From 423f28ea53408d9b55bbf053aabf28da7eefc0e0 Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Thu, 7 Aug 2025 10:45:11 -0500
Subject: [PATCH] remote-blackbox: Do not follow HTTP redirects
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

There are a couple of websites we scrape that simply redirect to another
name (e.g. _pyrocufflink.net_ → _dustin.hatch.name_, _tabitha.biz_ →
_hatchlearningcenter.org_).  For these, we want to track the
availability of the first step, not the last, especially with regard to
their certificate lifetimes.
---
 group_vars/remote-blackbox.yml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/group_vars/remote-blackbox.yml b/group_vars/remote-blackbox.yml
index f14c450..3f7684c 100644
--- a/group_vars/remote-blackbox.yml
+++ b/group_vars/remote-blackbox.yml
@@ -6,6 +6,15 @@ blackbox_modules:
         Accept-Charset: utf-8
         Accept-Language: en-US
       method: GET
+      follow_redirects: false
+      valid_status_codes:
+      - 200
+      - 301
+      - 302
+      - 303
+      - 304
+      - 307
+      - 308
     prober: http
     timeout: 5s