version 1.209, 2011/12/28 22:41:16
|
version 1.227, 2013/12/07 22:13:27
|
Line 1
|
Line 1
|
## |
## |
## loncapa_apache.conf -- Apache HTTP LON-CAPA configuration file |
## loncapa_apache.conf -- Apache HTTP LON-CAPA configuration file |
## |
## |
## $Id$ |
|
## |
# $Id$ |
|
|
# |
# |
# LON-CAPA Section (extensions to httpd.conf daemon configuration) |
# LON-CAPA Section (extensions to httpd.conf daemon configuration) |
Line 18 Group www
|
Line 18 Group www
|
|
|
# ======================================================= Shared Object Modules |
# ======================================================= Shared Object Modules |
|
|
LoadModule perl_module modules/libperl.so |
<IfModule !perl_module> |
|
LoadModule perl_module modules/libperl.so |
|
</IfModule> |
<IfDefine !MODPERL2> |
<IfDefine !MODPERL2> |
AddModule mod_perl.c |
AddModule mod_perl.c |
</IfDefine> |
</IfDefine> |
Line 38 ExtendedStatus On
|
Line 40 ExtendedStatus On
|
Alias /zipspool/ /home/httpd/zipspool/ |
Alias /zipspool/ /home/httpd/zipspool/ |
Alias /prtspool/ /home/httpd/prtspool/ |
Alias /prtspool/ /home/httpd/prtspool/ |
Alias /captchaspool/ /home/httpd/captchaspool/ |
Alias /captchaspool/ /home/httpd/captchaspool/ |
|
Alias /webdav/ /home/httpd/html/priv/ |
ScriptAlias /cgi-bin/ "/home/httpd/cgi-bin/" |
ScriptAlias /cgi-bin/ "/home/httpd/cgi-bin/" |
|
<IfModule mod_dav_fs.c> |
|
DAVLockDB /home/httpd/webdav/DAVLock |
|
</IfModule> |
|
|
# ================================================================= Directories |
# ================================================================= Directories |
|
|
Line 50 PerlCleanupHandler Apache::lonacc::clean
|
Line 56 PerlCleanupHandler Apache::lonacc::clean
|
PerlAuthenHandler Apache::checkauthen |
PerlAuthenHandler Apache::checkauthen |
PerlSetVar lonOtherAuthen no |
PerlSetVar lonOtherAuthen no |
|
|
|
<IfModule mod_shib> |
|
PerlAuthenHandler Apache::lonshibauth |
|
PerlSetVar lonOtherAuthen yes |
|
PerlSetVar lonOtherAuthenType Shibboleth |
|
</IfModule> |
|
|
#PerlWarn On |
#PerlWarn On |
<LocationMatch "^/+res/adm/pages/[^/]+\.(gif|png)$"> |
<LocationMatch "^/+res/adm/pages/[^/]+\.(gif|png)$"> |
PerlAuthenHandler 'sub { return OK }' |
PerlAuthenHandler 'sub { return OK }' |
Line 269 ErrorDocument 406 /adm/unauthorized
|
Line 281 ErrorDocument 406 /adm/unauthorized
|
ErrorDocument 500 /adm/errorhandler |
ErrorDocument 500 /adm/errorhandler |
</LocationMatch> |
</LocationMatch> |
|
|
|
<LocationMatch "^/+webdav/[\w\-]+/[\w\-]+/"> |
|
<IfModule mod_dav.c> |
|
<IfModule mod_ssl.c> |
|
AuthType Basic |
|
AuthName "LONCAPA username,domain" |
|
Require valid-user |
|
SSLRequireSSL |
|
PerlAuthenHandler Apache::lonwebdavauth |
|
PerlAuthzHandler Apache::lonwebdavacc |
|
Dav On |
|
DirectoryIndex index.missing |
|
Options Indexes FollowSymLinks |
|
ErrorDocument 403 /adm/nowebdav.html |
|
ErrorDocument 404 /adm/notfound.html |
|
ErrorDocument 406 /adm/unauthorized |
|
ErrorDocument 500 /adm/errorhandler |
|
</IfModule> |
|
<IfModule !mod_ssl.c> |
|
<IfModule mod_rewrite.c> |
|
RewriteEngine on |
|
RewriteRule .* http://%{HTTP_HOST}/adm/nowebdav.html [L] |
|
</IfModule> |
|
</IfModule> |
|
</IfModule> |
|
<IfModule !mod_dav.c> |
|
<IfModule mod_rewrite.c> |
|
RewriteEngine on |
|
RewriteRule .* http://%{HTTP_HOST}/adm/nowebdav.html [L] |
|
</IfModule> |
|
</IfModule> |
|
</LocationMatch> |
|
|
<LocationMatch "^/+raw.*"> |
<LocationMatch "^/+raw.*"> |
PerlAccessHandler Apache::lonracc |
PerlAccessHandler Apache::lonracc |
</LocationMatch> |
</LocationMatch> |
Line 581 ErrorDocument 403 /adm/login
|
Line 625 ErrorDocument 403 /adm/login
|
ErrorDocument 500 /adm/errorhandler |
ErrorDocument 500 /adm/errorhandler |
</Location> |
</Location> |
|
|
|
<Location /adm/dependencies> |
|
AuthType LONCAPA |
|
Require valid-user |
|
PerlAuthzHandler Apache::lonacc |
|
SetHandler perl-script |
|
PerlHandler Apache::londependencies |
|
ErrorDocument 403 /adm/login |
|
ErrorDocument 406 /adm/roles |
|
ErrorDocument 500 /adm/errorhandler |
|
</Location> |
|
|
<Location /adm/login> |
<Location /adm/login> |
SetHandler perl-script |
SetHandler perl-script |
PerlHandler Apache::lonlogin |
PerlHandler Apache::lonlogin |
Line 637 SetHandler perl-script
|
Line 692 SetHandler perl-script
|
PerlHandler Apache::migrateuser |
PerlHandler Apache::migrateuser |
</Location> |
</Location> |
|
|
|
<Location /adm/sso> |
|
<IfModule mod_shib> |
|
AuthType shibboleth |
|
ShibUseEnvironment On |
|
ShibRequestSetting requireSession 1 |
|
ShibRequestSetting redirectToSSL 443 |
|
require valid-user |
|
PerlAuthzHandler Apache::lonshibacc |
|
PerlAuthzHandler Apache::lonacc |
|
</IfModule> |
|
<IfModule !mod_shib> |
|
PerlTypeHandler Apache::lonnoshib |
|
</IfModule> |
|
</Location> |
|
|
<Location /adm/annotations> |
<Location /adm/annotations> |
AuthType LONCAPA |
AuthType LONCAPA |
Require valid-user |
Require valid-user |
Line 1119 ErrorDocument 403 /adm/login
|
Line 1189 ErrorDocument 403 /adm/login
|
ErrorDocument 500 /adm/errorhandler |
ErrorDocument 500 /adm/errorhandler |
</Location> |
</Location> |
|
|
|
<Location /adm/extresedit> |
|
AuthType LONCAPA |
|
Require valid-user |
|
PerlAuthzHandler Apache::lonacc |
|
SetHandler perl-script |
|
PerlHandler Apache::lonextresedit |
|
ErrorDocument 403 /adm/login |
|
ErrorDocument 500 /adm/errorhandler |
|
</Location> |
|
|
<LocationMatch "^/adm/announcements"> |
<LocationMatch "^/adm/announcements"> |
AuthType LONCAPA |
AuthType LONCAPA |
Require valid-user |
Require valid-user |
Line 1305 PerlHandler Apache::lonsupportreq
|
Line 1385 PerlHandler Apache::lonsupportreq
|
ErrorDocument 500 /adm/errorhandler |
ErrorDocument 500 /adm/errorhandler |
</LocationMatch> |
</LocationMatch> |
|
|
<LocationMatch "^/adm/css"> |
<LocationMatch "^/adm/css/.*\.css$"> |
SetHandler perl-script |
SetHandler perl-script |
PerlHandler Apache::loncss |
PerlHandler Apache::loncss |
ErrorDocument 500 /adm/errorhandler |
ErrorDocument 500 /adm/errorhandler |
Line 1341 PerlHandler Apache::londns
|
Line 1421 PerlHandler Apache::londns
|
ErrorDocument 500 /adm/errorhandler |
ErrorDocument 500 /adm/errorhandler |
</LocationMatch> |
</LocationMatch> |
|
|
|
<LocationMatch "^/ajax/spellcheck"> |
|
SetHandler perl-script |
|
PerlHandler Apache::spellcheck |
|
</LocationMatch> |
|
|
|
|
|
|
# ------------------------------------------------- Backdoor Adm Tests/Programs |
# ------------------------------------------------- Backdoor Adm Tests/Programs |
|
|
<Location /adm/test> |
<Location /adm/test> |
Line 1363 PerlChildExitHandler Apache::lonacc::goo
|
Line 1450 PerlChildExitHandler Apache::lonacc::goo
|
<Directory /> |
<Directory /> |
Options None |
Options None |
AllowOverride None |
AllowOverride None |
order deny,allow |
<IfModule mod_authz_core.c> |
deny from all |
Require all denied |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order deny,allow |
|
deny from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# Allow uploaded files to be served |
# Allow uploaded files to be served |
Line 1372 deny from all
|
Line 1464 deny from all
|
<Directory "/home/httpd/lonUsers"> |
<Directory "/home/httpd/lonUsers"> |
Options Includes FollowSymLinks |
Options Includes FollowSymLinks |
AllowOverride None |
AllowOverride None |
order allow,deny |
<IfModule mod_authz_core.c> |
allow from all |
Require all granted |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order allow,deny |
|
allow from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# Allow construction space files to be served |
# Allow construction space files to be served |
Line 1381 allow from all
|
Line 1478 allow from all
|
<Directory "/home/*/public_html/" > |
<Directory "/home/*/public_html/" > |
Options Includes FollowSymLinks |
Options Includes FollowSymLinks |
AllowOverride |
AllowOverride |
order allow,deny |
<IfModule mod_authz_core.c> |
allow from all |
Require all granted |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order allow,deny |
|
allow from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# Yes to symbolic links and server-side includes |
# Yes to symbolic links and server-side includes |
Line 1390 allow from all
|
Line 1492 allow from all
|
<Directory /home/httpd/html> |
<Directory /home/httpd/html> |
Options Includes FollowSymLinks |
Options Includes FollowSymLinks |
AllowOverride None |
AllowOverride None |
order allow,deny |
<IfModule mod_authz_core.c> |
allow from all |
Require all granted |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order allow,deny |
|
allow from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# If it is in cgi-bin, then it can be executed as a CGI script. |
# If it is in cgi-bin, then it can be executed as a CGI script. |
Line 1399 allow from all
|
Line 1506 allow from all
|
<Directory /home/httpd/cgi-bin> |
<Directory /home/httpd/cgi-bin> |
AllowOverride None |
AllowOverride None |
Options ExecCGI FollowSymLinks |
Options ExecCGI FollowSymLinks |
order allow,deny |
<IfModule mod_authz_core.c> |
allow from all |
Require all granted |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order allow,deny |
|
allow from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# Allow serving of files in prtspool |
# Allow serving of files in prtspool |
Line 1408 allow from all
|
Line 1520 allow from all
|
<Directory "/home/httpd/prtspool/"> |
<Directory "/home/httpd/prtspool/"> |
Options Includes FollowSymLinks |
Options Includes FollowSymLinks |
AllowOverride None |
AllowOverride None |
order allow,deny |
<IfModule mod_authz_core.c> |
allow from all |
Require all granted |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order allow,deny |
|
allow from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# Allow serving of files in zipspool |
# Allow serving of files in zipspool |
Line 1417 allow from all
|
Line 1534 allow from all
|
<Directory "/home/httpd/zipspool/"> |
<Directory "/home/httpd/zipspool/"> |
Options Includes FollowSymLinks |
Options Includes FollowSymLinks |
AllowOverride None |
AllowOverride None |
order allow,deny |
<IfModule mod_authz_core.c> |
allow from all |
Require all granted |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order allow,deny |
|
allow from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# Allow serving of files in captchaspool |
# Allow serving of files in captchaspool |
Line 1426 allow from all
|
Line 1548 allow from all
|
<Directory "/home/httpd/captchaspool/"> |
<Directory "/home/httpd/captchaspool/"> |
Options Includes FollowSymLinks |
Options Includes FollowSymLinks |
AllowOverride None |
AllowOverride None |
order allow,deny |
<IfModule mod_authz_core.c> |
allow from all |
Require all granted |
|
</IfModule> |
|
<IfModule !mod_authz_core.c> |
|
order allow,deny |
|
allow from all |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
|
<DirectoryMatch "^/home/httpd/html/priv/.+/"> |
|
DirectoryIndex disabled |
|
</DirectoryMatch> |
|
|
# ============================================================= Access Handlers |
# ============================================================= Access Handlers |
|
|
# ------------------------------------------------- Allow server-status reports |
# ------------------------------------------------- Allow server-status reports |
Line 1448 ErrorDocument 500 /adm/errorhandler
|
Line 1579 ErrorDocument 500 /adm/errorhandler
|
# ------------------- Allow access to local system documentation from localhost |
# ------------------- Allow access to local system documentation from localhost |
Alias /doc /usr/doc |
Alias /doc /usr/doc |
<Directory /usr/doc> |
<Directory /usr/doc> |
order deny,allow |
|
deny from all |
|
allow from localhost |
|
Options Indexes FollowSymLinks |
Options Indexes FollowSymLinks |
|
<IfModule mod_authz_host.c> |
|
Require local |
|
</IfModule> |
|
<IfModule !mod_authz_host.c> |
|
order deny,allow |
|
deny from all |
|
allow from localhost |
|
</IfModule> |
</Directory> |
</Directory> |
|
|
# ******** THESE "SHOULD" NEVER BE ALTERED BY THE USER ************************ |
# ******** THESE "SHOULD" NEVER BE ALTERED BY THE USER ************************ |
# ====================================== Internal Settings / Perl Configuration |
# ====================================== Internal Settings / Perl Configuration |
|
|
PerlSetVar lonVersion '<!-- VERSION -->' |
PerlSetVar lonVersion '<!-- VERSION -->' |
PerlSetVar lonIDsDir /home/httpd/lonIDs |
PerlSetVar lonIDsDir /home/httpd/lonIDs |
|
PerlSetVar lonDAVsessDir /home/httpd/webdav/sessionIDs |
PerlSetVar lonTabDir /home/httpd/lonTabs |
PerlSetVar lonTabDir /home/httpd/lonTabs |
PerlSetVar lonUsersDir /home/httpd/lonUsers |
PerlSetVar lonUsersDir /home/httpd/lonUsers |
PerlSetVar lonIconsURL /adm/lonIcons |
PerlSetVar lonIconsURL /adm/lonIcons |
Line 1483 PerlSetVar lonFontsDir /home/h
|
Line 1620 PerlSetVar lonFontsDir /home/h
|
# - a number that describes the minimum version that has mathml support |
# - a number that describes the minimum version that has mathml support |
# - a number that describes the minimum number version that has unicode support |
# - a number that describes the minimum number version that has unicode support |
|
|
PerlSetVar lonBrowsDet explorer:msie:netscape:msie\s(\d+\.\d+)\;:9999:5&mozilla:mozilla\/[5-9]:msie:mozilla\/(\d+\.\d+)\s:9999:1&netscape:netscape:msie:netscape\/(\d+\.\d+):9999:7&netscape:netscape\/[7-9]:shouldnotmatch:netscape\/(\d+\.\d+):9999:7&amaya:amaya:mozilla:V(\d+\.\d+)\s:1:1&safari:safari:msie:safari\/([\d\.]+):9999:84 |
PerlSetVar lonBrowsDet explorer:msie:netscape:msie\s(\d+\.\d+)\;:9999:5&mozilla:mozilla\/[5-9]:msie:mozilla\/(\d+\.\d+)\s:9999:1&netscape:netscape:msie:netscape\/(\d+\.\d+):9999:7&netscape:netscape\/[7-9]:shouldnotmatch:netscape\/(\d+\.\d+):9999:7&amaya:amaya:mozilla:V(\d+\.\d+)\s:1:1&safari:safari:msie:safari\/([\d\.]+):9999:84&chrome:chrome:chromeframe:\s+chrome\/(\d+\.\d+):9999:1 |
|
|
PerlSetVar lonTextBrowsers windows\s+ce:lynx |
PerlSetVar lonTextBrowsers windows\s+ce:lynx |
PerlSetVar lonScansDir /home/httpd/scantron |
PerlSetVar lonScansDir /home/httpd/scantron |