|
562 | 562 | # for the Collaborative Detection Mode in the OWASP ModSecurity Core Rule |
563 | 563 | # Set. |
564 | 564 | # |
| 565 | +# @param modsec_allowed_methods |
| 566 | +# Override global allowed methods. A space-separated list of allowed HTTP methods. |
| 567 | +# |
565 | 568 | # @param no_proxy_uris |
566 | 569 | # Specifies URLs you do not want to proxy. This parameter is meant to be used in combination |
567 | 570 | # with [`proxy_dest`](#proxy_dest). |
|
1913 | 1916 | Optional[String] $modsec_body_limit = undef, |
1914 | 1917 | Optional[Integer[1, default]] $modsec_inbound_anomaly_threshold = undef, |
1915 | 1918 | Optional[Integer[1, default]] $modsec_outbound_anomaly_threshold = undef, |
| 1919 | + Optional[String] $modsec_allowed_methods = undef, |
1916 | 1920 | Array[Hash] $jk_mounts = [], |
1917 | 1921 | Boolean $auth_kerb = false, |
1918 | 1922 | Enum['on', 'off'] $krb_method_negotiate = 'on', |
|
2800 | 2804 | # - $modsec_audit_log_destination |
2801 | 2805 | # - $modsec_inbound_anomaly_threshold |
2802 | 2806 | # - $modsec_outbound_anomaly_threshold |
2803 | | - if $modsec_disable_vhost or $modsec_disable_ids or !empty($modsec_disable_ips) or $modsec_disable_msgs or $modsec_disable_tags or $modsec_audit_log_destination or ($modsec_inbound_anomaly_threshold and $modsec_outbound_anomaly_threshold) { |
| 2807 | + # - $modsec_allowed_methods |
| 2808 | + if $modsec_disable_vhost or $modsec_disable_ids or !empty($modsec_disable_ips) or $modsec_disable_msgs or $modsec_disable_tags or $modsec_audit_log_destination or ($modsec_inbound_anomaly_threshold and $modsec_outbound_anomaly_threshold) or $modsec_allowed_methods { |
2804 | 2809 | concat::fragment { "${name}-security": |
2805 | 2810 | target => "${priority_real}${filename}.conf", |
2806 | 2811 | order => 320, |
|
0 commit comments