git.adam-barratt.org.uk Git - mirror/dsa-puppet.git/commit

author	Peter Palfrader <peter@palfrader.org>
	Sun, 15 Sep 2019 17:59:31 +0000 (19:59 +0200)
committer	Peter Palfrader <peter@palfrader.org>
	Sun, 15 Sep 2019 17:59:31 +0000 (19:59 +0200)
commit	6cd11592f10a9294b671b06b8641df66354dae52
tree	d37e28cd2adc1ee9053dda580dae1c3ca6a99245	tree \| snapshot
parent	dd6cf6aa396cb762a80e430b4e38d961a8e124b2	commit \| diff

Retire the apache_ratelimited role

And introduce a rate_limit param to the apache2 class.  The
bugs_web role sets that option to true on inclusion, as does
the packages role.

The snapshot role had slightly different rate limiting in the
apache class.  This has now been removed in favor of rate limiting
in the snapshot_web class.

To enable this, all web traffic (even on not-ratelimited systems)
is sent to the http chain.  At the end, all traffic gets accepted
and services that want to interfere can do things before prio 90.

hieradata/common.yaml		diff \| blob \| history
modules/apache2/manifests/dynamic.pp		diff \| blob \| history
modules/apache2/manifests/init.pp		diff \| blob \| history
modules/roles/manifests/bugs_web.pp		diff \| blob \| history
modules/roles/manifests/packages.pp		diff \| blob \| history
modules/roles/manifests/snapshot_web.pp		diff \| blob \| history