apache/passenger.conf.erb +18 -0
  249. data/modules/freighthop/templates/nginx/vagrant-rails.conf.erb +5 -3
  250. data/modules/rbenv/AUTHORS +11 -0
  251. data/modules/rbenv/CHANGELOG.md +70 -0
  252. data/modules/rbenv/Gemfile +5 -10
  253. data/modules/rbenv/Gemfile.lock +16 -58
  254. data/modules/rbenv/Modulefile +7 -7
  255. data/modules/rbenv/README.md +156 -20
  256. data/modules/rbenv/Rakefile +18 -24
  257. data/modules/rbenv/TODO +10 -0
  258. data/modules/rbenv/bin/autospec +16 -0
  259. data/modules/rbenv/bin/facter +16 -0
  260. data/modules/rbenv/bin/filebucket +16 -0
  261. data/modules/rbenv/bin/hiera +16 -0
  262. data/modules/rbenv/bin/htmldiff +16 -0
  263. data/modules/rbenv/bin/ldiff +16 -0
  264. data/modules/rbenv/bin/pi +16 -0
  265. data/modules/rbenv/bin/puppet +16 -0
  266. data/modules/rbenv/bin/puppet-lint +16 -0
  267. data/modules/rbenv/bin/puppet-module +16 -0
  268. data/modules/rbenv/bin/puppetca +16 -0
  269. data/modules/rbenv/bin/puppetd +16 -0
  270. data/modules/rbenv/bin/puppetdoc +16 -0
  271. data/modules/rbenv/bin/puppetmasterd +16 -0
  272. data/modules/rbenv/bin/puppetqd +16 -0
  273. data/modules/rbenv/bin/puppetrun +16 -0
  274. data/modules/rbenv/bin/rake +16 -0
  275. data/modules/rbenv/bin/ralsh +16 -0
  276. data/modules/rbenv/bin/rspec +16 -0
  277. data/modules/rbenv/bin/rspec-puppet-init +16 -0
  278. data/modules/rbenv/lib/puppet/provider/rbenvgem/default.rb +50 -0
  279. data/modules/rbenv/lib/puppet/type/rbenvgem.rb +62 -0
  280. data/modules/rbenv/manifests/bundle.pp +36 -0
  281. data/modules/rbenv/manifests/client.pp +48 -0
  282. data/modules/rbenv/manifests/compile.pp +102 -0
  283. data/modules/rbenv/manifests/definition.pp +31 -0
  284. data/modules/rbenv/manifests/dependencies/centos.pp +25 -0
  285. data/modules/rbenv/manifests/dependencies/suse.pp +28 -0
  286. data/modules/rbenv/manifests/dependencies/ubuntu.pp +17 -0
  287. data/modules/rbenv/manifests/dependencies.pp +8 -0
  288. data/modules/rbenv/manifests/gem.pp +29 -0
  289. data/modules/rbenv/manifests/install.pp +55 -0
  290. data/modules/rbenv/manifests/plugin/rbenvvars.pp +16 -0
  291. data/modules/rbenv/manifests/plugin/rubybuild.pp +16 -0
  292. data/modules/rbenv/manifests/plugin.pp +40 -0
  293. data/modules/rbenv/metadata.json +99 -31
  294. data/modules/rbenv/spec/classes/dependencies_spec.rb +20 -0
  295. data/modules/rbenv/spec/defines/rbenv__compile_spec.rb +34 -0
  296. data/modules/rbenv/spec/defines/rbenv__definition_spec.rb +40 -0
  297. data/modules/rbenv/spec/defines/rbenv__install_spec.rb +24 -0
  298. data/modules/rbenv/spec/defines/rbenv__plugin__rbenvvars_spec.rb +14 -0
  299. data/modules/rbenv/spec/defines/rbenv__plugin__rubybuild_spec.rb +14 -0
  300. data/modules/rbenv/spec/defines/rbenv__plugin_spec.rb +31 -0
  301. data/modules/rbenv/spec/fixtures/manifests/site.pp +0 -0
  302. data/modules/rbenv/spec/spec_helper.rb +6 -1
  303. data/modules/rbenv/templates/Gemfile.erb +5 -0
  304. data/modules/rbenv/templates/dot.rbenvrc.erb +8 -0
  305. metadata +271 -23
  306. data/modules/rbenv/CHANGELOG +0 -33
  307. data/modules/rbenv/LICENSE +0 -20
  308. data/modules/rbenv/manifests/alias.pp +0 -32
  309. data/modules/rbenv/manifests/global.pp +0 -22
  310. data/modules/rbenv/manifests/init.pp +0 -30
  311. data/modules/rbenv/manifests/params.pp +0 -16
  312. data/modules/rbenv/manifests/rehash.pp +0 -28
  313. data/modules/rbenv/manifests/version.pp +0 -63
  314. data/modules/rbenv/spec/classes/rbenv__global_spec.rb +0 -31
  315. data/modules/rbenv/spec/classes/rbenv_spec.rb +0 -30
  316. data/modules/rbenv/spec/defines/rbenv__alias_spec.rb +0 -22
  317. data/modules/rbenv/spec/defines/rbenv__rehash_spec.rb +0 -22
  318. data/modules/rbenv/spec/defines/rbenv__version_spec.rb +0 -60
  319. data/modules/rbenv/spec/spec_helper_system.rb +0 -16
  320. data/modules/rbenv/spec/system/basic_spec.rb +0 -13
  321. data/modules/rbenv/templates/etc/profile.d/rbenv.sh.erb +0 -2
  322. data/modules/rbenv/tests/init.pp +0 -12
@@ -0,0 +1,228 @@
1
+ #
2
+ # This is the Apache server configuration file providing SSL support using.
3
+ # the mod_nss plugin. It contains the configuration directives to instruct
4
+ # the server how to serve pages over an https connection.
5
+ #
6
+ # Do NOT simply read the instructions in here without understanding
7
+ # what they do. They're here only as hints or reminders. If you are unsure
8
+ # consult the online docs. You have been warned.
9
+ #
10
+
11
+ #LoadModule nss_module modules/libmodnss.so
12
+
13
+ #
14
+ # When we also provide SSL we have to listen to the
15
+ # standard HTTP port (see above) and to the HTTPS port
16
+ #
17
+ # Note: Configurations that use IPv6 but not IPv4-mapped addresses need two
18
+ # Listen directives: "Listen [::]:8443" and "Listen 0.0.0.0:443"
19
+ #
20
+ Listen 8443
21
+
22
+ ##
23
+ ## SSL Global Context
24
+ ##
25
+ ## All SSL configuration in this context applies both to
26
+ ## the main server and all SSL-enabled virtual hosts.
27
+ ##
28
+
29
+ #
30
+ # Some MIME-types for downloading Certificates and CRLs
31
+ #
32
+ AddType application/x-x509-ca-cert .crt
33
+ AddType application/x-pkcs7-crl .crl
34
+
35
+ # Pass Phrase Dialog:
36
+ # Configure the pass phrase gathering process.
37
+ # The filtering dialog program (`builtin' is a internal
38
+ # terminal dialog) has to provide the pass phrase on stdout.
39
+ <% if @passwd_file -%>
40
+ NSSPassPhraseDialog file:<%= @passwd_file %>
41
+ <% else -%>
42
+ NSSPassPhraseDialog builtin
43
+ <% end -%>
44
+
45
+ # Pass Phrase Helper:
46
+ # This helper program stores the token password pins between
47
+ # restarts of Apache.
48
+ NSSPassPhraseHelper /usr/sbin/nss_pcache
49
+
50
+ # Configure the SSL Session Cache.
51
+ # NSSSessionCacheSize is the number of entries in the cache.
52
+ # NSSSessionCacheTimeout is the SSL2 session timeout (in seconds).
53
+ # NSSSession3CacheTimeout is the SSL3/TLS session timeout (in seconds).
54
+ NSSSessionCacheSize 10000
55
+ NSSSessionCacheTimeout 100
56
+ NSSSession3CacheTimeout 86400
57
+
58
+ #
59
+ # Pseudo Random Number Generator (PRNG):
60
+ # Configure one or more sources to seed the PRNG of the SSL library.
61
+ # The seed data should be of good random quality.
62
+ # WARNING! On some platforms /dev/random blocks if not enough entropy
63
+ # is available. Those platforms usually also provide a non-blocking
64
+ # device, /dev/urandom, which may be used instead.
65
+ #
66
+ # This does not support seeding the RNG with each connection.
67
+
68
+ NSSRandomSeed startup builtin
69
+ #NSSRandomSeed startup file:/dev/random 512
70
+ #NSSRandomSeed startup file:/dev/urandom 512
71
+
72
+ #
73
+ # TLS Negotiation configuration under RFC 5746
74
+ #
75
+ # Only renegotiate if the peer's hello bears the TLS renegotiation_info
76
+ # extension. Default off.
77
+ NSSRenegotiation off
78
+
79
+ # Peer must send Signaling Cipher Suite Value (SCSV) or
80
+ # Renegotiation Info (RI) extension in ALL handshakes. Default: off
81
+ NSSRequireSafeNegotiation off
82
+
83
+ ##
84
+ ## SSL Virtual Host Context
85
+ ##
86
+
87
+ <VirtualHost _default_:8443>
88
+
89
+ # General setup for the virtual host
90
+ #DocumentRoot "/etc/httpd/htdocs"
91
+ #ServerName www.example.com:8443
92
+ #ServerAdmin you@example.com
93
+
94
+ # mod_nss can log to separate log files, you can choose to do that if you'd like
95
+ # LogLevel is not inherited from httpd.conf.
96
+ ErrorLog <%= @error_log %>
97
+ TransferLog <%= @transfer_log %>
98
+ LogLevel warn
99
+
100
+ # SSL Engine Switch:
101
+ # Enable/Disable SSL for this virtual host.
102
+ NSSEngine on
103
+
104
+ # SSL Cipher Suite:
105
+ # List the ciphers that the client is permitted to negotiate.
106
+ # See the mod_nss documentation for a complete list.
107
+
108
+ # SSL 3 ciphers. SSL 2 is disabled by default.
109
+ NSSCipherSuite +rsa_rc4_128_md5,+rsa_rc4_128_sha,+rsa_3des_sha,-rsa_des_sha,-rsa_rc4_40_md5,-rsa_rc2_40_md5,-rsa_null_md5,-rsa_null_sha,+fips_3des_sha,-fips_des_sha,-fortezza,-fortezza_rc4_128_sha,-fortezza_null,-rsa_des_56_sha,-rsa_rc4_56_sha,+rsa_aes_128_sha,+rsa_aes_256_sha
110
+
111
+ # SSL 3 ciphers + ECC ciphers. SSL 2 is disabled by default.
112
+ #
113
+ # Comment out the NSSCipherSuite line above and use the one below if you have
114
+ # ECC enabled NSS and mod_nss and want to use Elliptical Curve Cryptography
115
+ #NSSCipherSuite +rsa_rc4_128_md5,+rsa_rc4_128_sha,+rsa_3des_sha,-rsa_des_sha,-rsa_rc4_40_md5,-rsa_rc2_40_md5,-rsa_null_md5,-rsa_null_sha,+fips_3des_sha,-fips_des_sha,-fortezza,-fortezza_rc4_128_sha,-fortezza_null,-rsa_des_56_sha,-rsa_rc4_56_sha,+rsa_aes_128_sha,+rsa_aes_256_sha,-ecdh_ecdsa_null_sha,+ecdh_ecdsa_rc4_128_sha,+ecdh_ecdsa_3des_sha,+ecdh_ecdsa_aes_128_sha,+ecdh_ecdsa_aes_256_sha,-ecdhe_ecdsa_null_sha,+ecdhe_ecdsa_rc4_128_sha,+ecdhe_ecdsa_3des_sha,+ecdhe_ecdsa_aes_128_sha,+ecdhe_ecdsa_aes_256_sha,-ecdh_rsa_null_sha,+ecdh_rsa_128_sha,+ecdh_rsa_3des_sha,+ecdh_rsa_aes_128_sha,+ecdh_rsa_aes_256_sha,-echde_rsa_null,+ecdhe_rsa_rc4_128_sha,+ecdhe_rsa_3des_sha,+ecdhe_rsa_aes_128_sha,+ecdhe_rsa_aes_256_sha
116
+
117
+ # SSL Protocol:
118
+ # Cryptographic protocols that provide communication security.
119
+ # NSS handles the specified protocols as "ranges", and automatically
120
+ # negotiates the use of the strongest protocol for a connection starting
121
+ # with the maximum specified protocol and downgrading as necessary to the
122
+ # minimum specified protocol that can be used between two processes.
123
+ # Since all protocol ranges are completely inclusive, and no protocol in the
124
+ # middle of a range may be excluded, the entry "NSSProtocol SSLv3,TLSv1.1"
125
+ # is identical to the entry "NSSProtocol SSLv3,TLSv1.0,TLSv1.1".
126
+ NSSProtocol SSLv3,TLSv1.0,TLSv1.1
127
+
128
+ # SSL Certificate Nickname:
129
+ # The nickname of the RSA server certificate you are going to use.
130
+ NSSNickname Server-Cert
131
+
132
+ # SSL Certificate Nickname:
133
+ # The nickname of the ECC server certificate you are going to use, if you
134
+ # have an ECC-enabled version of NSS and mod_nss
135
+ #NSSECCNickname Server-Cert-ecc
136
+
137
+ # Server Certificate Database:
138
+ # The NSS security database directory that holds the certificates and
139
+ # keys. The database consists of 3 files: cert8.db, key3.db and secmod.db.
140
+ # Provide the directory that these files exist.
141
+ NSSCertificateDatabase <%= @httpd_dir -%>/alias
142
+
143
+ # Database Prefix:
144
+ # In order to be able to store multiple NSS databases in one directory
145
+ # they need unique names. This option sets the database prefix used for
146
+ # cert8.db and key3.db.
147
+ #NSSDBPrefix my-prefix-
148
+
149
+ # Client Authentication (Type):
150
+ # Client certificate verification type. Types are none, optional and
151
+ # require.
152
+ #NSSVerifyClient none
153
+
154
+ #
155
+ # Online Certificate Status Protocol (OCSP).
156
+ # Verify that certificates have not been revoked before accepting them.
157
+ #NSSOCSP off
158
+
159
+ #
160
+ # Use a default OCSP responder. If enabled this will be used regardless
161
+ # of whether one is included in a client certificate. Note that the
162
+ # server certificate is verified during startup.
163
+ #
164
+ # NSSOCSPDefaultURL defines the service URL of the OCSP responder
165
+ # NSSOCSPDefaultName is the nickname of the certificate to trust to
166
+ # sign the OCSP responses.
167
+ #NSSOCSPDefaultResponder on
168
+ #NSSOCSPDefaultURL http://example.com/ocsp/status
169
+ #NSSOCSPDefaultName ocsp-nickname
170
+
171
+ # Access Control:
172
+ # With SSLRequire you can do per-directory access control based
173
+ # on arbitrary complex boolean expressions containing server
174
+ # variable checks and other lookup directives. The syntax is a
175
+ # mixture between C and Perl. See the mod_nss documentation
176
+ # for more details.
177
+ #<Location />
178
+ #NSSRequire ( %{SSL_CIPHER} !~ m/^(EXP|NULL)/ \
179
+ # and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \
180
+ # and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \
181
+ # and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \
182
+ # and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20 ) \
183
+ # or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/
184
+ #</Location>
185
+
186
+ # SSL Engine Options:
187
+ # Set various options for the SSL engine.
188
+ # o FakeBasicAuth:
189
+ # Translate the client X.509 into a Basic Authorisation. This means that
190
+ # the standard Auth/DBMAuth methods can be used for access control. The
191
+ # user name is the `one line' version of the client's X.509 certificate.
192
+ # Note that no password is obtained from the user. Every entry in the user
193
+ # file needs this password: `xxj31ZMTZzkVA'.
194
+ # o ExportCertData:
195
+ # This exports two additional environment variables: SSL_CLIENT_CERT and
196
+ # SSL_SERVER_CERT. These contain the PEM-encoded certificates of the
197
+ # server (always existing) and the client (only existing when client
198
+ # authentication is used). This can be used to import the certificates
199
+ # into CGI scripts.
200
+ # o StdEnvVars:
201
+ # This exports the standard SSL/TLS related `SSL_*' environment variables.
202
+ # Per default this exportation is switched off for performance reasons,
203
+ # because the extraction step is an expensive operation and is usually
204
+ # useless for serving static content. So one usually enables the
205
+ # exportation for CGI and SSI requests only.
206
+ # o StrictRequire:
207
+ # This denies access when "NSSRequireSSL" or "NSSRequire" applied even
208
+ # under a "Satisfy any" situation, i.e. when it applies access is denied
209
+ # and no other module can change it.
210
+ # o OptRenegotiate:
211
+ # This enables optimized SSL connection renegotiation handling when SSL
212
+ # directives are used in per-directory context.
213
+ #NSSOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire
214
+ <Files ~ "\.(cgi|shtml|phtml|php3?)$">
215
+ NSSOptions +StdEnvVars
216
+ </Files>
217
+ <Directory "/var/www/cgi-bin">
218
+ NSSOptions +StdEnvVars
219
+ </Directory>
220
+
221
+ # Per-Server Logging:
222
+ # The home of a custom SSL log file. Use this when you want a
223
+ # compact non-error SSL logfile on a virtual host basis.
224
+ #CustomLog /home/rcrit/redhat/apache/logs/ssl_request_log \
225
+ # "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
226
+
227
+ </VirtualHost>
228
+
@@ -0,0 +1,30 @@
1
+ # The Passanger Apache module configuration file is being
2
+ # managed by Puppet and changes will be overwritten.
3
+ <IfModule mod_passenger.c>
4
+ PassengerRoot <%= @passenger_root %>
5
+ PassengerRuby <%= @passenger_ruby %>
6
+ <%- if @passenger_high_performance -%>
7
+ PassengerHighPerformance <%= @passenger_high_performance %>
8
+ <%- end -%>
9
+ <%- if @passenger_max_pool_size -%>
10
+ PassengerMaxPoolSize <%= @passenger_max_pool_size %>
11
+ <%- end -%>
12
+ <%- if @passenger_pool_idle_time -%>
13
+ PassengerPoolIdleTime <%= @passenger_pool_idle_time %>
14
+ <%- end -%>
15
+ <%- if @passenger_max_requests -%>
16
+ PassengerMaxRequests <%= @passenger_max_requests %>
17
+ <%- end -%>
18
+ <%- if @passenger_stat_throttle_rate -%>
19
+ PassengerStatThrottleRate <%= @passenger_stat_throttle_rate %>
20
+ <%- end -%>
21
+ <%- if @rack_autodetect -%>
22
+ RackAutoDetect <%= @rack_autodetect %>
23
+ <%- end -%>
24
+ <%- if @rails_autodetect -%>
25
+ RailsAutoDetect <%= @rails_autodetect %>
26
+ <%- end -%>
27
+ <%- if @passenger_use_global_queue -%>
28
+ PassengerUseGlobalQueue <%= @passenger_use_global_queue %>
29
+ <%- end -%>
30
+ </IfModule>
@@ -0,0 +1,12 @@
1
+ <IfModule mpm_peruser_module>
2
+ MinSpareProcessors <%= @minspareprocessors %>
3
+ MinProcessors <%= @minprocessors %>
4
+ MaxProcessors <%= @maxprocessors %>
5
+ MaxClients <%= @maxclients %>
6
+ MaxRequestsPerChild <%= @maxrequestsperchild %>
7
+ IdleTimeout <%= @idletimeout %>
8
+ ExpireTimeout <%= @expiretimeout %>
9
+ KeepAlive <%= @keepalive %>
10
+ Include <%= @mod_dir %>/peruser/multiplexers/*.conf
11
+ Include <%= @mod_dir %>/peruser/processors/*.conf
12
+ </IfModule>
@@ -0,0 +1,30 @@
1
+ #
2
+ # PHP is an HTML-embedded scripting language which attempts to make it
3
+ # easy for developers to write dynamically generated webpages.
4
+ #
5
+ #<IfModule prefork.c>
6
+ # LoadModule php5_module modules/libphp5.so
7
+ #</IfModule>
8
+ #<IfModule worker.c>
9
+ # # Use of the "ZTS" build with worker is experimental, and no shared
10
+ # # modules are supported.
11
+ # LoadModule php5_module modules/libphp5-zts.so
12
+ #</IfModule>
13
+
14
+ #
15
+ # Cause the PHP interpreter to handle files with a .php extension.
16
+ #
17
+ AddHandler php5-script .php
18
+ AddType text/html .php
19
+
20
+ #
21
+ # Add index.php to the list of files that will be served as directory
22
+ # indexes.
23
+ #
24
+ DirectoryIndex index.php
25
+
26
+ #
27
+ # Uncomment the following line to allow PHP to pretty-print .phps
28
+ # files as PHP source code:
29
+ #
30
+ #AddType application/x-httpd-php-source .phps
@@ -0,0 +1,8 @@
1
+ <IfModule mpm_prefork_module>
2
+ StartServers <%= @startservers %>
3
+ MinSpareServers <%= @minspareservers %>
4
+ MaxSpareServers <%= @maxspareservers %>
5
+ ServerLimit <%= @serverlimit %>
6
+ MaxClients <%= @maxclients %>
7
+ MaxRequestsPerChild <%= @maxrequestsperchild %>
8
+ </IfModule>
@@ -0,0 +1,23 @@
1
+ #
2
+ # Proxy Server directives. Uncomment the following lines to
3
+ # enable the proxy server:
4
+ #
5
+ <IfModule mod_proxy.c>
6
+ # Do not enable proxying with ProxyRequests until you have secured your
7
+ # server. Open proxy servers are dangerous both to your network and to the
8
+ # Internet at large.
9
+ ProxyRequests <%= @proxy_requests %>
10
+
11
+ <% if @proxy_requests != 'Off' or ( @allow_from and ! @allow_from.empty? ) -%>
12
+ <Proxy *>
13
+ Order deny,allow
14
+ Deny from all
15
+ Allow from <%= Array(@allow_from).join(" ") %>
16
+ </Proxy>
17
+ <% end -%>
18
+
19
+ # Enable/disable the handling of HTTP/1.1 "Via:" headers.
20
+ # ("Full" adds the server version; "Block" removes all outgoing Via: headers)
21
+ # Set to one of: Off | On | Full | Block
22
+ ProxyVia On
23
+ </IfModule>
@@ -0,0 +1,24 @@
1
+ <% if @proxy_html_loadfiles -%>
2
+ <% Array(@proxy_html_loadfiles).each do |loadfile| -%>
3
+ LoadFile <%= loadfile %>
4
+ <% end -%>
5
+
6
+ <% end -%>
7
+ ProxyHTMLLinks a href
8
+ ProxyHTMLLinks area href
9
+ ProxyHTMLLinks link href
10
+ ProxyHTMLLinks img src longdesc usemap
11
+ ProxyHTMLLinks object classid codebase data usemap
12
+ ProxyHTMLLinks q cite
13
+ ProxyHTMLLinks blockquote cite
14
+ ProxyHTMLLinks ins cite
15
+ ProxyHTMLLinks del cite
16
+ ProxyHTMLLinks form action
17
+ ProxyHTMLLinks input src usemap
18
+ ProxyHTMLLinks head profileProxyHTMLLinks base href
19
+ ProxyHTMLLinks script src for
20
+
21
+ ProxyHTMLEvents onclick ondblclick onmousedown onmouseup \
22
+ onmouseover onmousemove onmouseout onkeypress \
23
+ onkeydown onkeyup onfocus onblur onload \
24
+ onunload onsubmit onreset onselect onchange
@@ -0,0 +1,2 @@
1
+ RequestReadTimeout header=20-40,minrate=500
2
+ RequestReadTimeout body=10,minrate=500
@@ -0,0 +1,15 @@
1
+ # Enable reverse proxy add forward
2
+ RPAFenable On
3
+ # RPAFsethostname will, when enabled, take the incoming X-Host header and
4
+ # update the virtual host settings accordingly. This allows to have the same
5
+ # hostnames as in the "real" configuration for the forwarding proxy.
6
+ <% if @sethostname -%>
7
+ RPAFsethostname On
8
+ <% else -%>
9
+ RPAFsethostname Off
10
+ <% end -%>
11
+ # Which IPs are forwarding requests to us
12
+ RPAFproxy_ips <%= Array(@proxy_ips).join(" ") %>
13
+ # Setting RPAFheader allows you to change the header name to parse from the
14
+ # default X-Forwarded-For to something of your choice.
15
+ RPAFheader <%= @header %>
@@ -0,0 +1,34 @@
1
+ #
2
+ # The following directives modify normal HTTP response behavior to
3
+ # handle known problems with browser implementations.
4
+ #
5
+ BrowserMatch "Mozilla/2" nokeepalive
6
+ BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
7
+ BrowserMatch "RealPlayer 4\.0" force-response-1.0
8
+ BrowserMatch "Java/1\.0" force-response-1.0
9
+ BrowserMatch "JDK/1\.0" force-response-1.0
10
+
11
+ #
12
+ # The following directive disables redirects on non-GET requests for
13
+ # a directory that does not include the trailing slash. This fixes a
14
+ # problem with Microsoft WebFolders which does not appropriately handle
15
+ # redirects for folders with DAV methods.
16
+ # Same deal with Apple's DAV filesystem and Gnome VFS support for DAV.
17
+ #
18
+ BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully
19
+ BrowserMatch "MS FrontPage" redirect-carefully
20
+ BrowserMatch "^WebDrive" redirect-carefully
21
+ BrowserMatch "^WebDAVFS/1.[0123]" redirect-carefully
22
+ BrowserMatch "^gnome-vfs/1.0" redirect-carefully
23
+ BrowserMatch "^gvfs/1" redirect-carefully
24
+ BrowserMatch "^XML Spy" redirect-carefully
25
+ BrowserMatch "^Dreamweaver-WebDAV-SCM1" redirect-carefully
26
+ BrowserMatch " Konqueror/4" redirect-carefully
27
+
28
+ <IfModule mod_ssl.c>
29
+ BrowserMatch "MSIE [2-6]" \
30
+ nokeepalive ssl-unclean-shutdown \
31
+ downgrade-1.0 force-response-1.0
32
+ # MSIE 7 and newer should be able to use keepalive
33
+ BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
34
+ </IfModule>
@@ -0,0 +1,24 @@
1
+ <IfModule mod_ssl.c>
2
+ SSLRandomSeed startup builtin
3
+ SSLRandomSeed startup file:/dev/urandom 512
4
+ SSLRandomSeed connect builtin
5
+ SSLRandomSeed connect file:/dev/urandom 512
6
+
7
+ AddType application/x-x509-ca-cert .crt
8
+ AddType application/x-pkcs7-crl .crl
9
+
10
+ SSLPassPhraseDialog builtin
11
+ SSLSessionCache shmcb:<%= @session_cache %>
12
+ SSLSessionCacheTimeout 300
13
+ <% if @ssl_compression -%>
14
+ SSLCompression Off
15
+ <% end -%>
16
+ SSLMutex <%= @ssl_mutex %>
17
+ SSLCryptoDevice builtin
18
+ SSLHonorCipherOrder On
19
+ SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5
20
+ SSLProtocol all -SSLv2
21
+ <% if @ssl_options -%>
22
+ SSLOptions <%= @ssl_options.compact.join(' ') %>
23
+ <% end -%>
24
+ </IfModule>
@@ -0,0 +1,12 @@
1
+ <Location /server-status>
2
+ SetHandler server-status
3
+ Order deny,allow
4
+ Deny from all
5
+ Allow from <%= Array(@allow_from).join(" ") %>
6
+ </Location>
7
+ ExtendedStatus <%= @extended_status %>
8
+
9
+ <IfModule mod_proxy.c>
10
+ # Show Proxy LoadBalancer status in mod_status
11
+ ProxyStatus On
12
+ </IfModule>
@@ -0,0 +1,19 @@
1
+ <IfModule mod_suphp.c>
2
+ AddType application/x-httpd-suphp .php .php3 .php4 .php5 .phtml
3
+ suPHP_AddHandler application/x-httpd-suphp
4
+
5
+ <Directory />
6
+ suPHP_Engine on
7
+ </Directory>
8
+
9
+ # By default, disable suPHP for debian packaged web applications as files
10
+ # are owned by root and cannot be executed by suPHP because of min_uid.
11
+ <Directory /usr/share>
12
+ suPHP_Engine off
13
+ </Directory>
14
+
15
+ # # Use a specific php config file (a dir which contains a php.ini file)
16
+ # suPHP_ConfigPath /etc/php4/cgi/suphp/
17
+ # # Tells mod_suphp NOT to handle requests with the type <mime-type>.
18
+ # suPHP_RemoveHandler <mime-type>
19
+ </IfModule>
@@ -0,0 +1,19 @@
1
+ <IfModule mod_userdir.c>
2
+ <% if @disable_root -%>
3
+ UserDir disabled root
4
+ <% end -%>
5
+ UserDir <%= @dir %>
6
+
7
+ <Directory <%= @home %>/*/<%= @dir %>>
8
+ AllowOverride FileInfo AuthConfig Limit Indexes
9
+ Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
10
+ <Limit GET POST OPTIONS>
11
+ Order allow,deny
12
+ Allow from all
13
+ </Limit>
14
+ <LimitExcept GET POST OPTIONS>
15
+ Order deny,allow
16
+ Deny from all
17
+ </LimitExcept>
18
+ </Directory>
19
+ </IfModule>
@@ -0,0 +1,9 @@
1
+ <IfModule mpm_worker_module>
2
+ ServerLimit <%= @serverlimit %>
3
+ StartServers <%= @startservers %>
4
+ MaxClients <%= @maxclients %>
5
+ MinSpareThreads <%= @minsparethreads %>
6
+ MaxSpareThreads <%= @maxsparethreads %>
7
+ ThreadsPerChild <%= @threadsperchild %>
8
+ MaxRequestsPerChild <%= @maxrequestsperchild %>
9
+ </IfModule>
@@ -0,0 +1,13 @@
1
+ # The WSGI Apache module configuration file is being
2
+ # managed by Puppet an changes will be overwritten.
3
+ <IfModule mod_wsgi.c>
4
+ <%- if @wsgi_socket_prefix -%>
5
+ WSGISocketPrefix <%= @wsgi_socket_prefix %>
6
+ <%- end -%>
7
+ <%- if @wsgi_python_home -%>
8
+ WSGIPythonHome <%= @wsgi_python_home %>
9
+ <%- end -%>
10
+ <%- if @wsgi_python_path -%>
11
+ WSGIPythonPath <%= @wsgi_python_path %>
12
+ <%- end -%>
13
+ </IfModule>
@@ -0,0 +1,8 @@
1
+ <%# NameVirtualHost should always be one of:
2
+ - *
3
+ - *:<port>
4
+ - _default_:<port>
5
+ - <ip>
6
+ - <ip>:<port>
7
+ -%>
8
+ NameVirtualHost <%= @addr_port %>
@@ -0,0 +1,5 @@
1
+ # ************************************
2
+ # Listen & NameVirtualHost resources in module puppetlabs-apache
3
+ # Managed by Puppet
4
+ # ************************************
5
+
@@ -0,0 +1,12 @@
1
+ <% if @aliases and ! @aliases.empty? -%>
2
+ ## Alias declarations for resources outside the DocumentRoot
3
+ <%- [@aliases].flatten.compact.each do |alias_statement| -%>
4
+ <%- if alias_statement["path"] != '' -%>
5
+ <%- if alias_statement["alias"] and alias_statement["alias"] != '' -%>
6
+ Alias <%= alias_statement["alias"] %> <%= alias_statement["path"] %>
7
+ <%- elsif alias_statement["aliasmatch"] and alias_statement["aliasmatch"] != '' -%>
8
+ AliasMatch <%= alias_statement["aliasmatch"] %> <%= alias_statement["path"] %>
9
+ <%- end -%>
10
+ <%- end -%>
11
+ <%- end -%>
12
+ <% end -%>
@@ -0,0 +1,10 @@
1
+ <% if @block and ! @block.empty? -%>
2
+
3
+ ## Block access statements
4
+ <% if @block.include? 'scm' -%>
5
+ # Block access to SCM directories.
6
+ <DirectoryMatch .*\.(svn|git|bzr)/.*>
7
+ Deny From All
8
+ </DirectoryMatch>
9
+ <% end -%>
10
+ <% end -%>
@@ -0,0 +1,5 @@
1
+ <% if @custom_fragment -%>
2
+
3
+ ## Custom fragment
4
+ <%= @custom_fragment %>
5
+ <% end -%>