t/lib-httpd/apache.conf

   1 ServerName dummy
   2 PidFile httpd.pid
   3 DocumentRoot www
   4 LogFormat "%h %l %u %t \"%r\" %>s %b" common
   5 CustomLog access.log common
   6 ErrorLog error.log
   7 <IfModule !mod_log_config.c>
   8         LoadModule log_config_module modules/mod_log_config.so
   9 </IfModule>
  10 <IfModule !mod_alias.c>
  11         LoadModule alias_module modules/mod_alias.so
  12 </IfModule>
  13 <IfModule !mod_cgi.c>
  14         LoadModule cgi_module modules/mod_cgi.so
  15 </IfModule>
  16 <IfModule !mod_env.c>
  17         LoadModule env_module modules/mod_env.so
  18 </IfModule>
  19 <IfModule !mod_rewrite.c>
  20         LoadModule rewrite_module modules/mod_rewrite.so
  21 </IFModule>
  22 <IfModule !mod_version.c>
  23         LoadModule version_module modules/mod_version.so
  24 </IfModule>
  25 <IfModule !mod_headers.c>
  26         LoadModule headers_module modules/mod_headers.so
  27 </IfModule>
  28 <IfModule !mod_setenvif.c>
  29         LoadModule setenvif_module modules/mod_setenvif.so
  30 </IfModule>
  31
  32 <IfVersion < 2.4>
  33 LockFile accept.lock
  34 </IfVersion>
  35
  36 <IfVersion < 2.1>
  37 <IfModule !mod_auth.c>
  38         LoadModule auth_module modules/mod_auth.so
  39 </IfModule>
  40 </IfVersion>
  41
  42 <IfVersion >= 2.1>
  43 <IfModule !mod_auth_basic.c>
  44         LoadModule auth_basic_module modules/mod_auth_basic.so
  45 </IfModule>
  46 <IfModule !mod_authn_file.c>
  47         LoadModule authn_file_module modules/mod_authn_file.so
  48 </IfModule>
  49 <IfModule !mod_authz_user.c>
  50         LoadModule authz_user_module modules/mod_authz_user.so
  51 </IfModule>
  52 <IfModule !mod_authz_host.c>
  53         LoadModule authz_host_module modules/mod_authz_host.so
  54 </IfModule>
  55 </IfVersion>
  56
  57 <IfVersion >= 2.4>
  58 <IfModule !mod_authn_core.c>
  59         LoadModule authn_core_module modules/mod_authn_core.so
  60 </IfModule>
  61 <IfModule !mod_authz_core.c>
  62         LoadModule authz_core_module modules/mod_authz_core.so
  63 </IfModule>
  64 <IfModule !mod_access_compat.c>
  65         LoadModule access_compat_module modules/mod_access_compat.so
  66 </IfModule>
  67 <IfModule !mod_mpm_prefork.c>
  68         LoadModule mpm_prefork_module modules/mod_mpm_prefork.so
  69 </IfModule>
  70 <IfModule !mod_unixd.c>
  71         LoadModule unixd_module modules/mod_unixd.so
  72 </IfModule>
  73 </IfVersion>
  74
  75 PassEnv GIT_VALGRIND
  76 PassEnv GIT_VALGRIND_OPTIONS
  77 PassEnv GNUPGHOME
  78 PassEnv ASAN_OPTIONS
  79 PassEnv LSAN_OPTIONS
  80 PassEnv GIT_TRACE
  81 PassEnv GIT_CONFIG_NOSYSTEM
  82 PassEnv GIT_TEST_SIDEBAND_ALL
  83 PassEnv LANG
  84 PassEnv LC_ALL
  85
  86 Alias /dumb/ www/
  87 Alias /auth/dumb/ www/auth/dumb/
  88
  89 <LocationMatch /smart/>
  90         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
  91         SetEnv GIT_HTTP_EXPORT_ALL
  92 </LocationMatch>
  93 <LocationMatch /smart_noexport/>
  94         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
  95 </LocationMatch>
  96 <LocationMatch /smart_custom_env/>
  97         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
  98         SetEnv GIT_HTTP_EXPORT_ALL
  99         SetEnv GIT_COMMITTER_NAME "Custom User"
 100         SetEnv GIT_COMMITTER_EMAIL custom@example.com
 101 </LocationMatch>
 102 <LocationMatch /smart_namespace/>
 103         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 104         SetEnv GIT_HTTP_EXPORT_ALL
 105         SetEnv GIT_NAMESPACE ns
 106 </LocationMatch>
 107 <LocationMatch /smart_cookies/>
 108         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 109         SetEnv GIT_HTTP_EXPORT_ALL
 110         Header set Set-Cookie name=value
 111 </LocationMatch>
 112 <LocationMatch /smart_headers/>
 113         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 114         SetEnv GIT_HTTP_EXPORT_ALL
 115 </LocationMatch>
 116 <LocationMatch /one_time_perl/>
 117         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 118         SetEnv GIT_HTTP_EXPORT_ALL
 119 </LocationMatch>
 120 <LocationMatch /smart_v0/>
 121         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 122         SetEnv GIT_HTTP_EXPORT_ALL
 123         SetEnv GIT_PROTOCOL
 124 </LocationMatch>
 125 ScriptAlias /smart/incomplete_length/git-upload-pack incomplete-length-upload-pack-v2-http.sh/
 126 ScriptAlias /smart/incomplete_body/git-upload-pack incomplete-body-upload-pack-v2-http.sh/
 127 ScriptAlias /smart/no_report/git-receive-pack error-no-report.sh/
 128 ScriptAliasMatch /error_git_upload_pack/(.*)/git-upload-pack error.sh/
 129 ScriptAliasMatch /smart_*[^/]*/(.*) ${GIT_EXEC_PATH}/git-http-backend/$1
 130 ScriptAlias /broken_smart/ broken-smart-http.sh/
 131 ScriptAlias /error_smart/ error-smart-http.sh/
 132 ScriptAlias /error/ error.sh/
 133 ScriptAliasMatch /one_time_perl/(.*) apply-one-time-perl.sh/$1
 134 <Directory ${GIT_EXEC_PATH}>
 135         Options FollowSymlinks
 136 </Directory>
 137 <Files incomplete-length-upload-pack-v2-http.sh>
 138         Options ExecCGI
 139 </Files>
 140 <Files incomplete-body-upload-pack-v2-http.sh>
 141         Options ExecCGI
 142 </Files>
 143 <Files error-no-report.sh>
 144         Options ExecCGI
 145 </Files>
 146 <Files broken-smart-http.sh>
 147         Options ExecCGI
 148 </Files>
 149 <Files error-smart-http.sh>
 150         Options ExecCGI
 151 </Files>
 152 <Files error.sh>
 153   Options ExecCGI
 154 </Files>
 155 <Files apply-one-time-perl.sh>
 156         Options ExecCGI
 157 </Files>
 158 <Files ${GIT_EXEC_PATH}/git-http-backend>
 159         Options ExecCGI
 160 </Files>
 161
 162 RewriteEngine on
 163 RewriteRule ^/dumb-redir/(.*)$ /dumb/$1 [R=301]
 164 RewriteRule ^/smart-redir-perm/(.*)$ /smart/$1 [R=301]
 165 RewriteRule ^/smart-redir-temp/(.*)$ /smart/$1 [R=302]
 166 RewriteRule ^/smart-redir-auth/(.*)$ /auth/smart/$1 [R=301]
 167 RewriteRule ^/smart-redir-limited/(.*)/info/refs$ /smart/$1/info/refs [R=301]
 168 RewriteRule ^/ftp-redir/(.*)$ ftp://localhost:1000/$1 [R=302]
 169
 170 RewriteRule ^/loop-redir/x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-(.*) /$1 [R=302]
 171 RewriteRule ^/loop-redir/(.*)$ /loop-redir/x-$1 [R=302]
 172
 173 # redir-to/502/x?y -> really-redir-to?path=502/x&qs=y which returns 502
 174 # redir-to/x?y -> really-redir-to?path=x&qs=y -> x?y
 175 RewriteCond %{QUERY_STRING} ^(.*)$
 176 RewriteRule ^/redir-to/(.*)$ /really-redir-to?path=$1&qs=%1 [R=302]
 177 RewriteCond %{QUERY_STRING} ^path=502/(.*)&qs=(.*)$
 178 RewriteRule ^/really-redir-to$ - [R=502,L]
 179 RewriteCond %{QUERY_STRING} ^path=(.*)&qs=(.*)$
 180 RewriteRule ^/really-redir-to$ /%1?%2 [R=302]
 181
 182 # The first rule issues a client-side redirect to something
 183 # that _doesn't_ look like a git repo. The second rule is a
 184 # server-side rewrite, so that it turns out the odd-looking
 185 # thing _is_ a git repo. The "[PT]" tells Apache to match
 186 # the usual ScriptAlias rules for /smart.
 187 RewriteRule ^/insane-redir/(.*)$ /intern-redir/$1/foo [R=301]
 188 RewriteRule ^/intern-redir/(.*)/foo$ /smart/$1 [PT]
 189
 190 # Serve info/refs internally without redirecting, but
 191 # issue a redirect for any object requests.
 192 RewriteRule ^/redir-objects/(.*/info/refs)$ /dumb/$1 [PT]
 193 RewriteRule ^/redir-objects/(.*/objects/.*)$ /dumb/$1 [R=301]
 194
 195 # Apache 2.2 does not understand <RequireAll>, so we use RewriteCond.
 196 # And as RewriteCond does not allow testing for non-matches, we match
 197 # the desired case first (one has abra, two has cadabra), and let it
 198 # pass by marking the RewriteRule as [L], "last rule, do not process
 199 # any other matching RewriteRules after this"), and then have another
 200 # RewriteRule that matches all other cases and lets them fail via '[F]',
 201 # "fail the request".
 202 RewriteCond %{HTTP:x-magic-one} =abra
 203 RewriteCond %{HTTP:x-magic-two} =cadabra
 204 RewriteRule ^/smart_headers/.* - [L]
 205 RewriteRule ^/smart_headers/.* - [F]
 206
 207 <IfDefine SSL>
 208 LoadModule ssl_module modules/mod_ssl.so
 209
 210 SSLCertificateFile httpd.pem
 211 SSLCertificateKeyFile httpd.pem
 212 SSLRandomSeed startup file:/dev/urandom 512
 213 SSLRandomSeed connect file:/dev/urandom 512
 214 SSLSessionCache none
 215 SSLMutex file:ssl_mutex
 216 SSLEngine On
 217 </IfDefine>
 218
 219 <Location /auth/>
 220         AuthType Basic
 221         AuthName "git-auth"
 222         AuthUserFile passwd
 223         Require valid-user
 224 </Location>
 225
 226 <LocationMatch "^/auth-push/.*/git-receive-pack$">
 227         AuthType Basic
 228         AuthName "git-auth"
 229         AuthUserFile passwd
 230         Require valid-user
 231 </LocationMatch>
 232
 233 <LocationMatch "^/auth-fetch/.*/git-upload-pack$">
 234         AuthType Basic
 235         AuthName "git-auth"
 236         AuthUserFile passwd
 237         Require valid-user
 238 </LocationMatch>
 239
 240 RewriteCond %{QUERY_STRING} service=git-receive-pack [OR]
 241 RewriteCond %{REQUEST_URI} /git-receive-pack$
 242 RewriteRule ^/half-auth-complete/ - [E=AUTHREQUIRED:yes]
 243
 244 <Location /half-auth-complete/>
 245   Order Deny,Allow
 246   Deny from env=AUTHREQUIRED
 247
 248   AuthType Basic
 249   AuthName "Git Access"
 250   AuthUserFile passwd
 251   Require valid-user
 252   Satisfy Any
 253 </Location>
 254
 255 <IfDefine DAV>
 256         LoadModule dav_module modules/mod_dav.so
 257         LoadModule dav_fs_module modules/mod_dav_fs.so
 258
 259         DAVLockDB DAVLock
 260         <Location /dumb/>
 261                 Dav on
 262         </Location>
 263         <Location /auth/dumb>
 264                 Dav on
 265         </Location>
 266 </IfDefine>
 267
 268 <IfDefine SVN>
 269         LoadModule dav_svn_module modules/mod_dav_svn.so
 270
 271         <Location /${LIB_HTTPD_SVN}>
 272                 DAV svn
 273                 SVNPath "${LIB_HTTPD_SVNPATH}"
 274         </Location>
 275 </IfDefine>