Slackware/system-configs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
system-configs/etc/apache2/sites-available/core.slackware.uk.net.conf

122 lines
4.1 KiB
Text
Raw Blame History

<Directory />
AuthType Basic
AuthName "Slackware UK Admins' Portal"
<IfModule authnz_ldap_module>
AuthBasicProvider ldap
AuthLDAPBindDN AnonBind@slackware.uk.internal
AuthLDAPBindPassword "Anonymous Bind"
AuthLDAPURL ldap://core.slackware.uk.internal/cn=Users,dc=slackware,dc=uk,dc=internal?sAMAccountName?sub?(objectClass=*)
</IfModule>
<IfModule ldap_module>
LDAPTrustedClientCert CERT_BASE64 /etc/certificates/core.slackware.uk.internal_cert.pem
</IfModule>
</Directory>
#<Directory /opt/gitrepos/vaelyria.git/>
# Require ldap-group cn=Admin Portal,cn=Users,dc=slackware,dc=uk,dc=internal
#</Directory>
<Directory /usr/share/dokuwiki/>
Options +FollowSymLinks
AllowOverride All
Require ldap-group cn=Admin Portal,cn=Users,dc=slackware,dc=uk,dc=internal
<IfModule rewrite_module>
RewriteEngine On
RewriteBase //wiki
RewriteRule ^lib - [L]
RewriteRule ^doku.php - [L]
RewriteRule ^feed.php - [L]
RewriteRule ^_media/(.*) lib/exe/fetch.php?media=$1 [QSA,L]
RewriteRule ^_detail/(.*) lib/exe/detail.php?media=$1 [QSA,L]
RewriteRule ^_export/([^/]+)/(.*) doku.php?do=export_$1&id=$2 [QSA,L]
RewriteRule ^$ doku.php [L]
RewriteRule (.*) doku.php?id=$1 [QSA,L]
</IfModule>
</Directory>
<Directory /usr/share/dokuwiki/bin/>
Require all denied
</Directory>
<Directory /usr/share/phpldapadmin/htdocs/>
Options FollowSymlinks
AllowOverride None
Require ldap-group cn=Admin Portal,cn=Users,dc=slackware,dc=uk,dc=internal
</Directory>
<DirectoryMatch ^/data/sites/core.slackware.uk.net/(cgi-bin|html)/>
Require ldap-group cn=Admin Portal,cn=Users,dc=slackware,dc=uk,dc=internal
</DirectoryMatch>
<VirtualHost 5.101.171.215:80 [2a01:a500:2981:1::d7]:80>
ServerName core.slackware.uk.net
SetEnvIf REQUEST_URI ^/robots\.txt$ no_log
SetEnvIf REQUEST_URI ^/favicon\.ico$ no_log
SetEnvIf REQUEST_URI ^/\.well-known/.*$ no_log
RedirectMatch 403 ^/(?!(\.well-known|httpd-errordocs)/)(.*)
</VirtualHost>
<IfModule ssl_module>
<VirtualHost 5.101.171.215:25443 [2a01:a500:2981:1::d7]:25443>
ServerName core.slackware.uk.net
SSLEngine On
SSLCertificateFile /etc/certificates/core.slackware.uk.net_cert.pem
SSLCertificateKeyFile /etc/certificates/core.slackware.uk.net_key.pem
SSLCertificateChainFile /etc/certificates/core.slackware.uk.net_chain.pem
SetEnvIf REQUEST_URI ^/robots\.txt$ no_log
SetEnvIf REQUEST_URI ^/favicon\.ico$ no_log
ScriptAlias /cgi-bin/ /data/sites/core.slackware.uk.net/cgi-bin/
DocumentRoot /data/sites/core.slackware.uk.net/html
Alias /pla /usr/share/phpldapadmin/htdocs
Alias /wiki /usr/share/dokuwiki/
AliasMatch ^/wiki/sites/[^/]+$ /usr/share/dokuwiki/
AliasMatch ^/wiki/sites/[^/]+/(.*)$ /usr/share/dokuwiki/$1
# <IfModule wsgi_module>
# WSGIDaemonProcess vaelyria python-home=/opt/venvs/vaelyria
# WSGIProcessGroup vaelyria
# WSGIApplicationGroup %{GLOBAL}
# WSGIScriptAlias /vaelyria /opt/gitrepos/vaelyria.git/app.py
# </IfModule>
<IfModule proxy_module>
<Proxy *>
AuthType Basic
AuthName "Slackware UK Admins' Portal"
Require valid-user
<IfModule authnz_ldap_module>
AuthBasicProvider ldap
AuthLDAPBindDN AnonBind@slackware.uk.internal
AuthLDAPBindPassword "Anonymous Bind"
AuthLDAPURL ldap://core.slackware.uk.internal/cn=Users,dc=slackware,dc=uk,dc=internal?sAMAccountName?sub?(objectClass=*)
</IfModule>
<IfModule ldap_module>
LDAPTrustedClientCert CERT_BASE64 /etc/certificates/core.slackware.uk.internal_cert.pem
</IfModule>
</Proxy>
<IfModule proxy_http_module>
# Note: Dot not add backslashes to the end of the urls.
ProxyPass /prometheus http://127.0.0.1:9090
ProxyPassReverse /prometheus http://127.0.0.1:9090
ProxyPass /ts http://127.0.0.1:9200
ProxyPassReverse /ts http://127.0.0.1:9200
</IfModule>
</IfModule>
</VirtualHost>
</IfModule>
Reference in a new issue View git blame Copy permalink