diff options
author | jsdelfino <jsdelfino@13f79535-47bb-0310-9956-ffa450edef68> | 2010-11-13 07:53:10 +0000 |
---|---|---|
committer | jsdelfino <jsdelfino@13f79535-47bb-0310-9956-ffa450edef68> | 2010-11-13 07:53:10 +0000 |
commit | 3ac22b097d9a9e829ec45963a7c3a40dd12b40a1 (patch) | |
tree | ae26d54d061b8f61a1ee2513aa913e8a5e3a1277 /sca-cpp/trunk/modules/http/httpd-conf | |
parent | 1b5f778e514d74d86eee83932b9d5948d7e6e316 (diff) |
Port to HTTPD 2.3.8. Add an auth module to make OpenID, OAuth 1/2 and HTTPD 2.3 Form auth modules play nice together.
git-svn-id: http://svn.us.apache.org/repos/asf/tuscany@1034693 13f79535-47bb-0310-9956-ffa450edef68
Diffstat (limited to 'sca-cpp/trunk/modules/http/httpd-conf')
-rwxr-xr-x | sca-cpp/trunk/modules/http/httpd-conf | 90 |
1 files changed, 70 insertions, 20 deletions
diff --git a/sca-cpp/trunk/modules/http/httpd-conf b/sca-cpp/trunk/modules/http/httpd-conf index 8a6928d823..79a85c0961 100755 --- a/sca-cpp/trunk/modules/http/httpd-conf +++ b/sca-cpp/trunk/modules/http/httpd-conf @@ -52,19 +52,25 @@ PidFile $root/logs/httpd.pid # after mod_rewrite's hooks) LoadModule alias_module ${modules_prefix}/modules/mod_alias.so LoadModule authn_file_module ${modules_prefix}/modules/mod_authn_file.so -LoadModule authn_default_module ${modules_prefix}/modules/mod_authn_default.so +LoadModule authn_core_module ${modules_prefix}/modules/mod_authn_core.so LoadModule authz_host_module ${modules_prefix}/modules/mod_authz_host.so LoadModule authz_groupfile_module ${modules_prefix}/modules/mod_authz_groupfile.so LoadModule authz_user_module ${modules_prefix}/modules/mod_authz_user.so -LoadModule authz_default_module ${modules_prefix}/modules/mod_authz_default.so +LoadModule authz_core_module ${modules_prefix}/modules/mod_authz_core.so LoadModule auth_basic_module ${modules_prefix}/modules/mod_auth_basic.so +LoadModule auth_digest_module ${modules_prefix}/modules/mod_auth_digest.so +LoadModule auth_form_module ${modules_prefix}/modules/mod_auth_form.so +LoadModule request_module ${modules_prefix}/modules/mod_request.so +LoadModule deflate_module ${modules_prefix}/modules/mod_deflate.so LoadModule filter_module ${modules_prefix}/modules/mod_filter.so LoadModule proxy_module ${modules_prefix}/modules/mod_proxy.so LoadModule proxy_connect_module ${modules_prefix}/modules/mod_proxy_connect.so LoadModule proxy_http_module ${modules_prefix}/modules/mod_proxy_http.so LoadModule proxy_balancer_module ${modules_prefix}/modules/mod_proxy_balancer.so +LoadModule lbmethod_byrequests_module ${modules_prefix}/modules/mod_lbmethod_byrequests.so LoadModule headers_module ${modules_prefix}/modules/mod_headers.so LoadModule ssl_module ${modules_prefix}/modules/mod_ssl.so +LoadModule socache_shmcb_module ${modules_prefix}/modules/mod_socache_shmcb.so LoadModule rewrite_module ${modules_prefix}/modules/mod_rewrite.so LoadModule mime_module ${modules_prefix}/modules/mod_mime.so LoadModule status_module ${modules_prefix}/modules/mod_status.so @@ -79,8 +85,16 @@ LoadModule logio_module ${modules_prefix}/modules/mod_logio.so LoadModule usertrack_module ${modules_prefix}/modules/mod_usertrack.so LoadModule vhost_alias_module ${modules_prefix}/modules/mod_vhost_alias.so LoadModule cgi_module ${modules_prefix}/modules/mod_cgi.so +LoadModule unixd_module ${modules_prefix}/modules/mod_unixd.so +LoadModule session_module ${modules_prefix}/modules/mod_session.so +#LoadModule session_crypto_module ${modules_prefix}/modules/mod_session_crypto.so +LoadModule session_cookie_module ${modules_prefix}/modules/mod_session_cookie.so +LoadModule slotmem_shm_module ${modules_prefix}/modules/mod_slotmem_shm.so +LoadModule ratelimit_module ${modules_prefix}/modules/mod_ratelimit.so +LoadModule reqtimeout_module ${modules_prefix}/modules/mod_reqtimeout.so LoadModule mod_tuscany_ssltunnel $here/libmod_tuscany_ssltunnel.so +LoadModule mod_tuscany_openauth $here/libmod_tuscany_openauth.so # Basic security precautions User $user @@ -103,7 +117,6 @@ CookieTracking on CookieName TuscanyVisitorId # Configure Mime types -DefaultType text/plain TypesConfig $here/conf/mime.types # Set default document root @@ -114,26 +127,44 @@ DirectoryIndex index.html <Directory /> Options None AllowOverride None -Order deny,allow -Deny from all +Require all denied </Directory> -<FilesMatch "^\.ht"> -Order deny,allow -Deny from all -Satisfy Any -</FilesMatch> -# Allow access to document root -<Directory "$htdocs"> -Options FollowSymLinks -Allow from all -</Directory> +# Configure authentication +Include conf/auth.conf -# Allow access to root location -<Location /> -Options FollowSymLinks -Order deny,allow -Allow from all +# Allow access to public locations +<Location /login> +AuthType None +Require all granted +</Location> +<Location /logout> +AuthType None +Require all granted +</Location> +<Location /public> +AuthType None +Require all granted +</Location> +<Location /openid> +AuthType None +Require all granted +</Location> +<Location /ui> +AuthType None +Require all granted +</Location> +<Location /wiring> +AuthType None +Require all granted +</Location> +<Location /.well-known/host-meta> +AuthType None +Require all granted +</Location> +<Location /favicon.ico> +AuthType None +Require all granted </Location> # Listen on HTTP port @@ -152,6 +183,25 @@ Include conf/svhost.conf EOF +# Generate auth configuration +cat >$root/conf/auth.conf <<EOF +# Generated by: httpd-conf $* +# Authentication configuration + +# Allow access to document root +<Directory "$htdocs"> +Options FollowSymLinks +Require all granted +</Directory> + +# Allow access to root location +<Location /> +Options FollowSymLinks +Require all granted +</Location> + +EOF + # Generate vhost configuration cat >$root/conf/vhost.conf <<EOF # Generated by: httpd-conf $* |