--- loncom/loncapa_apache.conf 2008/07/08 17:52:32 1.177 +++ loncom/loncapa_apache.conf 2012/12/14 23:05:17 1.215.2.4 @@ -1,7 +1,7 @@ ## ## loncapa_apache.conf -- Apache HTTP LON-CAPA configuration file ## -## $Id: loncapa_apache.conf,v 1.177 2008/07/08 17:52:32 raeburn Exp $ +## $Id: loncapa_apache.conf,v 1.215.2.4 2012/12/14 23:05:17 raeburn Exp $ ## # @@ -38,7 +38,11 @@ ExtendedStatus On Alias /zipspool/ /home/httpd/zipspool/ Alias /prtspool/ /home/httpd/prtspool/ Alias /captchaspool/ /home/httpd/captchaspool/ +Alias /webdav/ /home/httpd/html/priv/ ScriptAlias /cgi-bin/ "/home/httpd/cgi-bin/" + + DAVLockDB /home/httpd/webdav/DAVLock + # ================================================================= Directories @@ -50,7 +54,24 @@ PerlCleanupHandler Apache::lonacc::clean PerlAuthenHandler Apache::checkauthen PerlSetVar lonOtherAuthen no + + PerlAuthenHandler Apache::lonshibauth + PerlSetVar lonOtherAuthen yes + PerlSetVar lonOtherAuthenType Shibboleth + + #PerlWarn On + +PerlAuthenHandler 'sub { return OK }' + + +# Send proper expires header to avoid unnecessary HTTP request for static content + + ExpiresActive On + ExpiresDefault "access plus 12 hours" + Header set Cache-Control "public, no-transform" + + AuthType LONCAPA @@ -95,6 +116,18 @@ SetHandler perl-script PerlHandler Apache::portfolio + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::lonpdfupload +ErrorDocument 403 /adm/login +ErrorDocument 404 /adm/notfound.html +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + PerlAccessHandler Apache::lontokacc PerlCleanupHandler Apache::lontokacc::removefile @@ -105,7 +138,8 @@ PerlCleanupHandler Apache::lonacc::clean AuthType LONCAPA Require valid-user PerlAuthzHandler Apache::lonacc -PerlHandler Apache::londatecheck +PerlHandler Apache::londatecheck +PerlHandler Apache::lonipcheck PerlHeaderParserHandler Apache::lonuploadrep ErrorDocument 403 /adm/login ErrorDocument 404 /adm/notfound.html @@ -203,6 +237,7 @@ Require valid-user PerlAuthzHandler Apache::lonacc SetHandler perl-script PerlHandler Apache::londatecheck +PerlHandler Apache::lonipcheck PerlHandler Apache::lonsimplepage ErrorDocument 404 /adm/notfound.html ErrorDocument 406 /adm/notinit.html @@ -215,6 +250,7 @@ Require valid-user PerlAuthzHandler Apache::lonacc SetHandler perl-script PerlHandler Apache::londatecheck +PerlHandler Apache::lonipcheck PerlHandler Apache::lonbulletin ErrorDocument 404 /adm/notfound.html ErrorDocument 406 /adm/notinit.html @@ -232,30 +268,51 @@ ErrorDocument 406 /adm/notinit.html ErrorDocument 500 /adm/errorhandler - + AuthType LONCAPA Require valid-user PerlAuthzHandler Apache::loncacc SetHandler perl-script -PerlHandler Apache::lonconstruct ErrorDocument 403 /adm/login ErrorDocument 404 /adm/notfound.html ErrorDocument 406 /adm/unauthorized ErrorDocument 500 /adm/errorhandler - -PerlAccessHandler Apache::lonracc + + + + AuthType Basic + AuthName "LONCAPA username,domain" + Require valid-user + SSLRequireSSL + PerlAuthenHandler Apache::lonwebdavauth + PerlAuthzHandler Apache::lonwebdavacc + Dav On + DirectoryIndex index.missing + Options Indexes FollowSymLinks + ErrorDocument 403 /adm/nowebdav.html + ErrorDocument 404 /adm/notfound.html + ErrorDocument 406 /adm/unauthorized + ErrorDocument 500 /adm/errorhandler + + + + RewriteEngine on + RewriteRule .* http://%{HTTP_HOST}/adm/nowebdav.html [L] + + + + + + RewriteEngine on + RewriteRule .* http://%{HTTP_HOST}/adm/nowebdav.html [L] + + - -AuthType LONCAPA -Require valid-user -PerlAuthzHandler Apache::loncacc -ErrorDocument 403 /adm/login -ErrorDocument 404 /adm/notfound.html -ErrorDocument 406 /adm/unauthorized -ErrorDocument 500 /adm/errorhandler + +PerlAccessHandler Apache::lonracc @@ -293,22 +350,22 @@ ErrorDocument 500 /adm/errorhandler # ------------------------------------------------------------------------- RAT - + SetHandler perl-script PerlHandler Apache::lonratedt - + SetHandler perl-script PerlHandler Apache::lonratedt - + SetHandler perl-script PerlHandler Apache::lonratsrv - + SetHandler perl-script PerlHandler Apache::lonratmenu @@ -332,7 +389,7 @@ PerlCleanupHandler Apache::lonindexer::c PerlCleanupHandler Apache::lonacc::cleanup - + SetHandler perl-script PerlHandler Apache::lontex @@ -347,7 +404,7 @@ SetHandler perl-script PerlHandler Apache::lonsequence - + PerlAccessHandler Apache::publiccheck SetHandler perl-script PerlHandler Apache::lonmeta @@ -364,27 +421,34 @@ PerlHandler Apache::lonmeta - + SetHandler perl-script PerlHandler Apache::lonrights - + SetHandler perl-script PerlHandler Apache::londatecheck +PerlHandler Apache::lonipcheck PerlHandler Apache::lonxml - + SetHandler perl-script PerlHandler Apache::lonhomework + +SetHandler perl-script +PerlHandler Apache::lonxml + + AuthType LONCAPA Require valid-user PerlAuthzHandler Apache::lonacc PerlHandler Apache::londatecheck +PerlHandler Apache::lonipcheck SetHandler perl-script PerlHandler Apache::lonwrapper ErrorDocument 403 /adm/login @@ -435,6 +499,16 @@ ErrorDocument 403 /adm/login ErrorDocument 500 /adm/errorhandler + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::lonsearchcourse +ErrorDocument 403 /adm/login +ErrorDocument 500 /adm/errorhandler + + AuthType LONCAPA Require valid-user @@ -485,7 +559,7 @@ PerlAuthzHandler Apache::lonacc SetHandler perl-script PerlHandler Apache::lonremote ErrorDocument 403 /adm/login -ErrorDocument 500 /adm/errorhandler +ErrorDocument 500 /adm/errorhandler @@ -508,6 +582,17 @@ ErrorDocument 403 /adm/login ErrorDocument 500 /adm/errorhandler + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::lonpickuser +ErrorDocument 403 /adm/login +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + AuthType LONCAPA Require valid-user @@ -528,6 +613,17 @@ ErrorDocument 403 /adm/login ErrorDocument 500 /adm/errorhandler + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::londependencies +ErrorDocument 403 /adm/login +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + SetHandler perl-script PerlHandler Apache::lonlogin @@ -584,6 +680,21 @@ SetHandler perl-script PerlHandler Apache::migrateuser + + + AuthType shibboleth + ShibUseEnvironment On + ShibRequestSetting requireSession 1 + ShibRequestSetting redirectToSSL 443 + require valid-user + PerlAuthzHandler Apache::lonshibacc + PerlAuthzHandler Apache::lonacc + + + PerlTypeHandler Apache::lonnoshib + + + AuthType LONCAPA Require valid-user @@ -604,16 +715,6 @@ ErrorDocument 403 /adm/login ErrorDocument 500 /adm/errorhandler - -AuthType LONCAPA -Require valid-user -PerlAuthzHandler Apache::lonacc -SetHandler perl-script -PerlHandler Apache::admbookmarks -ErrorDocument 403 /adm/login -ErrorDocument 500 /adm/errorhandler - - AuthType LONCAPA Require valid-user @@ -670,6 +771,17 @@ ErrorDocument 406 /adm/roles ErrorDocument 500 /adm/errorhandler + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::courseprefs +ErrorDocument 403 /adm/login +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + AuthType LONCAPA Require valid-user @@ -703,6 +815,17 @@ ErrorDocument 406 /adm/roles ErrorDocument 500 /adm/errorhandler + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::lonrequestcourse +ErrorDocument 403 /adm/login +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + AuthType LONCAPA Require valid-user @@ -736,6 +859,15 @@ ErrorDocument 406 /adm/roles ErrorDocument 500 /adm/errorhandler + +PerlAccessHandler Apache::lonstatusacc +SetHandler perl-script +PerlHandler Apache::domainstatus +ErrorDocument 403 /adm/login +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + AuthType LONCAPA Require valid-user @@ -759,7 +891,7 @@ ErrorDocument 406 /adm/unauthorized ErrorDocument 500 /adm/errorhandler - + AuthType LONCAPA Require valid-user PerlAuthzHandler Apache::loncacc @@ -771,18 +903,6 @@ ErrorDocument 406 /adm/unauthorized ErrorDocument 500 /adm/errorhandler - -AuthType LONCAPA -Require valid-user -PerlAuthzHandler Apache::lonacc -SetHandler perl-script -PerlHandler Apache::lonpubdir -ErrorDocument 403 /adm/login -ErrorDocument 404 /adm/notfound.html -ErrorDocument 406 /adm/unauthorized -ErrorDocument 500 /adm/errorhandler - - AuthType LONCAPA Require valid-user @@ -1035,6 +1155,18 @@ ErrorDocument 403 /adm/login ErrorDocument 500 /adm/errorhandler + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::londocs +PerlCleanupHandler Apache::londocs::untiehash +PerlCleanupHandler Apache::lonacc::cleanup +ErrorDocument 403 /adm/login +ErrorDocument 500 /adm/errorhandler + + AuthType LONCAPA Require valid-user @@ -1161,6 +1293,37 @@ ErrorDocument 403 /adm/login ErrorDocument 500 /adm/errorhandler + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::lonwishlistdisplay +ErrorDocument 403 /adm/login +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + + +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::lonblockingmenu +ErrorDocument 403 /adm/login +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + + + +PerlAccessHandler Apache::publiccheck +AuthType LONCAPA +Require valid-user +PerlAuthzHandler Apache::lonacc +SetHandler perl-script +PerlHandler Apache::lonblockingstatus + + SetHandler perl-script PerlHandler Apache::lonerrorhandler @@ -1236,71 +1399,17 @@ PerlHandler Apache::londns ErrorDocument 500 /adm/errorhandler -# ------------------------------------------------- Backdoor Adm Tests/Programs - - -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm - - - -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm - - - -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm - - - -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm - - - -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm - - - -AuthName "harvest" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user reaper - + +SetHandler perl-script +PerlHandler Apache::spellcheck + - -AuthName "Offline" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user offline - - -AuthName "Offline" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user offline - +# ------------------------------------------------- Backdoor Adm Tests/Programs -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm +PerlAccessHandler Apache::lonstatusacc SetHandler perl-script -PerlAuthzHandler Apache::lonacc PerlHandler Apache::lontest @@ -1389,20 +1498,16 @@ allow from all # ------------------------------------------------- Allow server-status reports +PerlAccessHandler Apache::lonstatusacc SetHandler server-status -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm # ------------------------ Allow LON-CAPA "low-level" connection status reports - -AuthName "LON-CAPA Network Administration" -AuthType Basic -AuthUserFile /home/httpd/lonTabs/htpasswd -require user lonadm - + +PerlAccessHandler Apache::lonstatusacc +ErrorDocument 406 /adm/roles +ErrorDocument 500 /adm/errorhandler + # ------------------- Allow access to local system documentation from localhost Alias /doc /usr/doc @@ -1418,12 +1523,14 @@ Options Indexes FollowSymLinks PerlSetVar lonVersion '' PerlSetVar lonIDsDir /home/httpd/lonIDs +PerlSetVar lonDAVsessDir /home/httpd/webdav/sessionIDs PerlSetVar lonTabDir /home/httpd/lonTabs PerlSetVar lonUsersDir /home/httpd/lonUsers PerlSetVar lonIconsURL /adm/lonIcons PerlSetVar londPort 5663 PerlSetVar lonSysEMail korte@lite.msu.edu PerlSetVar lonDaemons /home/httpd/perl +PerlSetVar lonLib /home/httpd/lib PerlSetVar lonSockDir /home/httpd/sockets PerlSetVar lonSockCreate /home/httpd/sockets/common PerlSetVar lonDocRoot /home/httpd/html @@ -1441,7 +1548,7 @@ PerlSetVar lonFontsDir /home/h # - a number that describes the minimum version that has mathml support # - a number that describes the minimum number version that has unicode support -PerlSetVar lonBrowsDet explorer:msie:netscape:msie\s(\d+\.\d+)\;:9999:9999&mozilla:mozilla\/[5-9]:msie:mozilla\/(\d+\.\d+)\s:9999:1&netscape:netscape:msie:netscape\/(\d+\.\d+):9999:7&netscape:netscape\/[7-9]:shouldnotmatch:netscape\/(\d+\.\d+):9999:7&amaya:amaya:mozilla:V(\d+\.\d+)\s:1:1&safari:safari:msie:safari\/([\d\.]+):9999:84 +PerlSetVar lonBrowsDet explorer:msie:netscape:msie\s(\d+\.\d+)\;:9999:5&mozilla:mozilla\/[5-9]:msie:mozilla\/(\d+\.\d+)\s:9999:1&netscape:netscape:msie:netscape\/(\d+\.\d+):9999:7&netscape:netscape\/[7-9]:shouldnotmatch:netscape\/(\d+\.\d+):9999:7&amaya:amaya:mozilla:V(\d+\.\d+)\s:1:1&safari:safari:msie:safari\/([\d\.]+):9999:84&chrome:chrome:shouldnotmatch:chrome\/(\d+\.\d+):9999:1 PerlSetVar lonTextBrowsers windows\s+ce:lynx PerlSetVar lonScansDir /home/httpd/scantron @@ -1457,12 +1564,6 @@ PerlSetVar FAQHost http://help.lon-capa PerlSetVar lonSqlAccess localhostkey -# ----------------------------------------------------------------------------- -# lonttpdPort is the port used by the lightweight graphics httpd server -# not the main Apache server -PerlSetVar lonhttpdPort 8080 - - #---------------------------------------------------------------------------- # # Parameters used by secure lond/lonc @@ -1533,6 +1634,9 @@ PerlSetVar SSLEmail certificate@lon- #------------------------------------------------------------------------- +# ====================================== Include support for SSL rewrites + +Include conf/loncapa_rewrite.conf # ====================================== Include machine-specific configuration