andersk Git - sql.git/blame_incremental - etc/lighttpd/lighttpd.conf

... / ...

Commit	Line	Data
	1	server.modules = ( "mod_rewrite", "mod_alias", "mod_access", "mod_auth", "mod_proxy_core", "mod_proxy_backend_fastcgi", "mod_redirect", "mod_magnet", "mod_accesslog" )
	2	server.errorlog = "/var/log/lighttpd/error_log"
	3	$HTTP["useragent"] !~ "^check_http" {
	4	accesslog.filename = "/var/log/lighttpd/access_log"
	5	}
	6	etag.use-inode = "disable"
	7	index-file.names = ( "index.php", "index.html" )
	8	url.access-deny = ( "~", ".inc", ".svn", "CVS" )
	9	static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )
	10	server.port = 80
	11	server.pid-file = "/var/run/lighttpd.pid"
	12	server.username = "lighttpd"
	13	server.groupname = "lighttpd"
	14
	15	$PHYSICAL["existing-path"] =~ "\.php$" {
	16	proxy-core.balancer = "round-robin"
	17	proxy-core.allow-x-sendfile = "enable"
	18	proxy-core.protocol = "fastcgi"
	19	proxy-core.backends = ( "unix:/tmp/php-fastcgi.sock" )
	20	proxy-core.max-pool-size = 4
	21	}
	22
	23	server.document-root = "/srv/web/home/"
	24	alias.url = ( "/~sql" => "/srv/web" )
	25	alias.url += ( "/main" => "/srv/web/main" )
	26	alias.url += ( "/dev" => "/srv/web/dev" )
	27	alias.url += ( "/tools" => "/srv/web/tools" )
	28	#alias.url += ( "/" => "/srv/web/home" )
	29	url.rewrite-once = ( "^/tools/([^\?]+)(\??.*)" => "/tools/$1.php$2" )
	30	url.rewrite-once += ( "^/~sql/main/do/([^\?]+)(\??.*)" => "/~sql/main/$1.php$2" )
	31	url.rewrite-once += ( "^/~sql/dev/do/([^\?]+)(\??.*)" => "/~sql/dev/$1.php$2" )
	32	url.rewrite-once += ( "^/main/do/([^\?]+)(\??.*)" => "/main/$1.php$2" )
	33	url.rewrite-once += ( "^/dev/do/([^\?]+)(\??.*)" => "/dev/$1.php$2" )
	34	url.redirect = ( "^/phpMyAdmin(.*)" => "http://scripts.mit.edu/~sql/phpMyAdmin$1" )
	35
	36	ssl.verifyclient.username = "SSL_CLIENT_S_DN_emailAddress"
	37	$SERVER["socket"] == "0.0.0.0:443" {
	38	ssl.engine = "enable"
	39	ssl.pemfile = "/etc/lighttpd/sql.mit.edu.pem"
	40	ssl.ca-file = "/etc/lighttpd/mitCAclient.pem"
	41	ssl.verifyclient.activate = "enable"
	42	ssl.verifyclient.enforce = "disable"
	43	ssl.verifyclient.depth = 2
	44
	45	$HTTP["url"] =~ "^/api(/\|$)" {
	46	$HTTP["useragent"] =~ "AppleWebKit" {
	47	url.access-deny = ("")
	48	}
	49	auth.backend = "gssapi"
	50	auth.backend.gssapi.principal = "HTTP/sql.mit.edu"
	51	auth.backend.gssapi.keytab = "/etc/lighttpd/krb5.keytab"
	52	auth.require = ( "/" => ( "method" => "gssapi", "realm" => "ATHENA.MIT.EDU", "require" => "valid-user"))
	53	magnet.attract-raw-url-to = ( "/srv/www/api.lua" )
	54	}
	55	}
	56
	57	mimetype.assign = (
	58	".gz" => "application/x-gzip",
	59	".tar.gz" => "application/x-tgz",
	60	".tgz" => "application/x-tgz",
	61	".tar" => "application/x-tar",
	62	".gif" => "image/gif",
	63	".jpg" => "image/jpeg",
	64	".jpeg" => "image/jpeg",
	65	".png" => "image/png",
	66	".css" => "text/css",
	67	".html" => "text/html",
	68	".htm" => "text/html",
	69	".js" => "text/javascript",
	70	".asc" => "text/plain",
	71	".c" => "text/plain",
	72	".cpp" => "text/plain",
	73	".log" => "text/plain",
	74	".conf" => "text/plain",
	75	".text" => "text/plain",
	76	".txt" => "text/plain",
	77	".dtd" => "text/xml",
	78	".xml" => "text/xml",
	79	".bz2" => "application/x-bzip",
	80	".tbz" => "application/x-bzip-compressed-tar",
	81	".tar.bz2" => "application/x-bzip-compressed-tar"
	82	)