Ewoud Kohl van Wijngaarden
Ewoud Kohl van Wijngaarden
This raises a deprecation warning in Ruby 2.7 and breaks in Ruby 3.
I'll admit I didn't run the tests and rely on CI, but I think this results in the same values. Just easier to read.
It has been a long time since the defaults were updated. This results in a safer out-of-the-box deployment, matching what the vendors do. For reference, EL7 has `SSLCipherSuite HIGH:3DES:!aNULL:!MD5:!SEED:!IDEA` and...
Following https://httpd.apache.org/docs/current/howto/http2.html the first step is to load the http2 module. By inspecting the protocols argument users can enable HTTP/2 via Hiera.
This is likely incomplete and untested at the moment. However, it shows how big the cleanup is.
While it is a parameter for apache::vhost, this allows setting it server wide just like SSLCipherSuite.
This attempts to unify SELinux handling in the tests. It moves the package installation to the acceptance spec helper to reduce duplication. It then makes the set_apache_defaults line idempotent and...
Rather than hacking around in Ruby, this rewrites it in native Puppet.
This job runs weekly (or explicitly manual). It lists the languages in a way that GitHub Actions can reuse it in a matrix. Then for every language it updates the...
The puppetdb user doesn't need to write to the config (it's managed by Puppet after all) so setting the owner to root and using the group to only read is...