mako SQL interface

[sql.git] / etc / lighttpd / lighttpd.conf
diff --git a/etc/lighttpd/lighttpd.conf b/etc/lighttpd/lighttpd.conf

index e17178e879b3141108e65eb2e0765b7fd3b51f06..dd29d4e977734eb769d538de325636c77b9bbeb5 100644 (file)
--- a/etc/lighttpd/lighttpd.conf
+++ b/etc/lighttpd/lighttpd.conf
@@ -1,8 +1,8 @@
  server.modules              = ( "mod_rewrite", "mod_alias", "mod_access", "mod_auth", "mod_proxy_core", "mod_proxy_backend_fastcgi", "mod_redirect", "mod_magnet", "mod_accesslog" )
  server.errorlog             = "/var/log/lighttpd/error_log"
-$HTTP["useragent"] !~ "^check_http" {
-    accesslog.filename          = "/var/log/lighttpd/access_log"
-}
+#$HTTP["useragent"] !~ "^check_http" {
+#    accesslog.filename          = "/var/log/lighttpd/access_log"
+#}
  etag.use-inode              = "disable"
  index-file.names            = ( "index.php", "index.html" )
  url.access-deny             = ( "~", ".inc", ".svn", "CVS" )
@@ -10,7 +10,7 @@ static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )
  server.port                 = 80
  server.pid-file             = "/var/run/lighttpd.pid"
  server.username             = "lighttpd"
-server.groupname            = "lighttpd"
+server.groupname            = "apache"
  
  $PHYSICAL["existing-path"] =~ "\.php$" {
      proxy-core.balancer = "round-robin"
@@ -35,6 +35,7 @@ url.redirect = ( "^/phpMyAdmin(.*)" => "http://scripts.mit.edu/~sql/phpMyAdmin$1
  
  ssl.verifyclient.username  = "SSL_CLIENT_S_DN_emailAddress"
  $SERVER["socket"] == "0.0.0.0:443" {
+    server.document-root = "/srv/www/root/"
      ssl.engine = "enable"
      ssl.pemfile = "/etc/lighttpd/sql.mit.edu.pem"
      ssl.ca-file = "/etc/lighttpd/mitCAclient.pem"
@@ -42,15 +43,16 @@ $SERVER["socket"] == "0.0.0.0:443" {
      ssl.verifyclient.enforce    = "disable"
      ssl.verifyclient.depth      = 2
  
-    $HTTP["url"] =~ "^/api(/|$)" {
-        $HTTP["useragent"] =~ "AppleWebKit" {
-            url.access-deny = ("")
-        }
-        auth.backend = "gssapi"
-        auth.backend.gssapi.principal = "HTTP/sql.mit.edu"
-        auth.backend.gssapi.keytab = "/etc/lighttpd/krb5.keytab"
-        auth.require = ( "/" => ( "method" => "gssapi", "realm" => "ATHENA.MIT.EDU", "require" => "valid-user"))
-        magnet.attract-raw-url-to = ( "/srv/www/api.lua" )
+    url.redirect += ( "^/$" => "/manage/" )
+    $HTTP["url"] =~ "^/manage(/|$)" {
+        proxy-core.balancer = "round-robin"
+        proxy-core.protocol = "fastcgi"
+        proxy-core.backends = ( "unix:/srv/var/run/interface.sock" )
+        proxy-core.max-pool-size = 4
+        proxy-core.rewrite-request = (
+            "_pathinfo" => ( "^/manage(/.*)" => "$1" ),
+            "_scriptname" => ( "^(/manage/)" => "$1" )
+        )
      }
  }