artifactid: 'sirona-initialcontent'
version: 'LATEST'
+aem::enable_https_mapping: true
+aem::domain_mappings:
+ dev01-publish-sirona.pixelpark.net:
+ aem_path: '/content/test'
+ create_sling_mapping: true
+
site::profile::apache::htdigest:
server:
www: ENC[PKCS7,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]
# Apache Publisher
site::profile::aem::publish::pp_vhosts:
sirona:
- docroot: '/var/www/html/cache'
+ docroot: '/var/www/html/cache/content/test'
serveraliases:
- dev01-publish-sirona.pixelpark.net
docroot_owner: apache
directories:
- docroot:
provider: directory
- path: '/var/www/html/cache'
+ path: '/var/www/html/cache/content/test'
sethandler: dispatcher-handler
options:
- FollowSymLinks
auth_digest_algorithm: MD5
auth_user_file: '/etc/httpd/htdigest'
auth_require: 'valid-user'
+
+# Use Alias function if updated to Puppet 4
+aem::dispatcher::publish_farm:
+## Flusher
+ z_invalidation_only:
+ virtualhosts:
+ - 'invalidation_only'
+ renders:
+ - { hostname: "127.0.0.1", port: '4503' }
+ filter:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', glob: '*/content*' }
+ cache_docroot: '/var/www/html/cache'
+ cache_rules:
+ - { type: 'allow', glob: '*' }
+ cache_invalidate:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', glob: '*.html' }
+ - { type: 'allow', glob: '/etc/segmentation.segment.js' }
+ - { type: 'allow', glob: '*/analytics.sitecatalyst.js' }
+ cache_allowed_clients:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', glob: '127.0.0.1' }
+ cache_statfileslevel: 3
+ ids:
+ virtualhosts:
+ - 'ids.dentsplysirona.com'
+ clientheaders:
+ - '*'
+ renders:
+ - { hostname: "127.0.0.1", port: '4503' }
+ filter:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', url: '/' }
+ - { type: 'allow', url: '*.html' }
+ - { type: 'allow', url: '*.css' } # enable css
+ - { type: 'allow', url: '*.gif' } # enable gifs
+ - { type: 'allow', url: '*.ico' } # enable icos
+ - { type: 'allow', url: '*.js' } # enable javascript
+ - { type: 'allow', url: '*.png' } # enable png
+ - { type: 'allow', url: '*.swf' } # enable flash
+ - { type: 'allow', url: '*.jpg' } # enable jpg
+ - { type: 'allow', url: '*.jpeg' } # enable jpeg
+ - { type: 'allow', url: '*.svg' } # enable svg
+ - { type: 'allow', url: '*.ttf' } # enable ttf
+ - { type: 'allow', url: '*.woff' } # enable woff
+ - { type: 'allow', url: '*.woff2' } # enable woff2
+ - { type: 'allow', url: '*.eot' } # enable eot
+ - { type: 'allow', url: '*.pdf' } # enable pdf
+ - { type: 'allow', url: '*.wmv' } # enable wmv
+ - { type: 'allow', url: '*.psd' } # enable psd (Adobe Photoshop Dokument)
+ - { type: 'allow', url: '*.tif' } # enable tif
+ - { type: 'allow', url: '*.zip' } # enable zip
+ - { type: 'allow', url: '*.exe' } # enable exe
+ - { type: 'allow', url: '*.msi' } # enable msi
+ - { type: 'allow', url: '*.indd' } # enable indd (Adobe Indesign Dokument)
+ # Enable features
+ - { type: 'allow', url: '/libs/cq/personalization/*' } # enable personalization
+ - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API
+ - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API
+ - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms
+ # Security Rules
+ - { type: 'deny', url: '/etc/' }
+ - { type: 'deny', url: '/libs/' }
+ - { type: 'allow', url: '/etc/designs/*' }
+ - { type: 'allow', url: '/etc/clientlibs/*' }
+ - { type: 'allow', url: '/etc/segmentation.segment.js' }
+ - { type: 'allow', url: '/libs/cq/personalization/components/clickstreamcloud/content/config.json' }
+ - { type: 'allow', url: '/libs/wcm/stats/tracker.js' }
+ - { type: 'allow', url: '/libs/cq/personalization/*' } # (JS, CSS and JSON)
+ - { type: 'allow', url: '/libs/cq/security/userinfo.json' } # (CQ user information)
+ - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached)
+ - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization)
+ # CSRF
+ - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token
+ # Deny content grabbing
+ - { type: 'deny', url: '*.infinity.json' }
+ - { type: 'deny', url: '*.tidy.json' }
+ - { type: 'deny', url: '*.sysview.xml' }
+ - { type: 'deny', url: '*.docview.json' }
+ - { type: 'deny', url: '*.docview.xml' }
+ - { type: 'deny', url: '*.*[0-9].json' }
+ # Deny query
+ - { type: 'deny', url: '*.query.json' }
+ cache_docroot: '/var/www/html/cache/content/test'
+ cache_rules:
+ - { type: 'allow', glob: '*' }
+ cache_invalidate:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', glob: '*.html' }
+ - { type: 'allow', glob: '/etc/segmentation.segment.js' }
+ - { type: 'allow', glob: '*/analytics.sitecatalyst.js' }
+ cache_allowed_clients:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', glob: '127.0.0.1' }
+ cache_headers:
+ - 'X-Content-Type-Options'
+ - 'X-Frame-Options'
+ - 'X-XSS-Protection'
+ - 'Last-Modified'
+ - 'Expires'
+ - 'Content-Type'
+ - 'Access-Control-Allow-Origin'
projects / pixelpark / hiera.git / commitdiff