t/lib-httpd/apache.conf

   1 ServerName dummy
   2 PidFile httpd.pid
   3 DocumentRoot www
   4 LogFormat "%h %l %u %t \"%r\" %>s %b" common
   5 CustomLog access.log common
   6 ErrorLog error.log
   7 <IfModule !mod_log_config.c>
   8         LoadModule log_config_module modules/mod_log_config.so
   9 </IfModule>
  10 <IfModule !mod_alias.c>
  11         LoadModule alias_module modules/mod_alias.so
  12 </IfModule>
  13 <IfModule !mod_cgi.c>
  14         LoadModule cgi_module modules/mod_cgi.so
  15 </IfModule>
  16 <IfModule !mod_env.c>
  17         LoadModule env_module modules/mod_env.so
  18 </IfModule>
  19 <IfModule !mod_rewrite.c>
  20         LoadModule rewrite_module modules/mod_rewrite.so
  21 </IFModule>
  22 <IfModule !mod_version.c>
  23         LoadModule version_module modules/mod_version.so
  24 </IfModule>
  25 <IfModule !mod_headers.c>
  26         LoadModule headers_module modules/mod_headers.so
  27 </IfModule>
  28 <IfModule !mod_setenvif.c>
  29         LoadModule setenvif_module modules/mod_setenvif.so
  30 </IfModule>
  31
  32 <IfDefine HTTP2>
  33 LoadModule http2_module modules/mod_http2.so
  34 Protocols h2c
  35 </IfDefine>
  36
  37 <IfVersion < 2.4>
  38 LockFile accept.lock
  39 </IfVersion>
  40
  41 <IfModule !mod_auth_basic.c>
  42         LoadModule auth_basic_module modules/mod_auth_basic.so
  43 </IfModule>
  44 <IfModule !mod_authn_file.c>
  45         LoadModule authn_file_module modules/mod_authn_file.so
  46 </IfModule>
  47 <IfModule !mod_authz_user.c>
  48         LoadModule authz_user_module modules/mod_authz_user.so
  49 </IfModule>
  50 <IfModule !mod_authz_host.c>
  51         LoadModule authz_host_module modules/mod_authz_host.so
  52 </IfModule>
  53
  54 <IfVersion >= 2.4>
  55 <IfModule !mod_authn_core.c>
  56         LoadModule authn_core_module modules/mod_authn_core.so
  57 </IfModule>
  58 <IfModule !mod_authz_core.c>
  59         LoadModule authz_core_module modules/mod_authz_core.so
  60 </IfModule>
  61 <IfModule !mod_access_compat.c>
  62         LoadModule access_compat_module modules/mod_access_compat.so
  63 </IfModule>
  64 <IfModule !mod_unixd.c>
  65         LoadModule unixd_module modules/mod_unixd.so
  66 </IfModule>
  67
  68 <IfDefine HTTP2>
  69 <IfModule !mod_mpm_event.c>
  70         LoadModule mpm_event_module modules/mod_mpm_event.so
  71 </IfModule>
  72 </IfDefine>
  73 <IfDefine !HTTP2>
  74 <IfModule !mod_mpm_prefork.c>
  75         LoadModule mpm_prefork_module modules/mod_mpm_prefork.so
  76 </IfModule>
  77 </IfDefine>
  78 </IfVersion>
  79
  80 PassEnv GIT_VALGRIND
  81 PassEnv GIT_VALGRIND_OPTIONS
  82 PassEnv GNUPGHOME
  83 PassEnv ASAN_OPTIONS
  84 PassEnv LSAN_OPTIONS
  85 PassEnv GIT_TRACE
  86 PassEnv GIT_CONFIG_NOSYSTEM
  87 PassEnv GIT_TEST_SIDEBAND_ALL
  88 PassEnv LANG
  89 PassEnv LC_ALL
  90
  91 Alias /dumb/ www/
  92 Alias /auth/dumb/ www/auth/dumb/
  93
  94 <LocationMatch /smart/>
  95         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
  96         SetEnv GIT_HTTP_EXPORT_ALL
  97 </LocationMatch>
  98 <LocationMatch /smart_noexport/>
  99         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 100 </LocationMatch>
 101 <LocationMatch /smart_custom_env/>
 102         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 103         SetEnv GIT_HTTP_EXPORT_ALL
 104         SetEnv GIT_COMMITTER_NAME "Custom User"
 105         SetEnv GIT_COMMITTER_EMAIL custom@example.com
 106 </LocationMatch>
 107 <LocationMatch /smart_namespace/>
 108         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 109         SetEnv GIT_HTTP_EXPORT_ALL
 110         SetEnv GIT_NAMESPACE ns
 111 </LocationMatch>
 112 <LocationMatch /smart_cookies/>
 113         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 114         SetEnv GIT_HTTP_EXPORT_ALL
 115         Header set Set-Cookie name=value
 116 </LocationMatch>
 117 <LocationMatch /smart_headers/>
 118         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 119         SetEnv GIT_HTTP_EXPORT_ALL
 120 </LocationMatch>
 121 <LocationMatch /one_time_perl/>
 122         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 123         SetEnv GIT_HTTP_EXPORT_ALL
 124 </LocationMatch>
 125 <LocationMatch /smart_v0/>
 126         SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
 127         SetEnv GIT_HTTP_EXPORT_ALL
 128         SetEnv GIT_PROTOCOL
 129 </LocationMatch>
 130 ScriptAlias /smart/incomplete_length/git-upload-pack incomplete-length-upload-pack-v2-http.sh/
 131 ScriptAlias /smart/incomplete_body/git-upload-pack incomplete-body-upload-pack-v2-http.sh/
 132 ScriptAlias /smart/no_report/git-receive-pack error-no-report.sh/
 133 ScriptAliasMatch /error_git_upload_pack/(.*)/git-upload-pack error.sh/
 134 ScriptAliasMatch /smart_*[^/]*/(.*) ${GIT_EXEC_PATH}/git-http-backend/$1
 135 ScriptAlias /broken_smart/ broken-smart-http.sh/
 136 ScriptAlias /error_smart/ error-smart-http.sh/
 137 ScriptAlias /error/ error.sh/
 138 ScriptAliasMatch /one_time_perl/(.*) apply-one-time-perl.sh/$1
 139 <Directory ${GIT_EXEC_PATH}>
 140         Options FollowSymlinks
 141 </Directory>
 142 <Files incomplete-length-upload-pack-v2-http.sh>
 143         Options ExecCGI
 144 </Files>
 145 <Files incomplete-body-upload-pack-v2-http.sh>
 146         Options ExecCGI
 147 </Files>
 148 <Files error-no-report.sh>
 149         Options ExecCGI
 150 </Files>
 151 <Files broken-smart-http.sh>
 152         Options ExecCGI
 153 </Files>
 154 <Files error-smart-http.sh>
 155         Options ExecCGI
 156 </Files>
 157 <Files error.sh>
 158   Options ExecCGI
 159 </Files>
 160 <Files apply-one-time-perl.sh>
 161         Options ExecCGI
 162 </Files>
 163 <Files ${GIT_EXEC_PATH}/git-http-backend>
 164         Options ExecCGI
 165 </Files>
 166
 167 RewriteEngine on
 168 RewriteRule ^/dumb-redir/(.*)$ /dumb/$1 [R=301]
 169 RewriteRule ^/smart-redir-perm/(.*)$ /smart/$1 [R=301]
 170 RewriteRule ^/smart-redir-temp/(.*)$ /smart/$1 [R=302]
 171 RewriteRule ^/smart-redir-auth/(.*)$ /auth/smart/$1 [R=301]
 172 RewriteRule ^/smart-redir-limited/(.*)/info/refs$ /smart/$1/info/refs [R=301]
 173 RewriteRule ^/ftp-redir/(.*)$ ftp://localhost:1000/$1 [R=302]
 174
 175 RewriteRule ^/loop-redir/x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-(.*) /$1 [R=302]
 176 RewriteRule ^/loop-redir/(.*)$ /loop-redir/x-$1 [R=302]
 177
 178 # redir-to/502/x?y -> really-redir-to?path=502/x&qs=y which returns 502
 179 # redir-to/x?y -> really-redir-to?path=x&qs=y -> x?y
 180 RewriteCond %{QUERY_STRING} ^(.*)$
 181 RewriteRule ^/redir-to/(.*)$ /really-redir-to?path=$1&qs=%1 [R=302]
 182 RewriteCond %{QUERY_STRING} ^path=502/(.*)&qs=(.*)$
 183 RewriteRule ^/really-redir-to$ - [R=502,L]
 184 RewriteCond %{QUERY_STRING} ^path=(.*)&qs=(.*)$
 185 RewriteRule ^/really-redir-to$ /%1?%2 [R=302]
 186
 187 # The first rule issues a client-side redirect to something
 188 # that _doesn't_ look like a git repo. The second rule is a
 189 # server-side rewrite, so that it turns out the odd-looking
 190 # thing _is_ a git repo. The "[PT]" tells Apache to match
 191 # the usual ScriptAlias rules for /smart.
 192 RewriteRule ^/insane-redir/(.*)$ /intern-redir/$1/foo [R=301]
 193 RewriteRule ^/intern-redir/(.*)/foo$ /smart/$1 [PT]
 194
 195 # Serve info/refs internally without redirecting, but
 196 # issue a redirect for any object requests.
 197 RewriteRule ^/redir-objects/(.*/info/refs)$ /dumb/$1 [PT]
 198 RewriteRule ^/redir-objects/(.*/objects/.*)$ /dumb/$1 [R=301]
 199
 200 # Apache 2.2 does not understand <RequireAll>, so we use RewriteCond.
 201 # And as RewriteCond does not allow testing for non-matches, we match
 202 # the desired case first (one has abra, two has cadabra), and let it
 203 # pass by marking the RewriteRule as [L], "last rule, do not process
 204 # any other matching RewriteRules after this"), and then have another
 205 # RewriteRule that matches all other cases and lets them fail via '[F]',
 206 # "fail the request".
 207 RewriteCond %{HTTP:x-magic-one} =abra
 208 RewriteCond %{HTTP:x-magic-two} =cadabra
 209 RewriteRule ^/smart_headers/.* - [L]
 210 RewriteRule ^/smart_headers/.* - [F]
 211
 212 <IfDefine SSL>
 213 LoadModule ssl_module modules/mod_ssl.so
 214
 215 SSLCertificateFile httpd.pem
 216 SSLCertificateKeyFile httpd.pem
 217 SSLRandomSeed startup file:/dev/urandom 512
 218 SSLRandomSeed connect file:/dev/urandom 512
 219 SSLSessionCache none
 220 SSLMutex file:ssl_mutex
 221 SSLEngine On
 222 </IfDefine>
 223
 224 <Location /auth/>
 225         AuthType Basic
 226         AuthName "git-auth"
 227         AuthUserFile passwd
 228         Require valid-user
 229 </Location>
 230
 231 <LocationMatch "^/auth-push/.*/git-receive-pack$">
 232         AuthType Basic
 233         AuthName "git-auth"
 234         AuthUserFile passwd
 235         Require valid-user
 236 </LocationMatch>
 237
 238 <LocationMatch "^/auth-fetch/.*/git-upload-pack$">
 239         AuthType Basic
 240         AuthName "git-auth"
 241         AuthUserFile passwd
 242         Require valid-user
 243 </LocationMatch>
 244
 245 RewriteCond %{QUERY_STRING} service=git-receive-pack [OR]
 246 RewriteCond %{REQUEST_URI} /git-receive-pack$
 247 RewriteRule ^/half-auth-complete/ - [E=AUTHREQUIRED:yes]
 248
 249 <Location /half-auth-complete/>
 250   Order Deny,Allow
 251   Deny from env=AUTHREQUIRED
 252
 253   AuthType Basic
 254   AuthName "Git Access"
 255   AuthUserFile passwd
 256   Require valid-user
 257   Satisfy Any
 258 </Location>
 259
 260 <IfDefine DAV>
 261         LoadModule dav_module modules/mod_dav.so
 262         LoadModule dav_fs_module modules/mod_dav_fs.so
 263
 264         DAVLockDB DAVLock
 265         <Location /dumb/>
 266                 Dav on
 267         </Location>
 268         <Location /auth/dumb>
 269                 Dav on
 270         </Location>
 271 </IfDefine>
 272
 273 <IfDefine SVN>
 274         LoadModule dav_svn_module modules/mod_dav_svn.so
 275
 276         <Location /${LIB_HTTPD_SVN}>
 277                 DAV svn
 278                 SVNPath "${LIB_HTTPD_SVNPATH}"
 279         </Location>
 280 </IfDefine>