0k
/
0k-charms
6
3
Fork 2
Code Issues 11 Pull Requests 5 Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
338 Commits
29 Branches
14 Tags
41 MiB
Tree: 3a084e497f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '3a084e497f'
${ noResults }
0k-charms/apache/test/vhost

514 lines
11 KiB
Raw Normal View History

new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] refactor out ``yaml_get_values``.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] refactor out ``yaml_get_values``.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
chg: dev: [apache] caching some function in library
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
new: dev: [apache] allow empty domain to make default site entry.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
fix: [apache] proxy rewrites response header only if needed Previously, we had issues (for instance with nextcloud) with the 'Location' header using the custom scheme "nc://" being rewritten by "ProxyPassReverse /". This newer stance avoids rewriting this scheme, and continue to work correctly.
5 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
new: [apache] added ``apache-proxy-path-options`` to allow adding custom options to ``ProxyPass`` line.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: dev: [apache] pass around as argument ``$domain`` This will make the code faster, and will allow to have no domain in the near future.
6 years ago
chg: dev: [apache] rewrite internal library to avoid global vars.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: [apache] custom rules are now before the content so as to add proxy rules if necessary
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
fix: [apache] proxy rewrites response header only if needed Previously, we had issues (for instance with nextcloud) with the 'Location' header using the custom scheme "nc://" being rewritten by "ProxyPassReverse /". This newer stance avoids rewriting this scheme, and continue to work correctly.
5 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
fix: [apache] ``X-Forwarded-Proto`` was incorrectly set in http
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
chg: [apache] custom rules are now before the content so as to add proxy rules if necessary
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
fix: [apache] proxy rewrites response header only if needed Previously, we had issues (for instance with nextcloud) with the 'Location' header using the custom scheme "nc://" being rewritten by "ProxyPassReverse /". This newer stance avoids rewriting this scheme, and continue to work correctly.
5 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
new: [apache] ssl plugin support, added letsencrypt ssl support.
6 years ago
new: [apache] update to latests files from formanoo-charms.
9 years ago
new: dev: [apache] allow empty domain to make default site entry.
6 years ago
new: [apache] support of ``ssh-tunnel`` option in core options.
6 years ago
  1. #!/bin/bash
  3. exname=$(basename $0)
  5. compose_core=$(which compose-core) || {
  6. echo "Requires compose-core executable to be in \$PATH." >&2
  7. exit 1
  8. }
  10. fetch-def() {
  11. local path="$1" fname="$2"
  12. ( . "$path" 1>&2 || {
  13. echo "Failed to load '$path'." >&2
  14. exit 1
  15. }
  16. declare -f "$fname"
  17. )
  18. }
  21. prefix_cmd="
  22. . /etc/shlib
  24. include common
  25. include parse
  27. . ../lib/common
  29. $(fetch-def "$compose_core" yaml_get_values)
  30. $(fetch-def "$compose_core" yaml_get_interpret)
  32. " || {
  33. echo "Couldn't build prefix cmd" >&2
  34. exit 1
  35. }
  40. # mock
  41. relation-get() {
  42. local key="$1"
  43. echo "$CFG" | shyaml get-value "$key" 2>/dev/null
  44. }
  45. export -f relation-get
  47. cfg-get-value() {
  48. local key="$1"
  49. shyaml get-value "$key" 2>/dev/null
  50. }
  51. export -f cfg-get-value
  53. get_service_relations() {
  54. printf "%s\0" "${RELATIONS[@]}"
  55. }
  56. export -f get_service_relations
  58. export state_tmpdir=$(mktemp -d -t tmp.XXXXXXXXXX)
  59. trap "rm -rf \"$state_tmpdir\"" EXIT
  61. ##
  62. ## Tests
  63. ##
  65. try "
  66. apache_vhost_statement publish_dir ,http, '\
  67. ' www.example.com"
  68. noerror
  69. is out '<VirtualHost *:80>
  71. ServerAdmin contact@www.example.com
  72. ServerName www.example.com
  74. ServerSignature Off
  75. CustomLog /var/log/apache2/www.example.com_access.log combined
  76. ErrorLog /var/log/apache2/www.example.com_error.log
  77. ErrorLog syslog:local2
  80. ##
  81. ## Publish directory /var/www/www.example.com
  82. ##
  84. DocumentRoot /var/www/www.example.com
  86. <Directory />
  87. Options FollowSymLinks
  88. AllowOverride None
  89. </Directory>
  91. <Directory /var/www/www.example.com>
  92. Options Indexes FollowSymLinks MultiViews
  93. AllowOverride all
  94. Allow from all
  95. </Directory>
  97. ## Forbid any cache, this is only usefull on dev server.
  98. #Header set Cache-Control "no-cache"
  99. #Header set Access-Control-Allow-Origin "*"
  100. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  101. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  103. </VirtualHost>' RTRIM
  105. ##
  106. ## Aliases
  107. ##
  109. try "
  110. apache_vhost_statement publish_dir ,http, '
  111. server-aliases:
  112. - toto
  113. ' www.example.com"
  114. noerror
  115. is out reg 'ServerAlias toto'
  118. try "
  119. apache_vhost_statement publish_dir ,http, '
  120. server-aliases:
  121. - toto
  122. - titi
  123. ' www.example.com"
  124. noerror
  125. is out reg 'ServerAlias toto'
  126. is out reg 'ServerAlias titi'
  129. ##
  130. ## Creds
  131. ##
  133. try "
  134. apache_vhost_statement publish_dir ,http, '' www.example.com
  135. " "credentials allow all"
  136. noerror
  137. is out reg 'Allow from all'
  140. try "
  141. apache_vhost_statement publish_dir ,http, '
  142. creds:
  143. toto: xxx
  144. titi: yyy
  145. ' www.example.com
  146. " "credentials with basic auth user/pass"
  147. noerror
  148. is out reg 'AuthType basic'
  149. is out reg 'Require valid-user'
  152. ##
  153. ## proxy
  154. ##
  156. try "
  157. apache_vhost_statement web_proxy ,http, '
  158. target: popo:3333
  159. creds:
  160. toto: titi
  161. ' www.example.com
  162. " "proxy explicit target"
  163. noerror
  164. is out reg 'ProxyPass / http://popo:3333/'
  165. is out part '
  166. <Location / >
  167. AuthType basic
  168. AuthName "private"
  169. AuthUserFile /etc/apache2/sites-enabled/www.example.com.passwd
  170. Require valid-user
  171. ProxyPassReverse http://popo:3333/
  172. </Location>
  173. '
  176. try "
  177. apache_vhost_statement web_proxy ,http, '
  178. target: popo:3333
  179. apache-proxy-pass-options: nocanon
  180. ' www.example.com
  181. " "proxy proxy-pass options"
  182. noerror
  183. is out reg 'ProxyPass / http://popo:3333/ nocanon'
  185. ##
  186. ## ssl
  187. ##
  189. try "
  190. apache_vhost_statement web_proxy ,https, '
  191. ssl: true
  192. target: popo:3333
  193. ' www.example.com
  194. " "ssl default generation (ssl-cert-snakeoil)"
  195. noerror
  196. is out reg 'VirtualHost \*:443'
  197. is out reg '<IfModule mod_ssl.c>'
  198. is out reg 'SSLEngine On'
  199. is out reg 'SSLProxyEngine On'
  200. is out reg 'ssl-cert-snakeoil'
  201. is out reg 'CustomLog /var/log/apache2/s-www.example.com_access.log combined'
  204. try "
  205. RELATIONS=()
  206. apache_vhost_statement web_proxy ,https, '
  207. ssl:
  208. ca-cert: a
  209. key: b
  210. cert: c
  211. target: popo:3333
  212. ' www.example.com
  213. " "ssl providing keys inline"
  214. noerror
  215. is out reg 'SSLCertificateFile /etc/ssl/certs/www.example.com.pem'
  216. is out reg 'SSLCertificateKeyFile /etc/ssl/private/www.example.com.key'
  217. is out reg 'SSLCACertificateFile /etc/ssl/certs/www.example.com-ca.pem'
  220. ##
  221. ## CustomRules
  222. ##
  224. try "
  225. apache_vhost_statement web_proxy ,https, '
  226. ssl:
  227. ca-cert: a
  228. key: b
  229. cert: c
  230. apache-custom-rules: |
  231. RewriteEngine On
  232. RewriteCond %{QUERY_STRING} !skin=formanoo
  233. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  234. target: popo:3333
  235. ' www.example.com
  236. " "custom rules"
  237. noerror
  238. is out reg 'RewriteEngine On'
  241. ##
  242. ## double def
  243. ##
  245. try "
  246. apache_vhost_statement web_proxy ,https,http, '
  247. ssl:
  248. ca-cert: a
  249. key: b
  250. cert: c
  251. apache-custom-rules: |
  252. RewriteEngine On
  253. RewriteCond %{QUERY_STRING} !skin=formanoo
  254. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  255. target: popo:3333
  256. ' www.example.com
  257. " "both http and https"
  258. noerror
  259. is out '<VirtualHost *:80>
  261. ServerAdmin contact@www.example.com
  262. ServerName www.example.com
  264. ServerSignature Off
  265. CustomLog /var/log/apache2/www.example.com_access.log combined
  266. ErrorLog /var/log/apache2/www.example.com_error.log
  267. ErrorLog syslog:local2
  270. ##
  271. ## Custom rules
  272. ##
  274. RewriteEngine On
  275. RewriteCond %{QUERY_STRING} !skin=formanoo
  276. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  279. ##
  280. ## Proxy declaration towards popo:3333
  281. ##
  283. <IfModule mod_proxy.c>
  284. ProxyRequests Off
  285. <Proxy *>
  286. Order deny,allow
  287. Allow from all
  288. </Proxy>
  289. ProxyVia On
  290. ProxyPass / http://popo:3333/ retry=0
  291. <Location / >
  292. Allow from all
  293. ProxyPassReverse http://popo:3333/
  294. </Location>
  296. </IfModule>
  298. RequestHeader set "X-Forwarded-Proto" "http"
  300. ## Fix IE problem (httpapache proxy dav error 408/409)
  301. SetEnv proxy-nokeepalive 1
  303. ## Forbid any cache, this is only usefull on dev server.
  304. #Header set Cache-Control "no-cache"
  305. #Header set Access-Control-Allow-Origin "*"
  306. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  307. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  309. </VirtualHost>
  311. <IfModule mod_ssl.c>
  312. <VirtualHost *:443>
  314. ServerAdmin contact@www.example.com
  315. ServerName www.example.com
  317. ServerSignature Off
  318. CustomLog /var/log/apache2/s-www.example.com_access.log combined
  319. ErrorLog /var/log/apache2/s-www.example.com_error.log
  320. ErrorLog syslog:local2
  323. ##
  324. ## Custom rules
  325. ##
  327. RewriteEngine On
  328. RewriteCond %{QUERY_STRING} !skin=formanoo
  329. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  332. ##
  333. ## Proxy declaration towards popo:3333
  334. ##
  336. <IfModule mod_proxy.c>
  337. ProxyRequests Off
  338. <Proxy *>
  339. Order deny,allow
  340. Allow from all
  341. </Proxy>
  342. ProxyVia On
  343. ProxyPass / http://popo:3333/ retry=0
  344. <Location / >
  345. Allow from all
  346. ProxyPassReverse http://popo:3333/
  347. </Location>
  348. SSLProxyEngine On
  349. </IfModule>
  351. RequestHeader set "X-Forwarded-Proto" "https"
  353. ## Fix IE problem (httpapache proxy dav error 408/409)
  354. SetEnv proxy-nokeepalive 1
  356. ## Forbid any cache, this is only usefull on dev server.
  357. #Header set Cache-Control "no-cache"
  358. #Header set Access-Control-Allow-Origin "*"
  359. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  360. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  362. ##
  363. ## SSL Configuration
  364. ##
  366. SSLEngine On
  368. SSLCertificateFile /etc/ssl/certs/www.example.com.pem
  369. SSLCertificateKeyFile /etc/ssl/private/www.example.com.key
  370. SSLCACertificateFile /etc/ssl/certs/www.example.com-ca.pem
  372. SSLVerifyClient None
  374. </VirtualHost>
  375. </IfModule>' RTRIM
  380. ##
  381. ## single def no domain
  382. ##
  384. try "
  385. apache_vhost_statement publish_dir ,http, '
  386. apache-custom-rules: |
  387. RewriteEngine On
  388. RewriteCond %{QUERY_STRING} !skin=formanoo
  389. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  390. target: popo:3333
  391. ' ""
  392. " "http without domain"
  393. noerror
  394. is out '<VirtualHost *:80>
  396. ServerAdmin webmaster@localhost
  398. ServerSignature Off
  399. CustomLog /var/log/apache2/access.log combined
  400. ErrorLog /var/log/apache2/error.log
  401. ErrorLog syslog:local2
  404. ##
  405. ## Custom rules
  406. ##
  408. RewriteEngine On
  409. RewriteCond %{QUERY_STRING} !skin=formanoo
  410. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  413. ##
  414. ## Publish directory /var/www/html
  415. ##
  417. DocumentRoot /var/www/html
  419. <Directory />
  420. Options FollowSymLinks
  421. AllowOverride None
  422. </Directory>
  424. <Directory /var/www/html>
  425. Options Indexes FollowSymLinks MultiViews
  426. AllowOverride all
  427. Allow from all
  428. </Directory>
  430. ## Forbid any cache, this is only usefull on dev server.
  431. #Header set Cache-Control "no-cache"
  432. #Header set Access-Control-Allow-Origin "*"
  433. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  434. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  436. </VirtualHost>' RTRIM
  439. try "
  440. apache_vhost_statement ssh_tunnel ,https, '
  441. ssl: true
  442. apache-custom-rules: |
  443. RewriteEngine On
  444. RewriteCond %{QUERY_STRING} !skin=formanoo
  445. RewriteRule ^(/web/webclient/home.*)$ $1?skin=formanoo [L,QSA,R=302]
  446. target: popo:3333
  447. ' 'ssh.example.com'
  448. " "ssh tunnel"
  449. noerror
  450. is out '
  451. <IfModule mod_ssl.c>
  452. <VirtualHost *:443>
  454. ServerAdmin contact@ssh.example.com
  455. ServerName ssh.example.com
  457. ServerSignature Off
  458. CustomLog /var/log/apache2/s-ssh.example.com_access.log combined
  459. ErrorLog /var/log/apache2/s-ssh.example.com_error.log
  460. ErrorLog syslog:local2
  463. ##
  464. ## Custom rules
  465. ##
  467. RewriteEngine On
  468. RewriteCond %{QUERY_STRING} !skin=formanoo
  469. RewriteRule ^(/web/webclient/home.*)$ ?skin=formanoo [L,QSA,R=302]
  472. ##
  473. ## SSH Tunnel
  474. ##
  476. #HostnameLookups On
  477. ProxyRequests On
  478. AllowConnect 22
  479. #ProxyVia on
  481. ### Deny everything by default
  483. <Proxy *>
  484. Order deny,allow
  485. Deny from all
  486. </proxy>
  488. ### Accept redirect only to same domain
  490. <Proxy ssh.example.com>
  491. Order deny,allow
  492. Allow from all
  493. </Proxy>
  495. ## Forbid any cache, this is only usefull on dev server.
  496. #Header set Cache-Control "no-cache"
  497. #Header set Access-Control-Allow-Origin "*"
  498. #Header set Access-Control-Allow-Methods "POST, GET, OPTIONS"
  499. #Header set Access-Control-Allow-Headers "origin, content-type, accept"
  501. ##
  502. ## SSL Configuration
  503. ##
  505. SSLEngine On
  507. SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
  508. SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
  511. SSLVerifyClient None
  513. </VirtualHost>
  514. </IfModule>' RTRIM