This release includes bug fixes and a documentation update.
- Fixes a bug that occurs when using the module in combination with puppetlabs-concat 2.x.
- Fixes a bug where passenger.conf was vulnerable to purging.
- Removes the pin of the concat module dependency.
This release includes a lot of bug fixes and feature updates, including support for Debian 8, as well as many test improvements.
- Debian 8 Support.
- Added the 'file_mode' property to allow a custom permission setting for config files.
- Enable 'PassengerMaxRequestQueueSize' to be set for mod_passenger.
- MODULES-2956: Enable options within location block on proxy_match.
- Support itk on redhat.
- Support the mod_ssl SSLProxyVerify directive.
- Support ProxPassReverseCookieDomain directive (mod_proxy).
- Support proxy provider for vhost directories.
- Added new 'apache::vhost::custom' resource.
- Fixed ProxyPassReverse configuration.
- Fixed error in Amazon operatingsystem detection.
- Fixed mod_security catalog ordering issues for RedHat 7.
- Fixed paths and packages for the shib2 apache module on Debian pre Jessie.
- Fixed EL7 directory path for apache modules.
- Fixed validation error when empty array is passed for the rewrites parameter.
- Idempotency fixes with regards to '::apache::mod_enable_dir'.
- ITK fixes.
- (MODULES-2865) fix $mpm_module logic for 'false'.
- Set SSLProxy directives even if ssl is false, due to issue with RewriteRules and ProxyPass directives.
- Enable setting LimitRequestFieldSize globally, and remove it from vhost.
- apache::mod::php now uses FilesMatch to configure the php handler. This is following the recommended upstream configuration guidelines (http://php.net/manual/en/install.unix.apache2.php#example-20) and distribution's default config (e.g.: http://bazaar.launchpad.net/~ubuntu-branches/ubuntu/vivid/php5/vivid/view/head:/debian/php5.conf). It avoids inadvertently exposing the PHP handler to executing uploads with names like 'file.php.jpg', but might impact setups with unusual requirements.
- Improved compatibility for Gentoo.
- Vhosts can now be supplied with a wildcard listen value.
- Numerous test improvements.
- Removed workarounds for https://bz.apache.org/bugzilla/show_bug.cgi?id=38864 as the issues have been fixed in Apache.
- Documentation updates.
- Ensureed order of ProxyPass and ProxyPassMatch parameters.
- Ensure that ProxyPreserveHost is set to off mode explicitly if not set in manifest.
- Put headers and request headers before proxy with regards to template generation.
- Added X-Forwarded-For into log_formats defaults.
- (MODULES-2703) Allow mod pagespeed to take an array of lines as additional_configuration.
###Summary
Small release for support of newer PE versions. This increments the version of PE in the metadata.json file.
This release includes many new features and bugfixes. There are test, documentation and misc improvements.
- allow groups with - like vhost-users
- ability to enable/disable the secruleengine through a parameter
- add mod_auth_kerb parameters to vhost
- client auth for reverse proxy
- support for mod_auth_mellon
- change SSLProtocol in apache::vhost to be space separated
- RewriteLock support
- fix apache::mod::cgid so it can be used with the event MPM
- load unixd before fcgid on all operating systems
- fixes conditional in vhost aliases
- corrects mod_cgid worker/event defaults
- ProxyPassMatch parameters were ending up on a newline
- catch that mod_authz_default has been removed in Apache 2.4
- mod::ssl fails on SLES
- fix typo of MPM_PREFORK for FreeBSD package install
- install all modules before adding custom configs
- fix acceptance testing for SSLProtocol behaviour for real
- fix ordering issue with conf_file and ports_file
- mod_passenger is having issues installing on Redhat/Centos 6, This is due to package dependency issues.
- added docs for forcetype directive
- removes ruby 1.8.7 from the travisci test matrix
- readme reorganisation, minor fixups
- support the mod_proxy ProxyPassReverseCookiePath directive
- the purge_vhost_configs parameter is actually called purge_vhost_dir
- add ListenBacklog for mod worker
- deflate application/json by default
- install mod_authn_alias as default mod in debian for apache < 2.4
- optionally set LimitRequestFieldSize on an apache::vhost
- add SecUploadDir parameter to support file uploads with mod_security
- optionally set parameters for mod_ext_filter module
- allow SetOutputFilter to be set on a directory
- RC4 is deprecated
- allow empty docroot
- add option to configure the include pattern for the vhost_enable dir
- allow multiple IP addresses per vhost
- default document root update for Ubuntu 14.04 and Debian 8
This release includes a couple of new features, along with test and documentation updates, and support for the latest AIO puppet builds.
- Add
scan_proxy_header_fieldparameter toapache::mod::geoip - Add
ssl_openssl_conf_cmdparameter toapache::vhostandapache::mod::ssl - Add
filtersparameter toapache::vhost
- Test updates
- Do not use systemd on Amazon Linux
- Add missing docs for
timeoutparameter (MODULES-2148)
This release primarily adds Suse compatibility. It also adds a handful of other parameters for greater configuration control.
- Add
apache::lib_pathparameter - Add
apache::service_restartparameter - Add
apache::vhost::geoip_enableparameter - Add
apache::mod::geoipclass - Add
apache::mod::remoteipclass - Add parameters to
apache::mod::expiresclass - Add
index_style_sheethandling toapache::vhost::directories - Add some compatibility for SLES 11
- Add
apache::mod::ssl::ssl_sessioncachetimeoutparameter - Add
apache::mod::ssl::ssl_cryptodeviceparameter - Add
apache::mod::ssl::ssl_honorcipherorderparameter - Add
apache::mod::userdir::optionsparameter
- Document
apache::userparameter - Document
apache::groupparameter - Fix apache::dev on FreeBSD
- Fix proxy_connect on apache >= 2.2
- Validate log levels better
- Fix
apache::apache_namefor package and vhost - Fix Debian Jessie mod_prefork package name
- Fix alias module being declared even when vhost is absent
- Fix proxy_pass_match handling in vhost's proxy template
- Fix userdir access permissions
- Fix issue where the module was trying to use systemd on Amazon Linux.
This release corrects a metadata issue that has been present since release 1.2.0. The refactoring of apache::vhost to use puppetlabs-concat requires a version of concat newer than the version required in PE. If you are using PE 3.3.0 or earlier you will need to use version 1.1.1 or earlier of the puppetlabs-apache module.
###Summary
This release fixes the issue where the docroot was still managed even if the default vhosts were disabled and has many other features and bugfixes including improved support for 'deny' and 'require' as arrays in the 'directories' parameter under apache::vhost
- New parameters to
apachedefault_charsetdefault_type
- New parameters to
apache::vhostproxy_error_overridepassenger_app_env(MODULES-1776)proxy_dest_matchproxy_dest_reverse_matchproxy_pass_matchno_proxy_uris_match
- New parameters to
apache::mod::passengerpassenger_app_envpassenger_min_instances
- New parameter to
apache::mod::aliasicons_options
- New classes added under
apache::mod::*authn_fileauthz_defaultauthz_user
- Added support for 'deny' as an array in 'directories' under
apache::vhost - Added support for RewriteMap
- Improved support for FreeBSD. (Note: If using apache < 2.4.12, see the discussion here)
- Added check for deprecated options in directories and fail when they are unsupported
- Added gentoo compatibility
- Added proper array support for
requirein thedirectoriesparameter inapache::vhost - Added support for
setenvinside proxy locations
- Fix issue in
apache::vhostthat was preventing the scriptalias fragment from being included (MODULES-1784) - Install required
mod_ldappackage for EL7 (MODULES-1779) - Change default value of
maxrequestworkersinapache::mod::eventto be a multiple of the defaultThreadsPerChildof 25. - Use the correct
mod_preforkpackage name for trusty and jessie - Don't manage docroot when default vhosts are disabled
- Ensure resources notify
Class['Apache::Service']instead ofService['httpd'](MODULES-1829) - Change the loadfile name for
mod_passengersomod_proxywill load by default beforemod_passenger - Remove old Debian work-around that removed
passenger_extra.conf
This release has many new features and bugfixes, including the ability to optionally not trigger service restarts on config changes.
- New parameters -
apacheservice_manageuse_optional_includes
- New parameters -
apache::serviceservice_manage
- New parameters -
apache::vhostaccess_logsphp_flagsphp_valuesmodsec_disable_vhostmodsec_disable_idsmodsec_disable_ipsmodsec_body_limit
- Improved FreeBSD support
- Add ability to omit priority prefix if
$priorityis set to false - Add
apache::security::rule_linkdefine - Improvements to
apache::mod::*- Add
apache::mod::auth_casclass - Add
threadlimit,listenbacklog,maxrequestworkers,maxconnectionsperchildparameters toapache::mod::event - Add
apache::mod::filterclass - Add
root_grouptoapache::mod::php - Add
apache::mod::proxy_connectclass - Add
apache::mod::securityclass - Add
ssl_pass_phrase_dialogandssl_random_seed_bytes parameters toapache::mod::ssl` (MODULES-1719) - Add
status_pathparameter toapache::mod::status - Add
apache_versionparameter toapache::mod::version - Add
package_nameandmod_pathparameters toapache::mod::wsgi(MODULES-1458)
- Add
- Improved SCL support
- Add support for specifying the docroot
- Updated
_directories.erbto add support for SetEnv - Support multiple access log directives (MODULES-1382)
- Add passenger support for Debian Jessie
- Add support for not having puppet restart the apache service (MODULES-1559)
- For apache 2.4
mod_itkrequiresmod_prefork(MODULES-825) - Allow SSLCACertificatePath to be unset in
apache::vhost(MODULES-1457) - Load fcgid after unixd on RHEL7
- Allow disabling default vhost for Apache 2.4
- Test fixes
mod_versionis now built-in (MODULES-1446)- Sort LogFormats for idempotency
allow_encoded_slasheswas omitted fromapache::vhost- Fix documentation bug (MODULES-1403, MODULES-1510)
- Sort
wsgi_script_aliasesfor idempotency (MODULES-1384) - lint fixes
- Fix automatic version detection for Debian Jessie
- Fix error docs and icons path for RHEL7-based systems (MODULES-1554)
- Sort php_* hashes for idempotency (MODULES-1680)
- Ensure
mod::setenvifis included if needed (MODULES-1696) - Fix indentation in
vhost/_directories.erbtemplate (MODULES-1688) - Create symlinks on all distros if
vhost_enable_diris specified
This release features many improvements and bugfixes, including several new defines, a reworking of apache::vhost for more extensibility, and many new parameters for more customization. This release also includes improved support for strict variables and the future parser.
- Convert apache::vhost to use concat for easier extensions
- Test improvements
- Synchronize files with modulesync
- Strict variable and future parser support
- Added apache::custom_config defined type to allow validation of configs before they are created
- Added bool2httpd function to convert true/false to apache 'On' and 'Off'. Intended for internal use in the module.
- Improved SCL support
- allow overriding of the mod_ssl package name
- Add support for reverse_urls/ProxyPassReverse in apache::vhost
- Add satisfy directive in apache::vhost::directories
- Add apache::fastcgi::server defined type
- New parameters - apache
- allow_encoded_slashes
- apache_name
- conf_dir
- default_ssl_crl_check
- docroot
- logroot_mode
- purge_vhost_dir
- New parameters - apache::vhost
- add_default_charset
- allow_encoded_slashes
- logroot_ensure
- logroot_mode
- manage_docroot
- passenger_app_root
- passenger_min_instances
- passenger_pre_start
- passenger_ruby
- passenger_start_timeout
- proxy_preserve_host
- redirectmatch_dest
- ssl_crl_check
- wsgi_chunked_request
- wsgi_pass_authorization
- Add support for ScriptAlias and ScriptAliasMatch in the apache::vhost::aliases parameter
- Add support for rewrites in the apache::vhost::directories parameter
- If the service_ensure parameter in apache::service is set to anything other than true, false, running, or stopped, ensure will not be passed to the service resource, allowing for the service to not be managed by puppet
- Turn of SSLv3 by default
- Improvements to apache::mod*
- Add restrict_access parameter to apache::mod::info
- Add force_language_priority and language_priority parameters to apache::mod::negotiation
- Add threadlimit parameter to apache::mod::worker
- Add content, template, and source parameters to apache::mod::php
- Add mod_authz_svn support via the authz_svn_enabled parameter in apache::mod::dav_svn
- Add loadfile_name parameter to apache::mod
- Add apache::mod::deflate class
- Add options parameter to apache::mod::fcgid
- Add timeouts parameter to apache::mod::reqtimeout
- Add apache::mod::shib
- Add apache_version parameter to apache::mod::ldap
- Add magic_file parameter to apache::mod::mime_magic
- Add apache_version parameter to apache::mod::pagespeed
- Add passenger_default_ruby parameter to apache::mod::passenger
- Add content, template, and source parameters to apache::mod::php
- Add apache_version parameter to apache::mod::proxy
- Add loadfiles parameter to apache::mod::proxy_html
- Add ssl_protocol and package_name parameters to apache::mod::ssl
- Add apache_version parameter to apache::mod::status
- Add apache_version parameter to apache::mod::userdir
- Add apache::mod::version class
- Set osfamily defaults for wsgi_socket_prefix
- Support multiple balancermembers with the same url
- Validate apache::vhost::custom_fragment
- Add support for itk with mod_php
- Allow apache::vhost::ssl_certs_dir to not be set
- Improved passenger support for Debian
- Improved 2.4 support without mod_access_compat
- Support for more than one 'Allow from'-directive in _directories.erb
- Don't load systemd on Amazon linux based on CentOS6 with apache 2.4
- Fix missing newline in ModPagespeed filter and memcached servers directive
- Use interpolated strings instead of numbers where required by future parser
- Make auth_require take precedence over default with apache 2.4
- Lint fixes
- Set default for php_admin_flags and php_admin_values to be empty hash instead of empty array
- Correct typo in mod::pagespeed
- spec_helper fixes
- Install mod packages before dealing with the configuration
- Use absolute scope to check class definition in apache::mod::php
- Fix dependency loop in apache::vhost
- Properly scope variables in the inline template in apache::balancer
- Documentation clarification, typos, and formatting
- Set apache::mod::ssl::ssl_mutex to default for debian on apache >= 2.4
- Strict variables fixes
- Add authn_core mode to Ubuntu trusty defaults
- Keep default loadfile for authz_svn on Debian
- Remove '.conf' from the site-include regexp for better Ubuntu/Debian support
- Load unixd before fcgid for EL7
- Fix RedirectMatch rules
- Fix misleading error message in apache::version
- By default, the version of Apache that ships with Ubuntu 10.04 does not work with
wsgi_import_script. - SLES is unsupported.
This release merely updates metadata.json so the module can be uninstalled and upgraded via the puppet module command.
This release primarily focuses on extending the httpd 2.4 support, tested through adding RHEL7 and Ubuntu 14.04 support. It also includes Passenger 4 support, as well as several new modules and important bugfixes.
- Add support for RHEL7 and Ubuntu 14.04
- More complete apache24 support
- Passenger 4 support
- Add support for max_keepalive_requests and log_formats parameters
- Add mod_pagespeed support
- Add mod_speling support
- Added several parameters for mod_passenger
- Added ssl_cipher parameter to apache::mod::ssl
- Improved examples in documentation
- Added docroot_mode, action, and suexec_user_group parameters to apache::vhost
- Add support for custom extensions for mod_php
- Improve proxy_html support for Debian
- Remove NameVirtualHost directive for apache >= 2.4
- Order proxy_set option so it doesn't change between runs
- Fix inverted SSL compression
- Fix missing ensure on concat::fragment resources
- Fix bad dependencies in apache::mod and apache::mod::mime
- By default, the version of Apache that ships with Ubuntu 10.04 does not work with
wsgi_import_script. - SLES is unsupported.
This is a supported release. This release removes a testing symlink that can cause trouble on systems where /var is on a seperate filesystem from the modulepath.
- By default, the version of Apache that ships with Ubuntu 10.04 does not work with
wsgi_import_script. - SLES is unsupported.
This is a supported release. This release introduces Apache 2.4 support for Debian and RHEL based osfamilies.
- Add apache24 support
- Add rewrite_base functionality to rewrites
- Updated README documentation
- Add WSGIApplicationGroup and WSGIImportScript directives
- Replace mutating hashes with merge() for Puppet 3.5
- Fix WSGI import_script and mod_ssl issues on Lucid
- By default, the version of Apache that ships with Ubuntu 10.04 does not work with
wsgi_import_script. - SLES is unsupported.
This release adds preliminary support for Windows compatibility and multiple rewrite support.
- The rewrite_rule parameter is deprecated in favor of the new rewrite parameter and will be removed in a future release.
- add Match directive
- quote paths for windows compatibility
- add auth_group_file option to README.md
- allow AuthGroupFile directive for vhosts
- Support Header directives in vhost context
- Don't purge mods-available dir when separate enable dir is used
- Fix the servername used in log file name
- Added support for mod_include
- Remove index parameters.
- Support environment variable control for CustomLog
- added redirectmatch support
- Setting up the ability to do multiple rewrites and conditions.
- Convert spec tests to beaker.
- Support php_admin_(flag|value)s
- directories are either a Hash or an Array of Hashes
- Configure Passenger in separate .conf file on RH so PassengerRoot isn't lost
- (docs) Update list of
apache::mod::[name]classes - (docs) Fix apache::namevirtualhost example call style
- Fix $ports_file reference in apache::listen.
- Fix $ports_file reference in Namevirtualhost.
This release adds FreeBSD osfamily support and various other improvements to some mods.
- Add suPHP_UserGroup directive to directory context
- Add support for ScriptAliasMatch directives
- Set SSLOptions StdEnvVars in server context
- No implicit entry for ScriptAlias path
- Add support for overriding ErrorDocument
- Add support for AliasMatch directives
- Disable default "allow from all" in vhost-directories
- Add WSGIPythonPath as an optional parameter to mod_wsgi.
- Add mod_rpaf support
- Add directives: IndexOptions, IndexOrderDefault
- Add ability to include additional external configurations in vhost
- need to use the provider variable not the provider key value from the directory hash for matches
- Support for FreeBSD and few other features
- Add new params to apache::mod::mime class
- Allow apache::mod to specify module id and path
- added $server_root parameter
- Add Allow and ExtendedStatus support to mod_status
- Expand vhost/_directories.pp directive support
- Add initial support for nss module (no directives in vhost template yet)
- added peruser and event mpms
- added $service_name parameter
- add parameter for TraceEnable
- Make LogLevel configurable for server and vhost
- Add documentation about $ip
- Add ability to pass ip (instead of wildcard) in default vhost files
- Don't listen on port or set NameVirtualHost for non-existent vhost
- only apply Directory defaults when provider is a directory
- Working mod_authnz_ldap support on Debian/Ubuntu
This release adds more parameters to the base apache class and apache defined resource to make the module more flexible. It also adds or enhances SuPHP, WSGI, and Passenger mod support, and support for the ITK mpm module.
- Remove many default mods that are not normally needed.
- Remove
rewrite_baseapache::vhostparameter; did not work anyway. - Specify dependencies on stdlib >=2.4.0 (this was already the case, but making explicit)
- Deprecate
a2modin favor of theapache::mod::*classes andapache::moddefined resource.
apacheclass- Add
httpd_dirparameter to change the location of the configuration files. - Add
logrootparameter to change the logroot - Add
ports_fileparameter to changes theports.conffile location - Add
keepaliveparameter to enable persistent connections - Add
keepalive_timeoutparameter to change the timeout - Update
default_modsto be able to take an array of mods to enable.
- Add
apache::vhost- Add
wsgi_daemon_process,wsgi_daemon_process_options,wsgi_process_group, andwsgi_script_aliasesparameters for per-vhost WSGI configuration. - Add
access_log_syslogparameter to enable syslogging. - Add
error_log_syslogparameter to enable syslogging of errors. - Add
directorieshash parameter. Please see README for documentation. - Add
sslproxyengineparameter to enable SSLProxyEngine - Add
suphp_addhandler,suphp_engine, andsuphp_configpathfor configuring SuPHP. - Add
custom_fragmentparameter to allow for arbitrary apache configuration injection. (Feature pull requests are prefered over using this, but it is available in a pinch.)
- Add
- Add
apache::mod::suphpclass for configuring SuPHP. - Add
apache::mod::itkclass for configuring ITK mpm module. - Update
apache::mod::wsgiclass for global WSGI configuration withwsgi_socket_prefixandwsgi_python_homeparameters. - Add README.passenger.md to document the
apache::mod::passengerusage. Addedpassenger_high_performance,passenger_pool_idle_time,passenger_max_requests,passenger_stat_throttle_rate,rack_autodetect, andrails_autodetectparameters. - Separate the httpd service resource into a new
apache::serviceclass for dependency chaining ofClass['apache'] -> <resource> ~> Class['apache::service'] - Added
apache::mod::proxy_balancerclass forapache::balancer
- Change dependency to puppetlabs-concat
- Fix ruby 1.9 bug for
a2mod - Change servername to be
$::hostnameif there is no$::fqdn - Make
/etc/ssl/certsthe default ssl certs directory for RedHat non-5. - Make
phpthe default php package for RedHat non-5. - Made
aliasesable to take a single alias hash instead of requiring an array.
- Update
apache::mpm_moduledetection for worker/prefork - Update
apache::mod::cgiandapache::mod::cgiddetection for worker/prefork
- Add
servernameparameter toapacheclass - Add
proxy_setparameter toapache::balancerdefine
- Fix ordering for multiple
apache::balancerclusters - Fix symlinking for sites-available on Debian-based OSs
- Fix dependency ordering for recursive confdir management
- Fix
apache::mod::*to notify the service on config change - Documentation updates
- Essentially rewrite the module -- too many to list
apache::vhosthas many abilities -- see README.md for detailsapache::mod::*classes provide httpd mod-loading capabilitiesapachebase class is much more configurable
- Many. And many more to come
- update travis tests (add more supported versions)
- add access log_parameter
- make purging of vhost dir configurable
include apacheis now required when usingapache::mod::*
- Fix syntax for validate_re
- Fix formatting in vhost template
- Fix spec tests such that they pass
2012-05-08 Puppet Labs [email protected] - 0.0.4
- e62e362 Fix broken tests for ssl, vhost, vhost::*
- 42c6363 Changes to match style guide and pass puppet-lint without error
- 42bc8ba changed name => path for file resources in order to name namevar by it's name
- 72e13de One end too much
- 0739641 style guide fixes: 'true' <> true,
$operatingsystem needs to be $ ::operatingsystem, etc. - 273f94d fix tests
- a35ede5 (#13860) Make a2enmod/a2dismo commands optional
- 98d774e (#13860) Autorequire Package['httpd']
- 05fcec5 (#13073) Add missing puppet spec tests
- 541afda (#6899) Remove virtual a2mod definition
- 976cb69 (#13072) Move mod python and wsgi package names to params
- 323915a (#13060) Add .gitignore to repo
- fdf40af (#13060) Remove pkg directory from source tree
- fd90015 Add LICENSE file and update the ModuleFile
- d3d0d23 Re-enable local php class
- d7516c7 Make management of firewalls configurable for vhosts
- 60f83ba Explicitly lookup scope of apache_name in templates.
- f4d287f (#12581) Add explicit ordering for vdir directory
- 88a2ac6 (#11706) puppetlabs-apache depends on puppetlabs-firewall
- a776a8b (#11071) Fix to work with latest firewall module
- 2b79e8b (#11070) Add support for Scientific Linux
- 405b3e9 Fix for a2mod
- 57b9048 Commit apache::vhost::redirect Manifest
- 8862d01 Commit apache::vhost::proxy Manifest
- d5c1fd0 Commit apache::mod::wsgi Manifest
- a825ac7 Commit apache::mod::python Manifest
- b77062f Commit Templates
- 9a51b4a Vhost File Declarations
- 6cf7312 Defaults for Parameters
- 6a5b11a Ensure installed
- f672e46 a2mod fix
- 8a56ee9 add pthon support to apache