0k
/
0k-charms
6
3
Fork 2
Code Issues 11 Pull Requests 5 Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
643 Commits
27 Branches
14 Tags
41 MiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
0k-charms/apache/test/vhost

509 lines
11 KiB
Raw Permalink Normal View History

new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] refactor out ``yaml_get_values``.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] refactor out ``yaml_get_values``.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
chg: dev: [apache] caching some function in library
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
new: dev: [apache] allow empty domain to make default site entry.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
new: [apache] improve domain specification and provide service to domain mapping facility
4 months ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
new: [apache] improve domain specification and provide service to domain mapping facility
4 months ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
fix: [apache] proxy rewrites response header only if needed Previously, we had issues (for instance with nextcloud) with the 'Location' header using the custom scheme "nc://" being rewritten by "ProxyPassReverse /". This newer stance avoids rewriting this scheme, and continue to work correctly.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
new: [apache] added ``apache-proxy-path-options`` to allow adding custom options to ``ProxyPass`` line.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
5 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: [apache] custom rules are now before the content so as to add proxy rules if necessary
6 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
fix: [apache] proxy rewrites response header only if needed Previously, we had issues (for instance with nextcloud) with the 'Location' header using the custom scheme "nc://" being rewritten by "ProxyPassReverse /". This newer stance avoids rewriting this scheme, and continue to work correctly.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
fix: dev: [apache] repair tests
4 months ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
chg: [apache] custom rules are now before the content so as to add proxy rules if necessary
6 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
fix: [apache] proxy rewrites response header only if needed Previously, we had issues (for instance with nextcloud) with the 'Location' header using the custom scheme "nc://" being rewritten by "ProxyPassReverse /". This newer stance avoids rewriting this scheme, and continue to work correctly.
5 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
fix: dev: [apache] repair tests
4 months ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
new: [apache] ssl plugin support, added letsencrypt ssl support.
6 years ago
new: [apache] update to latests files from formanoo-charms.
8 years ago
new: dev: [apache] allow empty domain to make default site entry.
5 years ago
new: [apache] support of ``ssh-tunnel`` option in core options.
5 years ago
  1. #!/bin/bash
  3. exname=$(basename $0)
  5. compose_core=$(which compose-core) || {
  6. echo "Requires compose-core executable to be in \$PATH." >&2
  7. exit 1
  8. }
  10. fetch-def() {
  11. local path="$1" fname="$2"
  12. ( . "$path" 1>&2 || {
  13. echo "Failed to load '$path'." >&2
  14. exit 1
  15. }
  16. declare -f "$fname"
  17. )
  18. }
  21. prefix_cmd="
  22. . /etc/shlib
  24. include common
  25. include parse
  27. . ../lib/common
  29. $(fetch-def "$compose_core" yaml_get_values)
  30. $(fetch-def "$compose_core" yaml_get_interpret)
  32. " || {
  33. echo "Couldn't build prefix cmd" >&2
  34. exit 1
  35. }
  40. # mock
  41. relation-get() {
  42. local key="$1"
  43. echo "$CFG" | shyaml get-value "$key" 2>/dev/null
  44. }
  45. export -f relation-get
  47. cfg-get-value() {
  48. local key="$1"
  49. shyaml get-value "$key" 2>/dev/null
  50. }
  51. export -f cfg-get-value
  53. get_service_relations() {
  54. printf "%s\0" "${RELATIONS[@]}"
  55. }
  56. export -f get_service_relations
  58. export state_tmpdir=$(mktemp -d -t tmp.XXXXXXXXXX)
  59. trap "rm -rf \"$state_tmpdir\"" EXIT
  61. ##
  62. ## Tests
  63. ##
  65. try "
  66. apache_vhost_statement publish_dir ,http, '\
  67. ' www.example.com"
  68. noerror
  69. is out '<VirtualHost *:80>
  71. ServerAdmin contact@www.example.com
  72. ServerName www.example.com
  74. ServerSignature Off
  75. CustomLog /var/log/apache2/www.example.com_access.log combined
  76. ErrorLog /var/log/apache2/www.example.com_error.log
  77. ErrorLog syslog:local2
  80. ##
  81. ## Publish directory /var/www/www.example.com
  82. ##
  84. DocumentRoot /var/www/www.example.com
  86. <Directory />
  87. Options FollowSymLinks
  88. AllowOverride None
  89. </Directory>
  91. <Directory /var/www/www.example.com>
  92. Options Indexes FollowSymLinks MultiViews
  93. AllowOverride all
  94. Allow from all
  95. </Directory>
  97. ## Forbid any cache, this is only usefull on dev server.
  98. #Header set Cache-Control "no-cache"
  99. #Header set Access-Control-Allow-Origin "*"
  100. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  101. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  103. </VirtualHost>' RTRIM
  105. ##
  106. ## Aliases
  107. ##
  109. try "
  110. apache_vhost_statement publish_dir ,http, '' 'www.example.com toto'"
  111. noerror
  112. is out reg 'ServerAlias toto'
  115. try "
  116. apache_vhost_statement publish_dir ,http, '' 'www.example.com toto titi'"
  117. noerror
  118. is out reg 'ServerAlias toto'
  119. is out reg 'ServerAlias titi'
  122. ##
  123. ## Creds
  124. ##
  126. try "
  127. apache_vhost_statement publish_dir ,http, '' www.example.com
  128. " "credentials allow all"
  129. noerror
  130. is out reg 'Allow from all'
  133. try "
  134. apache_vhost_statement publish_dir ,http, '
  135. creds:
  136. toto: xxx
  137. titi: yyy
  138. ' www.example.com
  139. " "credentials with basic auth user/pass"
  140. noerror
  141. is out reg 'AuthType basic'
  142. is out reg 'Require valid-user'
  145. ##
  146. ## proxy
  147. ##
  149. try "
  150. apache_vhost_statement web_proxy ,http, '
  151. target: popo:3333
  152. creds:
  153. toto: titi
  154. ' www.example.com
  155. " "proxy explicit target"
  156. noerror
  157. is out reg 'ProxyPass / http://popo:3333/'
  158. is out part '
  159. <Location / >
  160. AuthType basic
  161. AuthName "private"
  162. AuthUserFile /etc/apache2/sites-enabled/www.example.com.passwd
  163. Require valid-user
  164. ProxyPassReverse http://popo:3333/
  165. </Location>
  166. '
  169. try "
  170. apache_vhost_statement web_proxy ,http, '
  171. target: popo:3333
  172. apache-proxy-pass-options: nocanon
  173. ' www.example.com
  174. " "proxy proxy-pass options"
  175. noerror
  176. is out reg 'ProxyPass / http://popo:3333/ nocanon'
  178. ##
  179. ## ssl
  180. ##
  182. try "
  183. apache_vhost_statement web_proxy ,https, '
  184. ssl: true
  185. target: popo:3333
  186. ' www.example.com
  187. " "ssl default generation (ssl-cert-snakeoil)"
  188. noerror
  189. is out reg 'VirtualHost \*:443'
  190. is out reg '<IfModule mod_ssl.c>'
  191. is out reg 'SSLEngine On'
  192. is out reg 'SSLProxyEngine On'
  193. is out reg 'ssl-cert-snakeoil'
  194. is out reg 'CustomLog /var/log/apache2/s-www.example.com_access.log combined'
  197. try "
  198. RELATIONS=()
  199. apache_vhost_statement web_proxy ,https, '
  200. ssl:
  201. ca-cert: a
  202. key: b
  203. cert: c
  204. target: popo:3333
  205. ' www.example.com
  206. " "ssl providing keys inline"
  207. noerror
  208. is out reg 'SSLCertificateFile /etc/ssl/certs/www.example.com.pem'
  209. is out reg 'SSLCertificateKeyFile /etc/ssl/private/www.example.com.key'
  210. is out reg 'SSLCACertificateFile /etc/ssl/certs/www.example.com-ca.pem'
  213. ##
  214. ## CustomRules
  215. ##
  217. try "
  218. apache_vhost_statement web_proxy ,https, '
  219. ssl:
  220. ca-cert: a
  221. key: b
  222. cert: c
  223. apache-custom-rules: |
  224. RewriteEngine On
  225. RewriteCond %{QUERY_STRING} !skin=formanoo
  226. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  227. target: popo:3333
  228. ' www.example.com
  229. " "custom rules"
  230. noerror
  231. is out reg 'RewriteEngine On'
  234. ##
  235. ## double def
  236. ##
  238. try "
  239. apache_vhost_statement web_proxy ,https,http, '
  240. ssl:
  241. ca-cert: a
  242. key: b
  243. cert: c
  244. apache-custom-rules: |
  245. RewriteEngine On
  246. RewriteCond %{QUERY_STRING} !skin=formanoo
  247. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  248. target: popo:3333
  249. ' www.example.com
  250. " "both http and https"
  251. noerror
  252. is out '<VirtualHost *:80>
  254. ServerAdmin contact@www.example.com
  255. ServerName www.example.com
  257. ServerSignature Off
  258. CustomLog /var/log/apache2/www.example.com_access.log combined
  259. ErrorLog /var/log/apache2/www.example.com_error.log
  260. ErrorLog syslog:local2
  263. ##
  264. ## Custom rules
  265. ##
  267. RewriteEngine On
  268. RewriteCond %{QUERY_STRING} !skin=formanoo
  269. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  272. ##
  273. ## Proxy declaration towards popo:3333
  274. ##
  276. <IfModule mod_proxy.c>
  277. ProxyRequests Off
  278. <Proxy *>
  279. Order deny,allow
  280. Allow from all
  281. </Proxy>
  282. ProxyVia On
  283. ProxyPass / http://popo:3333/ retry=0
  284. <Location / >
  285. Allow from all
  286. ProxyPassReverse http://popo:3333/
  287. </Location>
  289. </IfModule>
  291. SetEnvIf X-Forwarded-Proto "^$" forwarded_proto_not_set=true
  292. RequestHeader set "X-Forwarded-Proto" "http" env=forwarded_proto_not_set
  294. ## Fix IE problem (httpapache proxy dav error 408/409)
  295. SetEnv proxy-nokeepalive 1
  297. ## Forbid any cache, this is only usefull on dev server.
  298. #Header set Cache-Control "no-cache"
  299. #Header set Access-Control-Allow-Origin "*"
  300. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  301. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  303. </VirtualHost>
  305. <IfModule mod_ssl.c>
  306. <VirtualHost *:443>
  308. ServerAdmin contact@www.example.com
  309. ServerName www.example.com
  311. ServerSignature Off
  312. CustomLog /var/log/apache2/s-www.example.com_access.log combined
  313. ErrorLog /var/log/apache2/s-www.example.com_error.log
  314. ErrorLog syslog:local2
  317. ##
  318. ## Custom rules
  319. ##
  321. RewriteEngine On
  322. RewriteCond %{QUERY_STRING} !skin=formanoo
  323. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  326. ##
  327. ## Proxy declaration towards popo:3333
  328. ##
  330. <IfModule mod_proxy.c>
  331. ProxyRequests Off
  332. <Proxy *>
  333. Order deny,allow
  334. Allow from all
  335. </Proxy>
  336. ProxyVia On
  337. ProxyPass / http://popo:3333/ retry=0
  338. <Location / >
  339. Allow from all
  340. ProxyPassReverse http://popo:3333/
  341. </Location>
  342. SSLProxyEngine On
  343. </IfModule>
  345. SetEnvIf X-Forwarded-Proto "^$" forwarded_proto_not_set=true
  346. RequestHeader set "X-Forwarded-Proto" "https" env=forwarded_proto_not_set
  348. ## Fix IE problem (httpapache proxy dav error 408/409)
  349. SetEnv proxy-nokeepalive 1
  351. ## Forbid any cache, this is only usefull on dev server.
  352. #Header set Cache-Control "no-cache"
  353. #Header set Access-Control-Allow-Origin "*"
  354. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  355. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  357. ##
  358. ## SSL Configuration
  359. ##
  361. SSLEngine On
  363. SSLCertificateFile /etc/ssl/certs/www.example.com.pem
  364. SSLCertificateKeyFile /etc/ssl/private/www.example.com.key
  365. SSLCACertificateFile /etc/ssl/certs/www.example.com-ca.pem
  367. SSLVerifyClient None
  369. </VirtualHost>
  370. </IfModule>' RTRIM
  375. ##
  376. ## single def no domain
  377. ##
  379. try "
  380. apache_vhost_statement publish_dir ,http, '
  381. apache-custom-rules: |
  382. RewriteEngine On
  383. RewriteCond %{QUERY_STRING} !skin=formanoo
  384. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  385. target: popo:3333
  386. ' ""
  387. " "http without domain"
  388. noerror
  389. is out '<VirtualHost *:80>
  391. ServerAdmin webmaster@localhost
  393. ServerSignature Off
  394. CustomLog /var/log/apache2/access.log combined
  395. ErrorLog /var/log/apache2/error.log
  396. ErrorLog syslog:local2
  399. ##
  400. ## Custom rules
  401. ##
  403. RewriteEngine On
  404. RewriteCond %{QUERY_STRING} !skin=formanoo
  405. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  408. ##
  409. ## Publish directory /var/www/html
  410. ##
  412. DocumentRoot /var/www/html
  414. <Directory />
  415. Options FollowSymLinks
  416. AllowOverride None
  417. </Directory>
  419. <Directory /var/www/html>
  420. Options Indexes FollowSymLinks MultiViews
  421. AllowOverride all
  422. Allow from all
  423. </Directory>
  425. ## Forbid any cache, this is only usefull on dev server.
  426. #Header set Cache-Control "no-cache"
  427. #Header set Access-Control-Allow-Origin "*"
  428. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  429. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  431. </VirtualHost>' RTRIM
  434. try "
  435. apache_vhost_statement ssh_tunnel ,https, '
  436. ssl: true
  437. apache-custom-rules: |
  438. RewriteEngine On
  439. RewriteCond %{QUERY_STRING} !skin=formanoo
  440. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  441. target: popo:3333
  442. ' 'ssh.example.com'
  443. " "ssh tunnel"
  444. noerror
  445. is out '
  446. <IfModule mod_ssl.c>
  447. <VirtualHost *:443>
  449. ServerAdmin contact@ssh.example.com
  450. ServerName ssh.example.com
  452. ServerSignature Off
  453. CustomLog /var/log/apache2/s-ssh.example.com_access.log combined
  454. ErrorLog /var/log/apache2/s-ssh.example.com_error.log
  455. ErrorLog syslog:local2
  458. ##
  459. ## Custom rules
  460. ##
  462. RewriteEngine On
  463. RewriteCond %{QUERY_STRING} !skin=formanoo
  464. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  467. ##
  468. ## SSH Tunnel
  469. ##
  471. #HostnameLookups On
  472. ProxyRequests On
  473. AllowConnect 22
  474. #ProxyVia on
  476. ### Deny everything by default
  478. <Proxy *>
  479. Order deny,allow
  480. Deny from all
  481. </proxy>
  483. ### Accept redirect only to same domain
  485. <Proxy ssh.example.com>
  486. Order deny,allow
  487. Allow from all
  488. </Proxy>
  490. ## Forbid any cache, this is only usefull on dev server.
  491. #Header set Cache-Control "no-cache"
  492. #Header set Access-Control-Allow-Origin "*"
  493. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  494. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  496. ##
  497. ## SSL Configuration
  498. ##
  500. SSLEngine On
  502. SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
  503. SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
  506. SSLVerifyClient None
  508. </VirtualHost>
  509. </IfModule>' RTRIM