summaryrefslogtreecommitdiffstats
path: root/server/setup/05-service-settings/etc/apache2/sites-available/jogamp_org.conf
blob: d08099e09029f89135845428237ff3770c93c4ed (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
#
# Almost any Apache directive may go into a VirtualHost container.
# The first VirtualHost section is used for requests without a known
# server name.
#
<VirtualHost *:80>
    ServerAdmin jausoft@jausoft.com
    ServerName jogamp.org
    ServerAlias *.jogamp.org
    ServerPath /jogamp.org/
    SuexecUserGroup webrunner webrunner
    RewriteEngine On

    ErrorLog ${APACHE_LOG_DIR}/jogamp.org-error.log
    CustomLog ${APACHE_LOG_DIR}/jogamp.org-access.log combined

    DocumentRoot /srv/www/jogamp.org

    # don't loose time with IP address lookups
    HostnameLookups Off

    # needed for named virtual hosts
    UseCanonicalName Off

    # configures the footer on server-generated documents
    ServerSignature On

	<Directory "/srv/www/jogamp.org">
	    Options Indexes FollowSymLinks
	    AllowOverride All
        #Order allow,deny
        #Allow from all
        Require all granted
	</Directory>

    <Directory "/srv/www/jogamp.org/wiki">
        Options +Indexes +ExecCGI -MultiViews +SymLinksIfOwnerMatch
        AllowOverride All
        Require all granted
        AddHandler fcgid-script .php
        FcgidWrapper /srv/www/scripts/php7-wrapper .php
    </Directory>

    #SetEnv GIT_PROJECT_ROOT /srv/scm
    #SetEnv GIT_HTTP_EXPORT_ALL
    #ScriptAlias /srv/scm/ /usr/lib/git-core/git-http-backend/
	#<Directory "/srv/www/jogamp.org/git">
    #   DirectoryIndex gitweb.cgi
    #   AllowOverride all
    #   #Order allow,deny
    #   #Allow from all
    #   Require all granted
    #   Options ExecCGI
    #   <Files gitweb.cgi>
    #   SetHandler cgi-script
    #   </Files>
    #   SetEnv  GITWEB_CONFIG  /srv/scm/gitweb.conf
    #</Directory>

    ScriptAlias /cgit/ "/srv/www/cgit/cgit.cgi/"
    #RedirectMatch ^/cgit$ /cgit/
    Alias /cgit-css "/usr/share/cgit/"
    <Directory "/srv/www/cgit/">
       AllowOverride None
       Options ExecCGI FollowSymlinks
       Require all granted
       #<RequireAll>
       # Require all granted
       # Include sites-available/ip-bot-filter-require.conf
       #</RequireAll>

       RewriteEngine On
       RewriteBase "/cgit/"
       RewriteCond %{HTTP_USER_AGENT} Bytespider [OR]
       RewriteCond %{HTTP_USER_AGENT} Amazonbot [OR]
       RewriteCond %{HTTP_USER_AGENT} Googlebot [OR]
       RewriteCond %{HTTP_USER_AGENT} AdsBot-Google [OR]
       RewriteCond %{HTTP_USER_AGENT} msnbot [OR]
       RewriteCond %{HTTP_USER_AGENT} AltaVista [OR]
       RewriteCond %{HTTP_USER_AGENT} CensysInspect [OR]
       #RewriteCond %{HTTP_USER_AGENT} "=Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3963.65 Safari/537.36" [OR]
       #RewriteCond %{HTTP_USER_AGENT} "=Mozilla/5.0 (Windows NT 6.2; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.2350.138 Safari/537.36" [OR]
       #RewriteCond %{HTTP_USER_AGENT} "=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.2671.137 Safari/537.36" [OR]
       #RewriteCond %{HTTP_USER_AGENT} "=" [OR]
       RewriteCond %{HTTP_USER_AGENT} Slurp [OR]
       Include sites-available/ip-bot-filter-rewrite.conf
       RewriteRule . - [F,L]
    </Directory>
    <Directory "/srv/www/jogamp.org/git">
        Include sites-available/gitweb-to-cgit-rel.conf
    </Directory>

	Alias /icons/ "/srv/www/jogamp.org/icons/"

	<Directory "/srv/www/jogamp.org/icons">
	    Options Indexes MultiViews
	    AllowOverride None
        #Order allow,deny
        #Allow from all
        Require all granted
	</Directory>

    Include sites-available/ip-bot-filter-rewrite.conf
    RewriteRule . - [F,L]

    #
    # Due to security concerns, session hijacking .. etc .. the whole
    # bugzilla stream will go over https
    #
    RewriteCond %{REQUEST_URI} ^/wiki/index.php$
    RewriteCond %{QUERY_STRING} ^title=Special:UserLogin
    RewriteCond %{REQUEST_METHOD} ^GET$
    RewriteRule ^(.*)$ https://%{SERVER_NAME}/$1 [R=301,L,NE]

    RewriteCond %{REQUEST_URI} ^/bugzilla
    RewriteRule ^/bugzilla/(.*)$ https://%{SERVER_NAME}/bugzilla/$1 [R=301,L,NE]

    #
    # Due to security concerns, session hijacking .. etc .. the whole
    # hudson and bugzilla stream will go over https
    #
    RewriteCond %{REQUEST_URI} ^/chuck
    RewriteRule ^/chuck/(.*)$ https://%{SERVER_NAME}/chuck/$1 [R=301,L,NE]

    #RewriteCond %{REQUEST_URI} ^/chuck
    #RewriteRule ^/chuck/login(.*)$ https://%{SERVER_NAME}/chuck/login$1 [R=301,L,NE]
    #
    #RewriteCond %{REQUEST_URI} ^/chuck
    #RewriteCond %{HTTP_COOKIE} JSESSIONID=(.*) [NC,OR]
    #RewriteCond %{HTTP_COOKIE} ACEGI_SECURITY_HASHED_REMEMBER_ME_COOKIE [NC]
    #RewriteRule ^/chuck/(.*)$ https://%{SERVER_NAME}/chuck/$1 [R=301,L,NE]
    #
    # Cookies:
    #   wikidb_mw_LoggedOut                       /
    #   wikidb_mw__session                        /
    #   wikidb_mw_Token                           /
    #   wikidb_mw_UserID                          /
    #   wikidb_mw_UserName                        /
    #
    #   Bugzilla_login                            /bugzilla
    #   Bugzilla_logincookie                      /bugzilla
    #   DEFAULTFORMAT                             /bugzilla
    #
    #   ACEGI_SECURITY_HASHED_REMEMBER_ME_COOKIE  /chuck   
    #   JSESSIONID                                /chuck
    #

	#
	# http://wiki.hudson-ci.org/display/HUDSON/Running+Hudson+behind+Apache
	#
	#ProxyRequests     Off
    #ProxyPreserveHost On

	# Local reverse proxy authorization override
	# Most unix distribution deny proxy by default (ie /etc/apache2/mods-enabled/proxy.conf in Ubuntu)
	#<Proxy http://localhost:8089/chuck*>
    #  #Order deny,allow
    #  #Allow from all
    #  Require all denied
    #  #Require all denied
    #  Require all granted
	#</Proxy>
	#ProxyPass         /chuck  http://localhost:8080/chuck
	#ProxyPassReverse  /chuck  http://localhost:8080/chuck

    RewriteCond %{HTTP_HOST} ^www\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ http://jogamp.org/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^scm\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ http://jogamp.org/git/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^joal\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ http://jogamp.org/joal/www/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^jogl\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ http://jogamp.org/jogl/www/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^jocl\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ http://jogamp.org/jocl/www/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^demos\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ http://jogamp.org/jogl-demos/www/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^bugzilla\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ https://jogamp.org/bugzilla/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^chuck\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ https://jogamp.org/chuck/$1 [R=301,L,NE]

    RewriteCond %{HTTP_HOST} ^(.*)\.jogamp\.org$ [NC]
    RewriteRule ^/(.*)$ http://jogamp.org/%1/$1 [R=301,L,NE]
</VirtualHost>

#
# Directives to allow use of AWStats as a CGI
#
#Alias /awstatsclasses "/usr/local/awstats/wwwroot/classes/"
#Alias /awstatscss "/usr/local/awstats/wwwroot/css/"
#Alias /awstatsicons "/usr/local/awstats/wwwroot/icon/"
#ScriptAlias /awstats/ "/usr/local/awstats/wwwroot/cgi-bin/"

#
# This is to permit URL access to scripts/files in AWStats directory.
#
<Directory "/usr/local/awstats/wwwroot">
    Options None
    AllowOverride None
    #Order allow,deny
    #Allow from all
    Require all granted
</Directory>