From ab40ed1c959728297376e343628b862ab60b6041 Mon Sep 17 00:00:00 2001 From: Pierre-Yves Chibon Date: Jul 24 2015 07:46:24 +0000 Subject: Adjust the example apache configuration file to be close to the prod one --- diff --git a/files/pagure.conf b/files/pagure.conf index e713c75..5a84743 100644 --- a/files/pagure.conf +++ b/files/pagure.conf @@ -1,49 +1,114 @@ -# Apache configuration file for pagure - -#WSGIDaemonProcess pagure user=git group=git maximum-requests=50000 display-name=pagure processes=8 threads=4 inactivity-timeout=300 - #WSGISocketPrefix run/wsgi -#WSGIRestrictStdout On +##WSGIRestrictStdout On #WSGIRestrictSignal Off #WSGIPythonOptimize 1 +#WSGIPassAuthorization On +#WSGIDaemonProcess pagure user=git group=git maximum-requests=1000 display-name=pagure processes=4 threads=4 inactivity-timeout=300 +## It is important that the doc server runs in a different apache process +#WSGIDaemonProcess paguredocs user=git group=git maximum-requests=1000 display-name=pagure processes=4 threads=4 inactivity-timeout=300 + +# + #ServerName pagure.io + #Redirect permanent / https://pagure.io/ +# + + +# + #ServerName docs.pagure.org + #Redirect permanent / https://docs.pagure.org/ +# + + +# + #ServerName docs.pagure.org + + #WSGIScriptAlias / /usr/share/pagure/docs_pagure.wsgi + + #SSLEngine on + #SSLProtocol all -SSLv2 -SSLv3 + ## Use secure TLSv1.1 and TLSv1.2 ciphers + #Header always add Strict-Transport-Security "max-age=15768000; includeSubDomains; preload" + + #SSLCertificateFile /etc/pki/tls/....crt + #SSLCertificateChainFile /etc/pki/tls/....intermediate.crt + #SSLCertificateKeyFile /etc/pki/tls/....key + + #Alias /static /usr/lib/python2.7/site-packages/pagure/static/ -#WSGIScriptAlias /pagure /usr/share/pagure/pagure.wsgi - -# -# WSGIProcessGroup pagure -# -# # Apache 2.4 -# Require all granted -# -# -# # Apache 2.2 -# Order deny,allow -# Allow from all -# -# - - -# - #WSGIDaemonProcess pagure user=git group=git maximum-requests=50000 display-name=pagure processes=8 threads=4 inactivity-timeout=300 - - #WSGISocketPrefix run/wsgi - #WSGIRestrictStdout On - #WSGIRestrictSignal Off - #WSGIPythonOptimize 1 - - #WSGIScriptAlias / /usr/share/pagure/doc_pagure.wsgi - - # - # WSGIProcessGroup pagure - # - # # Apache 2.4 - # Require all granted - # - # - # # Apache 2.2 - # Order deny,allow - # Allow from all - # - # + # + #WSGIProcessGroup paguredocs + # + ## Apache 2.4 + #Require all granted + # + # + ## Apache 2.2 + #Order deny,allow + #Allow from all + # + # +# + + +# + #ServerName pagure.io + + #WSGIScriptAlias / /usr/share/pagure/pagure.wsgi + + #SSLEngine on + #SSLProtocol all -SSLv2 -SSLv3 + ## Use secure TLSv1.1 and TLSv1.2 ciphers + #Header always add Strict-Transport-Security "max-age=15768000; includeSubDomains; preload" + + #SSLCertificateFile /etc/pki/tls/....crt + #SSLCertificateChainFile /etc/pki/tls/....intermediate.crt + #SSLCertificateKeyFile /etc/pki/tls/....key + + #Alias /static /usr/lib/python2.7/site-packages/pagure/static/ + #Alias /releases /var/www/releases + + ## Section used to support cloning git repo over http (https in this case) + #SetEnv GIT_PROJECT_ROOT /srv/git/repositories + + #AliasMatch ^/(.*/objects/[0-9a-f]{2}/[0-9a-f]{38})$ /path/to/git/repositories/$1 + #AliasMatch ^/(.*/objects/pack/pack-[0-9a-f]{40}.(pack|idx))$ /path/to/git/repositories/$1 + #ScriptAliasMatch \ + #"(?x)^/(.*/(HEAD | \ + #info/refs | \ + #objects/info/[^/]+ | \ + #git-(upload|receive)-pack))$" \ + #/usr/libexec/git-core/git-http-backend/$1 + + # + #WSGIProcessGroup pagure + # + ## Apache 2.4 + #Require all granted + # + # + ## Apache 2.2 + #Order deny,allow + #Allow from all + # + # + + ## Folder where are stored the tarball of the releases + # + #WSGIProcessGroup pagure + # + ## Apache 2.4 + #Require all granted + # + # + ## Apache 2.2 + #Order deny,allow + #Allow from all + # + # + + # + #Options +Indexes + # # +