From 1552156a4d3c63c8838a8ec86ac68c4556d68243 Mon Sep 17 00:00:00 2001 From: Ivan Grynenko Date: Wed, 6 Jul 2016 11:05:34 +1000 Subject: [PATCH] Adding remote module. --- group_vars/all.yml | 1 + roles/ansible-role-apache/tasks/configure-RedHat.yml | 11 +++++++++++ .../ansible-role-apache/templates/90-remoteip.conf.j2 | 7 +++++++ 3 files changed, 19 insertions(+) create mode 100644 roles/ansible-role-apache/templates/90-remoteip.conf.j2 diff --git a/group_vars/all.yml b/group_vars/all.yml index 4b4af27..9cd5d83 100644 --- a/group_vars/all.yml +++ b/group_vars/all.yml @@ -69,6 +69,7 @@ apache_enable_event_mpm: true apache_mods_enabled: - rewrite.load - ssl.load + - remoteip.load apache_mods_disabled: - php - php7 diff --git a/roles/ansible-role-apache/tasks/configure-RedHat.yml b/roles/ansible-role-apache/tasks/configure-RedHat.yml index 73e3b8a..f0a68aa 100644 --- a/roles/ansible-role-apache/tasks/configure-RedHat.yml +++ b/roles/ansible-role-apache/tasks/configure-RedHat.yml @@ -32,3 +32,14 @@ mode: 0644 notify: restart apache when: apache_enable_event_mpm + + +- name: Activate RemoteIP module + template: + src: "90-remoteip.conf.j2" + dest: "{{ apache_modules_path }}/90-remoteip.conf" + owner: root + group: root + mode: 0644 + notify: restart apache + when: apache_mods_enabled|remoteip diff --git a/roles/ansible-role-apache/templates/90-remoteip.conf.j2 b/roles/ansible-role-apache/templates/90-remoteip.conf.j2 new file mode 100644 index 0000000..ce02829 --- /dev/null +++ b/roles/ansible-role-apache/templates/90-remoteip.conf.j2 @@ -0,0 +1,7 @@ +LoadModule remoteip_module modules/mod_remoteip.so + +LogFormat "%a %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined + +RemoteIPHeader X-Real-IP +RemoteIPHeader X-Forwarded-For +RemoteIPInternalProxy 127.0.0.1