9.3.2

Update metadata for 9.3.2

v7.0.0

7.0.0 (05-03-2019)

• Remove all recipes
• Use declare_resource in apache2_module
• Add default value to apache_2_mod_proxy
• Fix spelling of default in access_file_name property in install.rb

Custom Resources

See UPGRADING.md for upgrading.

v6 - Behaviour Changes

• Default recipe now calls the install resource
• Add helpers: for a full list see libraries/helpers.rb
• Remove all mpm_ recipes. Move mpm setup to the install resource
• Allow user to set the mpm mode no matter what platform they're on
• Remove FreeBSD, openSuse & Fedora Kitchen testing
• mod_ recipes now call apache2_module_
• Mod templates are now more configurable when calling the resources directly
• Add apache2_default_site resource
• Remove and document apache2_webapp resource
• Add the default_site resource for managing the default site
• Add site resource
• Remove the web_app resource as it was very perscriptive
• Add mod_ssl

v6 - Testing/CI

• Add CircleCI and remove Travis
• Add CircleCI Orbs
• Rename test cookbook name to test
• Cleanup test integration directory
• Specs added for most helpers
• Make sysconfig parameters configurable via the install resource

v6 - Misc Updates & Improvements

• Update README with new instructions on installing
• Set the server to listen on ports 80 and 443 by default
• Fix Options allowed in alias.conf
• Add resource documentation to documentation directory

v3.3.0 (2017-04-11)

• [GH-478] Added support for the amazon platform_family, outside of rhel
• [GH-474] Update Berksfile to allow fetching of newer
• [GH-473] Update copyright header format
• [GH-472] foodcritic: add sous-chefs rules
• add CODE_OF_CONDUCT
• [GH-471] FCGI paths should not be messed with on RHEL/CenOS 7. CentOS 7 (and recent Fedoras) have Apache 2.4, where FCGI socket path and shared memory path is managed adequately without further involvment neccessary (subdirectory is created under /var/run/httpd).
• [GH-470] Remove support for EOL Fedora < 18 / FreeBSD 9
• [GH-465] Testing updates
• [GH-469] Use the default cookbook style rules
• [GH-460] Serverspec to InSpec migration
• [GH-461] Update comment header format & other cookstyle fixes
• [GH-454] Test in Travis with Chef-DK and a Rakefile
• [GH-455] openSUSE Leap has it's own platform name
• [GH-279] leave stubs for rhel family conf.d files to avoid conflicts on package upgrade; no longer remove conf.d, just don't use it
• [GH-427] Add option to configure custom log level
• [GH-450] Ensure the lock_dir is owned by www-data for Apache 2.2 and 2.4 on Debian/Ubuntu
• Remove mod_auth_openid tests, as it is not part of the ASF release and plan to drop support for it and right now it is failing our tests
• [GH-440] Update default values in apache.prefork section of README
• [GH-443] fixed typo in copyright year
• Test on the latest chef with chef-zero
• Update supported platforms to Ubuntu 16.04, Debian 8.4, Centos 7.2; deprecating Ubuntu 12.04
• [GH-422] Fix uniq for nil:NilClass error introduced in 3.2.2
• [GH-423] allow for apache 2.4 usage on rhel < 7.0
• Cookbook is now part of the sous-chefs, but still maintained by the same folks
• mod_perl: No longer install libapache2-mpm-prefork
• mod_php: renamed mod_php5 to more generic mod_php; using php 7.0 where available

v3.2.2 (2016-04-13)

• [GH-420] Allow auto-conversion if either of apache.listen_ports or apache.listen_addresses are set rather than '&&'. This ensures conversion occurs if only one of the two is set.

v3.2.1 (2016-04-11)

• [GH-225] notify restart instead of reload service on apache_conf, apache_config
• Update to foodcritic 6

v3.2.0 (2016-03-26)

• [GH-378] Deprecates apache.listen_addresses and apache.listen_ports infavor of [GH-409]
• [GH-409] apache.listen now accepts an array of addr:port strings
• [GH-358] FreeBSD: Update 10.1 support; Adds php 5.6 in collaboration with sous-chefs/php#119
• [GH-394] Have apache.prefork.serverlimit set ServerLimit directive on 2.4
• [GH-363] Escape '.' in regex for .htaccess/.htpasswd files
• [GH-365] Force log directory creation to be recursive
• [GH-368] Change the service creation to use the apache.service_name attribute throughout
• [GH-374] Make metadata.rb compatible with chef versions < 12.
• [GH-382] Fixed typo in node['platform_family'] for NameError in mod_proxy_html
• [GH-369] README: Added on Ubuntu mod_fastcgi requires multiverse apt repository to enabled.
• [GH-381] README: Add missing backtick
• [GH-384] README: Fix names for a2enconf and a2disconf
• [GH-393] README: mention availability of mod_actions support
• [GH-383] Debian: Add possibility to use other releases via apache.default_release
• [GH-377] Restart service when including mod_headers to allow healing of failed service because of missing directives.
• [GH-416] Change the default of apache.mod_fastcgi.install_method to 'package' all platforms, as source is no longer available.
• [GH-401] Move mod_deflate to apache.default_modules and no longer force installation on debian families.
• [GH-386] Do not install an extra mod_ssl package on SUSE Linux Enterprise
• [GH-335] Do not hardcoded reload/restart on more modern rhel platforms, allowing systemd on CentOS 7
• [GH-375] Install package mod_ldap on CentOS 7 (triggered by apache.version == 2.4)
• Update apache.mod_ssl.cipher_suite to latest from https://bettercrypto.org/
• README: Re-organize README to make it easier to find usage and remove old references.
• Added new standard and missing modules (Note: these may not be available natively on all operating systems)
  • mod_http2 - Support for the HTTP/2 transport layer. (available since 2.4.17)
  • mod_authnz_fcgi - Enable FastCGI authorizer applications to authenticate and/or authorize clients. (available since 2.4.10)
  • mod_cern_meta - CERN httpd metafile semantics
  • mod_ident - RFC 1413 ident lookups
  • mod_privileges - Support for Solaris privileges and for running virtual hosts under different user IDs.
  • mod_socache_dc - Distcache based shared object cache provider.
  • mod_version - Version dependent configuration
  • mod_watchdog - Provides infrastructure for other modules to periodically run tasks

v3.1.0 (2015-05-25)

• [GH-315] Fix apache.default_site_name .conf extension references to ensure deletion
• [GH-258] Use apache.default_site_name for consistency, minimize hardcoding of filenames
• [GH-259] Add && sleep 1 to end of apache restart command on rhel-based systems using apache2.2
• [GH-271] Remove FreeBSD 9.x, Red Hat and CentOS 5.x and OpenSUSE 11.x Series from tests and focus on newer releases
• [GH-276] Add psych gem to development gems
• [GH-293] Add apache.mod_fastcgi.install_method flag to allow install of mod_fastcgi from source (even on Debian family)
• [GH-285] Made apache.devel_package configurable based on platform, including support for Amazon Linux.
• [GH-316] Update Opscode references to Chef
• [GH-318] Apply default recipe in all definitions
• [GH-320] Add attribute to adjust apache.default_site_port
• [GH-321] Fix issue with default_site name in not_if guards
• [GH-322] Add apache.mod_ssl.pkg_name to allow custom mod_ssl package names. Set defaults for supported platforms including Amazon Linux
• [GH-323] Don't create the default site configuration file in sites-available unless it is enabled.
• [GH-324] Add apache.mod_ssl.port to set the default ssl port to something other than 443
• [GH-328] Add the ability to pass in a pipe as to log
• [GH-332] SSLStrictSNIVHostCheck is only written to config if enabled to avoid breaking apache prior to 2.2.12.
• [GH-334] Removed iptables, god-monitor, and logrotate recipes to avoid having external dependencies. These services should be managed in a wrapper cookbook going forward.
• [GH-339] Allow custom names for php so_filename (node['apache']['mod_php5']['so_filename'])

v3.0.1 (2015-02-11)

• [GH-310] Ubuntu Apache 2.2 requires the lock_dir to be owned by www-data
• [GH-309] Clarify that apache.version is a string
• [GH-305] Restart service after MPM changes
• [GH-304] Don't install systemd module on Amazon Linux
• [GH-298] Add non-threaded MPM break notice for PHP users
• [GH-296] Create lock_dir automatically

v3.0.0 (2014-11-30)

Major version update because of SSL Improvements and new platform MPM and Version defaults.

• [GH-286] Refactor MPM and Apache version defaults: default is now apache 2.4
• [GH-281] mod_ssl: Disable SSLv3 by default to protect against POODLE attack (CVE-2014-3566)
• [GH-280] mod_ssl: Major update with modern Cipher Suite, and best practices.
  Updated to a more modern default apache.mod_ssl.cipher_suite.
  Added the following additional mod_ssl attributes
  • apache.mod_ssl.honor_cipher_order
  • apache.mod_ssl.insecure_renegotiation
  • apache.mod_ssl.strict_sni_vhost_check
  • apache.mod_ssl.session_cache_timeout
  • apache.mod_ssl.compression
  • apache.mod_ssl.use_stapling
  • apache.mod_ssl.stapling_responder_timeout
  • apache.mod_ssl.stapling_return_responder_errors
  • apache.mod_ssl.stapling_cache
  • apache.mod_ssl.pass_phrase_dialog
  • apache.mod_ssl.mutex
  • apache.mod_ssl.directives
• [GH-278] Improved chefspec tests execution time
• [GH-277] Optimize files watching for Guard on Win32 platform
• [GH-270] Don't attempt start until after configuration is written
• [GH-268] Now uses chefspec 4.1
• [GH-267] Use Supermarket as the Berkshelf 3 source
• [GH-266] Rubocop based ruby style/syntax improvements
• [GH-264] mod_ssl: Add new attribute for to be ready to any custom directive
• [GH-249] Don't prepend Apache log path when requesting error logging to syslog
• [GH-247] Explicitly include mod_ldap before mod_authnz_ldap
• [GH-243] Expand mpm options for different distros/versions.
• [GH-239] Added apache.mod_php5.install_method attribute defaults to package. Install packages unless PHP is compiled from source.
• OneHealth Solutions was acquired by Viverae
• Remove ArchLinux pacman as a dependency and handle similar to apt, yum, zypper
• Adjust ubuntu apache 2.4 docroot_dir to match package (from /var/www to /var/www/html)
• [GH-238] Bump service config syntax check guard timeout to 10 seconds
• [GH-235] Removed apache2::mpm_itk which is not part of core and therefore should be its own cookbook
• [GH-234] /var/run/httpd/mod_fcgid directory now belongs to apache on Fedora/RHEL systems.
• [GH-233] Default web_app template should return 503 status code when maintenance file is present
• [GH-232] Cookbook now deletes a2* if they are symlinks before dropping template versions
• [GH-222] Set TraceEnable to off by default.
• [GH-213] Adjust chefspec to use the package resource on FreeBSD (previously freebsd_package)
• [GH-212] New attribute apache.locale which sets LANG. defaults to 'C'
• [GH-210] Clarify web_app definition usage around configuration templates.
• [GH-208] apache_conf now accepts source and