From 2c437f360efda99adc117153a2cf1a435d0c1e0f Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Sat, 26 Mar 2022 20:19:34 +0100
Subject: [PATCH] Revert "feat(nextcloud): Enable modsecurity"

This patch removes the modsecurity feture for nextcloud, since it causes
quite heavy load on the machines. It might be a good idea to revisit
this later.

This reverts commit 007afae6e63fab816fc1fdf04b97213ee78c0bdc.
---
 apps/base/nextcloud/release.yaml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/apps/base/nextcloud/release.yaml b/apps/base/nextcloud/release.yaml
index 9a78fedba..d196200d8 100644
--- a/apps/base/nextcloud/release.yaml
+++ b/apps/base/nextcloud/release.yaml
@@ -108,11 +108,6 @@ data:
           location ~ ^/(?:autotest|occ|issue|indie|db_|console) {
             deny all;
           }
-        nginx.ingress.kubernetes.io/enable-modsecurity: "true"
-        nginx.ingress.kubernetes.io/enable-owasp-core-rules: "true"
-        nginx.ingress.kubernetes.io/modsecurity-snippet: |
-            SecRuleEngine On
-            Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-903.9003-NEXTCLOUD-EXCLUSION-RULES.conf
     persistence:
       enabled: true
     resources:
-- 
GitLab