From a981abf0044523f786093e08e949f89632f35265 Mon Sep 17 00:00:00 2001 From: GitHub Actions Date: Wed, 5 Mar 2025 06:55:12 +0000 Subject: [PATCH] Release prep v12.3.0 --- CHANGELOG.md | 13 ++++++++++--- REFERENCE.md | 27 +++++++++++++++++++++++++++ 2 files changed, 37 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index e4de837f2..b7f8d4cf7 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,19 +5,26 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/) and this project adheres to [Semantic Versioning](http://semver.org). -## [v12.3.0](https://github.com/puppetlabs/puppetlabs-apache/tree/v12.3.0) - 2024-12-16 +## [v12.3.0](https://github.com/puppetlabs/puppetlabs-apache/tree/v12.3.0) - 2025-03-05 [Full Changelog](https://github.com/puppetlabs/puppetlabs-apache/compare/v12.2.0...v12.3.0) ### Added +- Allow configuring RemoteIPProxyProtocol at VHost level [#2582](https://github.com/puppetlabs/puppetlabs-apache/pull/2582) ([smortex](https://github.com/smortex)) - (CAT-2100) Add Debian 12 support [#2572](https://github.com/puppetlabs/puppetlabs-apache/pull/2572) ([shubhamshinde360](https://github.com/shubhamshinde360)) +- Feature: Allow to set the verbosity of the debug [#2523](https://github.com/puppetlabs/puppetlabs-apache/pull/2523) ([JGodin-C2C](https://github.com/JGodin-C2C)) ### Fixed - (CAT-2158) Upgrade rexml to address CVE-2024-49761 [#2579](https://github.com/puppetlabs/puppetlabs-apache/pull/2579) ([amitkarsale](https://github.com/amitkarsale)) - Update types/oidcsettings UserInfoRefreshInterval to allow Integers again [#2578](https://github.com/puppetlabs/puppetlabs-apache/pull/2578) ([gcoxmoz](https://github.com/gcoxmoz)) +### Other + +- Fix mod_headers load for headers in directory #2590 [#2591](https://github.com/puppetlabs/puppetlabs-apache/pull/2591) ([uoe-pjackson](https://github.com/uoe-pjackson)) +- Adding ModSecurity parameter for audit log format. [#2583](https://github.com/puppetlabs/puppetlabs-apache/pull/2583) ([Tamerz](https://github.com/Tamerz)) + ## [v12.2.0](https://github.com/puppetlabs/puppetlabs-apache/tree/v12.2.0) - 2024-10-23 [Full Changelog](https://github.com/puppetlabs/puppetlabs-apache/compare/v12.1.0...v12.2.0) @@ -118,7 +125,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/) a - (CAT-1283) - Enable forensic module [#2442](https://github.com/puppetlabs/puppetlabs-apache/pull/2442) ([Ramesh7](https://github.com/Ramesh7)) - (CAT-1281) - Support to add cipher with respective ssl protocol [#2440](https://github.com/puppetlabs/puppetlabs-apache/pull/2440) ([Ramesh7](https://github.com/Ramesh7)) - feat: add Debian12 Compability [#2439](https://github.com/puppetlabs/puppetlabs-apache/pull/2439) ([Robnarok](https://github.com/Robnarok)) -- Add MellonSetEnv support [#2423](https://github.com/puppetlabs/puppetlabs-apache/pull/2423) ([ic248](https://github.com/ic248)) +- Add MellonSetEnv support [#2423](https://github.com/puppetlabs/puppetlabs-apache/pull/2423) ([](https://github.com/)) - Add the missing mod_authnz_ldap parameters [#2404](https://github.com/puppetlabs/puppetlabs-apache/pull/2404) ([chutzimir](https://github.com/chutzimir)) ### Fixed @@ -667,7 +674,7 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/) a ### Fixed -- (MODULES-9014) Improve SSLSessionTickets handling [#1923](https://github.com/puppetlabs/puppetlabs-apache/pull/1923) ([FredericLespez](https://github.com/FredericLespez)) +- (MODULES-9014) Improve SSLSessionTickets handling [#1923](https://github.com/puppetlabs/puppetlabs-apache/pull/1923) ([FredL69](https://github.com/FredL69)) - (MODULES-8931) Fix stahnma/epel failures [#1914](https://github.com/puppetlabs/puppetlabs-apache/pull/1914) ([eimlav](https://github.com/eimlav)) - Fix wsgi_daemon_process to support hash data type [#1884](https://github.com/puppetlabs/puppetlabs-apache/pull/1884) ([mdechiaro](https://github.com/mdechiaro)) diff --git a/REFERENCE.md b/REFERENCE.md index 8c84b6ca0..76106a38a 100644 --- a/REFERENCE.md +++ b/REFERENCE.md @@ -6072,6 +6072,7 @@ The following parameters are available in the `apache::mod::security` class: * [`custom_rules_set`](#-apache--mod--security--custom_rules_set) * [`modsec_dir`](#-apache--mod--security--modsec_dir) * [`modsec_secruleengine`](#-apache--mod--security--modsec_secruleengine) +* [`debug_log_level`](#-apache--mod--security--debug_log_level) * [`audit_log_relevant_status`](#-apache--mod--security--audit_log_relevant_status) * [`audit_log_parts`](#-apache--mod--security--audit_log_parts) * [`audit_log_type`](#-apache--mod--security--audit_log_type) @@ -6170,6 +6171,14 @@ Configures the rules engine. Default value: `$apache::params::modsec_secruleengine` +##### `debug_log_level` + +Data type: `Integer[0, 9]` + +Configures the debug log level. + +Default value: `0` + ##### `audit_log_relevant_status` Data type: `String` @@ -7910,6 +7919,8 @@ The following parameters are available in the `apache::vhost` defined type: * [`mdomain`](#-apache--vhost--mdomain) * [`proxy_requests`](#-apache--vhost--proxy_requests) * [`userdir`](#-apache--vhost--userdir) +* [`proxy_protocol`](#-apache--vhost--proxy_protocol) +* [`proxy_protocol_exceptions`](#-apache--vhost--proxy_protocol_exceptions) ##### `access_log` @@ -10838,6 +10849,22 @@ Instances of apache::mod::userdir Default value: `undef` +##### `proxy_protocol` + +Data type: `Optional[Boolean]` + +Enable or disable PROXY protocol handling + +Default value: `undef` + +##### `proxy_protocol_exceptions` + +Data type: `Array[Stdlib::Host]` + +Disable processing of PROXY header for certain hosts or networks + +Default value: `[]` + ### `apache::vhost::custom` The `apache::vhost::custom` defined type is a thin wrapper around the `apache::custom_config` defined type, and simply overrides some of its default settings specific to the virtual host directory in Apache.