Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(MODULES-11061) mod_security custom rule functionality #2145

Merged
merged 1 commit into from
May 17, 2021
Merged

(MODULES-11061) mod_security custom rule functionality #2145

merged 1 commit into from
May 17, 2021

Conversation

k2patel
Copy link
Contributor

@k2patel k2patel commented Apr 29, 2021

Basic Info
Module Version: 6.0.0
Puppet Version: 6.21.1
OS Name/Version: RHEL

Apache module activates the mod_security, but there is no way to manage custom rules.

For example, to override rules or create rules, etc.

Desired Behavior:

Allow adding custom rules to the security configuration.

Actual Behavior:

Functionality does not exist.

@k2patel k2patel requested a review from a team as a code owner April 29, 2021 18:04
@puppet-community-rangefinder
Copy link

apache::mod::security is a class

that may have no external impact to Forge modules.

apache::params is a class

Breaking changes to this file WILL impact these 16 modules (exact match):
Breaking changes to this file MAY impact these 11 modules (near match):

This module is declared in 175 of 576 indexed public Puppetfiles.

These results were generated with Rangefinder, a tool that helps predict the downstream impact of breaking changes to elements used in Puppet modules. You can run this on the command line to get a full report.

Exact matches are those that we can positively identify via namespace and the declaring modules' metadata. Non-namespaced items, such as Puppet 3.x functions, will always be reported as near matches only.

@k2patel
Copy link
Contributor Author

k2patel commented Apr 29, 2021

Failed checks are not related to the merge.

@DavidS DavidS changed the title MODULES-11061 apache : mod security custom rule functionality (MODULES-11061) mod_security custom rule functionality May 10, 2021
@david22swan
Copy link
Member

@k2patel This change looks good but to go in I'd like it to have some positive test cases, not just the negative ones that you have included.
Once that's done I would be happy to merge.

@k2patel
Copy link
Contributor Author

k2patel commented May 11, 2021
edited
Loading

@k2patel This change looks good but to go in I'd like it to have some positive test cases, not just the negative ones that you have included.
Once that's done I would be happy to merge.

@david22swan This should be done, let me know if that works.

@k2patel
MODULES-11061 apache : mod security custom rule functionality
2577bd9 
Reducing the string size for matching with wildcard

Changing regex based on suggestion from the tests
@k2patel
Copy link
Contributor Author

k2patel commented May 14, 2021

@david22swan is there any time frame when it would be merged?

david22swan
david22swan approved these changes May 17, 2021
View reviewed changes
Copy link
Member

@david22swan david22swan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@pmcmaw
Copy link
Contributor

pmcmaw commented May 17, 2021

Test updates LGTM. :-)

@david22swan
Copy link
Member

@k2patel Thanks for putting in the work and getting responding to my comments in such a speedy manner.
With your changes in I am now happy to merge!

Thank you again for putting in the effort.

@david22swan david22swan merged commit e44f100 into puppetlabs:main May 17, 2021
@pmcmaw pmcmaw added the feature label May 17, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@david22swan david22swan david22swan approved these changes

Assignees
No one assigned
Labels
feature
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@k2patel @david22swan @pmcmaw