t / lib-httpd / apache.confon commit Merge branch 'br/commit-tree-fully-spelled-gpg-sign-option' (e7b120b)
   1ServerName dummy
   2PidFile httpd.pid
   3DocumentRoot www
   4LogFormat "%h %l %u %t \"%r\" %>s %b" common
   5CustomLog access.log common
   6ErrorLog error.log
   7<IfModule !mod_log_config.c>
   8        LoadModule log_config_module modules/mod_log_config.so
   9</IfModule>
  10<IfModule !mod_alias.c>
  11        LoadModule alias_module modules/mod_alias.so
  12</IfModule>
  13<IfModule !mod_cgi.c>
  14        LoadModule cgi_module modules/mod_cgi.so
  15</IfModule>
  16<IfModule !mod_env.c>
  17        LoadModule env_module modules/mod_env.so
  18</IfModule>
  19<IfModule !mod_rewrite.c>
  20        LoadModule rewrite_module modules/mod_rewrite.so
  21</IFModule>
  22<IfModule !mod_version.c>
  23        LoadModule version_module modules/mod_version.so
  24</IfModule>
  25<IfModule !mod_headers.c>
  26        LoadModule headers_module modules/mod_headers.so
  27</IfModule>
  28<IfModule !mod_setenvif.c>
  29        LoadModule setenvif_module modules/mod_setenvif.so
  30</IfModule>
  31
  32<IfVersion < 2.4>
  33LockFile accept.lock
  34</IfVersion>
  35
  36<IfVersion < 2.1>
  37<IfModule !mod_auth.c>
  38        LoadModule auth_module modules/mod_auth.so
  39</IfModule>
  40</IfVersion>
  41
  42<IfVersion >= 2.1>
  43<IfModule !mod_auth_basic.c>
  44        LoadModule auth_basic_module modules/mod_auth_basic.so
  45</IfModule>
  46<IfModule !mod_authn_file.c>
  47        LoadModule authn_file_module modules/mod_authn_file.so
  48</IfModule>
  49<IfModule !mod_authz_user.c>
  50        LoadModule authz_user_module modules/mod_authz_user.so
  51</IfModule>
  52<IfModule !mod_authz_host.c>
  53        LoadModule authz_host_module modules/mod_authz_host.so
  54</IfModule>
  55</IfVersion>
  56
  57<IfVersion >= 2.4>
  58<IfModule !mod_authn_core.c>
  59        LoadModule authn_core_module modules/mod_authn_core.so
  60</IfModule>
  61<IfModule !mod_authz_core.c>
  62        LoadModule authz_core_module modules/mod_authz_core.so
  63</IfModule>
  64<IfModule !mod_access_compat.c>
  65        LoadModule access_compat_module modules/mod_access_compat.so
  66</IfModule>
  67<IfModule !mod_mpm_prefork.c>
  68        LoadModule mpm_prefork_module modules/mod_mpm_prefork.so
  69</IfModule>
  70<IfModule !mod_unixd.c>
  71        LoadModule unixd_module modules/mod_unixd.so
  72</IfModule>
  73</IfVersion>
  74
  75PassEnv GIT_VALGRIND
  76PassEnv GIT_VALGRIND_OPTIONS
  77PassEnv GNUPGHOME
  78PassEnv ASAN_OPTIONS
  79PassEnv GIT_TRACE
  80PassEnv GIT_CONFIG_NOSYSTEM
  81PassEnv GIT_TEST_SIDEBAND_ALL
  82
  83SetEnvIf Git-Protocol ".*" GIT_PROTOCOL=$0
  84
  85Alias /dumb/ www/
  86Alias /auth/dumb/ www/auth/dumb/
  87
  88<LocationMatch /smart/>
  89        SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
  90        SetEnv GIT_HTTP_EXPORT_ALL
  91</LocationMatch>
  92<LocationMatch /smart_noexport/>
  93        SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
  94</LocationMatch>
  95<LocationMatch /smart_custom_env/>
  96        SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
  97        SetEnv GIT_HTTP_EXPORT_ALL
  98        SetEnv GIT_COMMITTER_NAME "Custom User"
  99        SetEnv GIT_COMMITTER_EMAIL custom@example.com
 100</LocationMatch>
 101<LocationMatch /smart_namespace/>
 102        SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 103        SetEnv GIT_HTTP_EXPORT_ALL
 104        SetEnv GIT_NAMESPACE ns
 105</LocationMatch>
 106<LocationMatch /smart_cookies/>
 107        SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 108        SetEnv GIT_HTTP_EXPORT_ALL
 109        Header set Set-Cookie name=value
 110</LocationMatch>
 111<LocationMatch /smart_headers/>
 112        SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 113        SetEnv GIT_HTTP_EXPORT_ALL
 114</LocationMatch>
 115<LocationMatch /one_time_sed/>
 116        SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 117        SetEnv GIT_HTTP_EXPORT_ALL
 118</LocationMatch>
 119ScriptAliasMatch /error_git_upload_pack/(.*)/git-upload-pack error.sh/
 120ScriptAliasMatch /smart_*[^/]*/(.*) ${GIT_EXEC_PATH}/git-http-backend/$1
 121ScriptAlias /broken_smart/ broken-smart-http.sh/
 122ScriptAlias /error/ error.sh/
 123ScriptAliasMatch /one_time_sed/(.*) apply-one-time-sed.sh/$1
 124<Directory ${GIT_EXEC_PATH}>
 125        Options FollowSymlinks
 126</Directory>
 127<Files broken-smart-http.sh>
 128        Options ExecCGI
 129</Files>
 130<Files error.sh>
 131  Options ExecCGI
 132</Files>
 133<Files apply-one-time-sed.sh>
 134        Options ExecCGI
 135</Files>
 136<Files ${GIT_EXEC_PATH}/git-http-backend>
 137        Options ExecCGI
 138</Files>
 139
 140RewriteEngine on
 141RewriteRule ^/dumb-redir/(.*)$ /dumb/$1 [R=301]
 142RewriteRule ^/smart-redir-perm/(.*)$ /smart/$1 [R=301]
 143RewriteRule ^/smart-redir-temp/(.*)$ /smart/$1 [R=302]
 144RewriteRule ^/smart-redir-auth/(.*)$ /auth/smart/$1 [R=301]
 145RewriteRule ^/smart-redir-limited/(.*)/info/refs$ /smart/$1/info/refs [R=301]
 146RewriteRule ^/ftp-redir/(.*)$ ftp://localhost:1000/$1 [R=302]
 147
 148RewriteRule ^/loop-redir/x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-(.*) /$1 [R=302]
 149RewriteRule ^/loop-redir/(.*)$ /loop-redir/x-$1 [R=302]
 150
 151# redir-to/502/x?y -> really-redir-to?path=502/x&qs=y which returns 502
 152# redir-to/x?y -> really-redir-to?path=x&qs=y -> x?y
 153RewriteCond %{QUERY_STRING} ^(.*)$
 154RewriteRule ^/redir-to/(.*)$ /really-redir-to?path=$1&qs=%1 [R=302]
 155RewriteCond %{QUERY_STRING} ^path=502/(.*)&qs=(.*)$
 156RewriteRule ^/really-redir-to$ - [R=502,L]
 157RewriteCond %{QUERY_STRING} ^path=(.*)&qs=(.*)$
 158RewriteRule ^/really-redir-to$ /%1?%2 [R=302]
 159
 160# The first rule issues a client-side redirect to something
 161# that _doesn't_ look like a git repo. The second rule is a
 162# server-side rewrite, so that it turns out the odd-looking
 163# thing _is_ a git repo. The "[PT]" tells Apache to match
 164# the usual ScriptAlias rules for /smart.
 165RewriteRule ^/insane-redir/(.*)$ /intern-redir/$1/foo [R=301]
 166RewriteRule ^/intern-redir/(.*)/foo$ /smart/$1 [PT]
 167
 168# Serve info/refs internally without redirecting, but
 169# issue a redirect for any object requests.
 170RewriteRule ^/redir-objects/(.*/info/refs)$ /dumb/$1 [PT]
 171RewriteRule ^/redir-objects/(.*/objects/.*)$ /dumb/$1 [R=301]
 172
 173# Apache 2.2 does not understand <RequireAll>, so we use RewriteCond.
 174# And as RewriteCond does not allow testing for non-matches, we match
 175# the desired case first (one has abra, two has cadabra), and let it
 176# pass by marking the RewriteRule as [L], "last rule, do not process
 177# any other matching RewriteRules after this"), and then have another
 178# RewriteRule that matches all other cases and lets them fail via '[F]',
 179# "fail the request".
 180RewriteCond %{HTTP:x-magic-one} =abra
 181RewriteCond %{HTTP:x-magic-two} =cadabra
 182RewriteRule ^/smart_headers/.* - [L]
 183RewriteRule ^/smart_headers/.* - [F]
 184
 185<IfDefine SSL>
 186LoadModule ssl_module modules/mod_ssl.so
 187
 188SSLCertificateFile httpd.pem
 189SSLCertificateKeyFile httpd.pem
 190SSLRandomSeed startup file:/dev/urandom 512
 191SSLRandomSeed connect file:/dev/urandom 512
 192SSLSessionCache none
 193SSLMutex file:ssl_mutex
 194SSLEngine On
 195</IfDefine>
 196
 197<Location /auth/>
 198        AuthType Basic
 199        AuthName "git-auth"
 200        AuthUserFile passwd
 201        Require valid-user
 202</Location>
 203
 204<LocationMatch "^/auth-push/.*/git-receive-pack$">
 205        AuthType Basic
 206        AuthName "git-auth"
 207        AuthUserFile passwd
 208        Require valid-user
 209</LocationMatch>
 210
 211<LocationMatch "^/auth-fetch/.*/git-upload-pack$">
 212        AuthType Basic
 213        AuthName "git-auth"
 214        AuthUserFile passwd
 215        Require valid-user
 216</LocationMatch>
 217
 218RewriteCond %{QUERY_STRING} service=git-receive-pack [OR]
 219RewriteCond %{REQUEST_URI} /git-receive-pack$
 220RewriteRule ^/half-auth-complete/ - [E=AUTHREQUIRED:yes]
 221
 222<Location /half-auth-complete/>
 223  Order Deny,Allow
 224  Deny from env=AUTHREQUIRED
 225
 226  AuthType Basic
 227  AuthName "Git Access"
 228  AuthUserFile passwd
 229  Require valid-user
 230  Satisfy Any
 231</Location>
 232
 233<IfDefine DAV>
 234        LoadModule dav_module modules/mod_dav.so
 235        LoadModule dav_fs_module modules/mod_dav_fs.so
 236
 237        DAVLockDB DAVLock
 238        <Location /dumb/>
 239                Dav on
 240        </Location>
 241        <Location /auth/dumb>
 242                Dav on
 243        </Location>
 244</IfDefine>
 245
 246<IfDefine SVN>
 247        LoadModule dav_svn_module modules/mod_dav_svn.so
 248
 249        <Location /${LIB_HTTPD_SVN}>
 250                DAV svn
 251                SVNPath "${LIB_HTTPD_SVNPATH}"
 252        </Location>
 253</IfDefine>