server.modules = ( "mod_rewrite", "mod_alias", "mod_access", "mod_auth", "mod_proxy_core", "mod_proxy_backend_fastcgi", "mod_redirect", "mod_magnet", "mod_accesslog" )
server.errorlog = "/var/log/lighttpd/error_log"
-$HTTP["useragent"] !~ "^check_http" {
- accesslog.filename = "/var/log/lighttpd/access_log"
-}
+#$HTTP["useragent"] !~ "^check_http" {
+# accesslog.filename = "/var/log/lighttpd/access_log"
+#}
etag.use-inode = "disable"
index-file.names = ( "index.php", "index.html" )
url.access-deny = ( "~", ".inc", ".svn", "CVS" )
server.port = 80
server.pid-file = "/var/run/lighttpd.pid"
server.username = "lighttpd"
-server.groupname = "lighttpd"
+server.groupname = "apache"
$PHYSICAL["existing-path"] =~ "\.php$" {
proxy-core.balancer = "round-robin"
ssl.verifyclient.username = "SSL_CLIENT_S_DN_emailAddress"
$SERVER["socket"] == "0.0.0.0:443" {
+ server.document-root = "/srv/www/root/"
ssl.engine = "enable"
ssl.pemfile = "/etc/lighttpd/sql.mit.edu.pem"
ssl.ca-file = "/etc/lighttpd/mitCAclient.pem"
ssl.verifyclient.enforce = "disable"
ssl.verifyclient.depth = 2
- $HTTP["url"] =~ "^/api(/|$)" {
- $HTTP["useragent"] =~ "AppleWebKit" {
- url.access-deny = ("")
- }
- auth.backend = "gssapi"
- auth.backend.gssapi.principal = "HTTP/sql.mit.edu"
- auth.backend.gssapi.keytab = "/etc/lighttpd/krb5.keytab"
- auth.require = ( "/" => ( "method" => "gssapi", "realm" => "ATHENA.MIT.EDU", "require" => "valid-user"))
- magnet.attract-raw-url-to = ( "/srv/www/api.lua" )
+ url.redirect += ( "^/$" => "/manage/" )
+ $HTTP["url"] =~ "^/manage(/|$)" {
+ proxy-core.balancer = "round-robin"
+ proxy-core.protocol = "fastcgi"
+ proxy-core.backends = ( "unix:/srv/var/run/interface.sock" )
+ proxy-core.max-pool-size = 4
+ proxy-core.rewrite-request = (
+ "_pathinfo" => ( "^/manage(/.*)" => "$1" ),
+ "_scriptname" => ( "^(/manage/)" => "$1" )
+ )
}
}