|
version 1.43.2.3, 2020/01/06 15:54:10
|
version 1.44, 2018/07/11 17:36:09
|
|
Line 46 http://www.lon-capa.org/
|
Line 46 http://www.lon-capa.org/
|
| <file> |
<file> |
| <target dist='default'>/etc/httpd/conf/httpd.conf</target> |
<target dist='default'>/etc/httpd/conf/httpd.conf</target> |
| <target dist='suse9.2 suse9.3 sles9'>/etc/httpd/httpd.conf</target> |
<target dist='suse9.2 suse9.3 sles9'>/etc/httpd/httpd.conf</target> |
| <target dist='sles10 sles11 sles12 sles15 suse10.1 suse10.2 suse10.3 suse11.1 suse11.2 suse11.3 suse11.4 suse12.1 suse12.2 suse12.3 suse13.1 suse13.2'>/etc/apache2/default-server.conf</target> |
<target dist='sles10 sles11 sles12 suse10.1 suse10.2 suse10.3 suse11.1 suse11.2 suse11.3 suse11.4 suse12.1 suse12.2 suse12.3 suse13.1 suse13.2'>/etc/apache2/default-server.conf</target> |
| <target dist='debian5 debian6 ubuntu6 ubuntu8 ubuntu10 ubuntu12'>/etc/apache2/sites-available/loncapa</target> |
<target dist='debian5 debian6 ubuntu6 ubuntu8 ubuntu10 ubuntu12'>/etc/apache2/sites-available/loncapa</target> |
| <target dist='ubuntu14 ubuntu16 ubuntu18'>/etc/apache2/conf-available/loncapa</target> |
<target dist='ubuntu14 ubuntu16 ubuntu18'>/etc/apache2/conf-available/loncapa</target> |
| <note>This is for Apache 1.X for Red Hat 4ES, Fedora 2, 3 and 4, SusSE 9.2 and 9.3, and SLES 9 distributions. This is for Apache 2.X for Fedora 5, Red Hat 5, CentOS 5, Scientific Linux 5, Oracle Linux 5, SuSE 10.1, SLES 10, Debian 5, Ubuntu LTS 8 and later distributions</note> |
<note>This is for Apache 1.X for Red Hat 4ES, Fedora 2, 3 and 4, SusSE 9.2 and 9.3, and SLES 9 distributions. This is for Apache 2.X for Fedora 5, Red Hat 5, CentOS 5, Scientific Linux 5, SuSE 10.1, SLES 10, Debian 5, Ubuntu LTS 8 and later distributions</note> |
| <dependencies dist='default'> |
<dependencies dist='default'> |
| /etc/httpd/conf/httpd.conf |
/etc/httpd/conf/httpd.conf |
| </dependencies> |
</dependencies> |
|
Line 62 http://www.lon-capa.org/
|
Line 62 http://www.lon-capa.org/
|
| <dependencies dist='ubuntu14 ubuntu16 ubuntu18'> |
<dependencies dist='ubuntu14 ubuntu16 ubuntu18'> |
| /etc/apache2/conf-available/loncapa |
/etc/apache2/conf-available/loncapa |
| </dependencies> |
</dependencies> |
| <dependencies dist='sles10 sles11 sles12 sles15 suse10.1 suse10.2 suse10.3 suse11.1 suse11.2 suse11.3 suse11.4 suse12.1 suse12.2 suse12.3 suse13.1 suse13.2'> |
<dependencies dist='sles10 sles11 sles12 suse10.1 suse10.2 suse10.3 suse11.1 suse11.2 suse11.3 suse11.4 suse12.1 suse12.2 suse12.3 suse13.1 suse13.2'> |
| /etc/apache2/default-server.conf |
/etc/apache2/default-server.conf |
| </dependencies> |
</dependencies> |
| <perlscript mode='fg' dist="default"> |
<perlscript mode='fg' dist="default"> |
|
Line 197 else {
|
Line 197 else {
|
| 'of requests for http:// to https:// '."\n".'or:'."\n".$rewrite_off. |
'of requests for http:// to https:// '."\n".'or:'."\n".$rewrite_off. |
| ' - the file used to disable such rewriting'."\n\n". |
' - the file used to disable such rewriting'."\n\n". |
| 'This may be because '. $curr_rewrite.' has been '. |
'This may be because '. $curr_rewrite.' has been '. |
| 'previously customized,'."\n".'or it may be because of a change '. |
'previously customized,'."\n".' or it may be because of a change '. |
| 'to the files in '.$rewrite_dir."\n"); |
'to the files in '.$rewrite_dir."\n"); |
| if (open(my $fh,'<',$curr_rewrite)) { |
if (open(my $fh,'<',$curr_rewrite)) { |
| while(<$fh>) { |
while(<$fh>) { |
|
Line 219 else {
|
Line 219 else {
|
| || '<DIST />' eq 'sles9') { |
|| '<DIST />' eq 'sles9') { |
| $ssldir = '/etc/apache/vhosts.d'; |
$ssldir = '/etc/apache/vhosts.d'; |
| } elsif ('<DIST />' =~ /^(suse|sles)/) { |
} elsif ('<DIST />' =~ /^(suse|sles)/) { |
| $ssldir = '/etc/apache2/vhosts.d'; |
$ssldir = '/etc/apache2/vhosts.d'; |
| } elsif ('<DIST />' =~ /^(debian|ubuntu)/) { |
} elsif ('<DIST />' =~ /^(debian|ubuntu)/) { |
| $ssldir = '/etc/apache2/sites-available'; |
$ssldir = '/etc/apache2/sites-available'; |
| } else { |
} else { |
|
Line 227 else {
|
Line 227 else {
|
| } |
} |
| my $hostname = Sys::Hostname::FQDN::fqdn(); |
my $hostname = Sys::Hostname::FQDN::fqdn(); |
| my $hostip = Socket::inet_ntoa(scalar(gethostbyname($hostname)) || 'localhost'); |
my $hostip = Socket::inet_ntoa(scalar(gethostbyname($hostname)) || 'localhost'); |
| my @expected = ('RewriteCond %{REQUEST_URI} ^/adm/wrapper/ext/(?!https:\/\/)', |
my @expected = ('RewriteRule ^/adm/wrapper/ext/(?!https:\/\/) http://%{HTTP_HOST}%{REQUEST_URI} [R,L,NE]', |
| 'RewriteCond %{QUERY_STRING} (^|&(|amp;))usehttp=1($|&)', |
|
| 'RewriteRule ^/adm/wrapper/ext/(?!https:\/\/) http://%{HTTP_HOST}%{REQUEST_URI} [R,L,NE]', |
|
| 'RewriteCond %{REMOTE_ADDR} 127.0.0.1', |
'RewriteCond %{REMOTE_ADDR} 127.0.0.1', |
| 'RewriteRule (.*) - [L]'); |
'RewriteRule (.*) - [L]'); |
| if (($hostip ne '') && ($hostip ne '127.0.0.1')) { |
if (($hostip ne '') && ($hostip ne '127.0.0.1')) { |
|
Line 237 else {
|
Line 235 else {
|
| 'RewriteRule (.*) - [L]')); |
'RewriteRule (.*) - [L]')); |
| } |
} |
| push(@expected,('RewriteCond %{REQUEST_URI} ^/public/.*/syllabus$', |
push(@expected,('RewriteCond %{REQUEST_URI} ^/public/.*/syllabus$', |
| 'RewriteCond %{QUERY_STRING} (^|&(|amp;))usehttp=1($|&)', |
'RewriteCond %{QUERY_STRING} (^|&)usehttp=1($|&)', |
| 'RewriteRule ^/public/.*/syllabus$ http://%{HTTP_HOST}%{REQUEST_URI} [R,L,NE]')); |
'RewriteRule ^/public/.*/syllabus$ http://%{HTTP_HOST}%{REQUEST_URI} [R,L,NE]')); |
| if (-d $ssldir) { |
if (-d $ssldir) { |
| my @rewrites; |
my @rewrites; |
|
Line 267 else {
|
Line 265 else {
|
| } else { |
} else { |
| chomp(); |
chomp(); |
| s/^(\s+|\s+)$//g; |
s/^(\s+|\s+)$//g; |
| push(@{$rewrites[$num]},$_); |
push(@{$rewrites[$num]},$_); |
| } |
} |
| } elsif (/^\s*<IfModule\s+mod_rewrite.c>/) { |
} elsif (/^\s*<IfModule\s+mod_rewrite.c>/) { |
| $rewrite = 1; |
$rewrite = 1; |
|
Line 292 else {
|
Line 290 else {
|
| } |
} |
| } |
} |
| if ($found >= @expected) { |
if ($found >= @expected) { |
| $gotrules = 1; |
$gotrules = 1; |
| } |
} |
| } |
} |
| } |
} |
| } |
} |
| } |
} |
| unless ($gotrules) { |
unless ($gotrules) { |
| print('**** WARNING **** '."\n".$curr_rewrite.' is currently set so rewrites '. |
print('**** WARNING **** '.$curr_rewrite.' is currently set so rewrites '. |
| 'of http to https are enabled for most URLs.'."\n". |
'of http to https are enabled for most URLs.'."\n". |
| 'Unless your Apache configuration includes Strict-Transport-Security '. |
'It is recommended to also set rewrites from https to http '. |
| '(with max-age > 0), it is recommended to also set rewrites from https to http '. |
'in a file in '.$ssldir.' by including the following:'."\n". |
| 'for specific URLs in a file in '.$ssldir.' by including the following:'."\n". |
|
| "<IfModule mod_rewrite.c>\n".' '. |
"<IfModule mod_rewrite.c>\n".' '. |
| join("\n ",@expected)."\n". |
join("\n ",@expected)."\n". |
| "</IfModule>\n"); |
"</IfModule>\n"); |
![[BACK]](/icons/back.gif){kind=icon}
Return to webserver.piml CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / doc / loncapafiles