--- loncom/loncapa_apache.conf 2007/07/30 21:50:10 1.168
+++ loncom/loncapa_apache.conf 2023/12/22 13:38:02 1.285
@@ -1,8 +1,8 @@
##
## loncapa_apache.conf -- Apache HTTP LON-CAPA configuration file
##
-## $Id: loncapa_apache.conf,v 1.168 2007/07/30 21:50:10 albertel Exp $
-##
+
+# $Id: loncapa_apache.conf,v 1.285 2023/12/22 13:38:02 raeburn Exp $
#
# LON-CAPA Section (extensions to httpd.conf daemon configuration)
@@ -18,7 +18,9 @@ Group www
# ======================================================= Shared Object Modules
-LoadModule perl_module modules/libperl.so
+
+ LoadModule perl_module modules/libperl.so
+
AddModule mod_perl.c
@@ -28,7 +30,7 @@ PerlSetVar MODPERL2 1
# =============================================================== Miscellaneous
-ServerAdmin korte@lite.msu.edu
+ServerAdmin consortium@loncapa.org
ExtendedStatus On
#
# LON-CAPA Section (extensions to srm.conf name space servicing)
@@ -37,7 +39,12 @@ ExtendedStatus On
Alias /zipspool/ /home/httpd/zipspool/
Alias /prtspool/ /home/httpd/prtspool/
+Alias /captchaspool/ /home/httpd/captchaspool/
+Alias /webdav/ /home/httpd/html/priv/
ScriptAlias /cgi-bin/ "/home/httpd/cgi-bin/"
+
+ DAVLockDB /home/httpd/webdav/DAVLock
+
# ================================================================= Directories
@@ -49,7 +56,24 @@ PerlCleanupHandler Apache::lonacc::clean
PerlAuthenHandler Apache::checkauthen
PerlSetVar lonOtherAuthen no
+
+ PerlAuthenHandler Apache::lonshibauth
+ PerlSetVar lonOtherAuthen yes
+ PerlSetVar lonOtherAuthenType Shibboleth
+
+
#PerlWarn On
+
+PerlAuthzHandler 'sub { return OK }'
+
+
+# Send proper expires header to avoid unnecessary HTTP request for static content
+
+ ExpiresActive On
+ ExpiresDefault "access plus 12 hours"
+ Header set Cache-Control "public, no-transform"
+
+
AuthType LONCAPA
@@ -94,7 +118,20 @@ SetHandler perl-script
PerlHandler Apache::portfolio
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonpdfupload
+ErrorDocument 403 /adm/login
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
+Options +FollowSymLinks -Includes
PerlAccessHandler Apache::lontokacc
PerlCleanupHandler Apache::lontokacc::removefile
PerlCleanupHandler Apache::lonacc::cleanup
@@ -104,6 +141,8 @@ PerlCleanupHandler Apache::lonacc::clean
AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::lonacc
+PerlHandler Apache::londatecheck
+PerlHandler Apache::lonipcheck
PerlHeaderParserHandler Apache::lonuploadrep
ErrorDocument 403 /adm/login
ErrorDocument 404 /adm/notfound.html
@@ -111,6 +150,10 @@ ErrorDocument 406 /adm/roles
ErrorDocument 500 /adm/errorhandler
+
+ Options +FollowSymLinks -Includes
+
+
AuthType LONCAPA
Require valid-user
@@ -150,6 +193,13 @@ SetHandler perl-script
PerlHandler Apache::lonsequence
+
+SetHandler perl-script
+PerlHandler Apache::londatecheck
+PerlHandler Apache::lonipcheck
+PerlHandler Apache::lontex
+
+
PerlAccessHandler Apache::publiccheck
AuthType LONCAPA
@@ -200,6 +250,8 @@ AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::lonacc
SetHandler perl-script
+PerlHandler Apache::londatecheck
+PerlHandler Apache::lonipcheck
PerlHandler Apache::lonsimplepage
ErrorDocument 404 /adm/notfound.html
ErrorDocument 406 /adm/notinit.html
@@ -212,6 +264,7 @@ Require valid-user
PerlAuthzHandler Apache::lonacc
SetHandler perl-script
PerlHandler Apache::londatecheck
+PerlHandler Apache::lonipcheck
PerlHandler Apache::lonbulletin
ErrorDocument 404 /adm/notfound.html
ErrorDocument 406 /adm/notinit.html
@@ -229,32 +282,90 @@ ErrorDocument 406 /adm/notinit.html
ErrorDocument 500 /adm/errorhandler
-
+
AuthType LONCAPA
Require valid-user
-PerlAuthzHandler Apache::loncacc
-SetHandler perl-script
-PerlHandler Apache::lonconstruct
-ErrorDocument 403 /adm/login
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonslotcheck
+PerlHandler Apache::londatecheck
+PerlHandler Apache::lonipcheck
+PerlHandler Apache::lonexttool
ErrorDocument 404 /adm/notfound.html
-ErrorDocument 406 /adm/unauthorized
-ErrorDocument 500 /adm/errorhandler
+ErrorDocument 406 /adm/notinit.html
+ErrorDocument 500 /adm/errorhandler
-
-PerlAccessHandler Apache::lonracc
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonplacementtest
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 406 /adm/notinit.html
+ErrorDocument 500 /adm/errorhandler
-
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonexturlcheck
+ErrorDocument 403 /adm/login
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 406 /adm/unauthorized
+ErrorDocument 500 /adm/errorhandler
+
+
+
AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::loncacc
+SetHandler perl-script
ErrorDocument 403 /adm/login
ErrorDocument 404 /adm/notfound.html
ErrorDocument 406 /adm/unauthorized
ErrorDocument 500 /adm/errorhandler
+
+
+
+ AuthType Basic
+ AuthName "LONCAPA username,domain"
+ Require valid-user
+ SSLRequireSSL
+ PerlAuthenHandler Apache::lonwebdavauth
+ PerlAuthzHandler Apache::lonwebdavacc
+ Dav On
+ DirectoryIndex index.missing
+ Options Indexes FollowSymLinks
+ ErrorDocument 403 /adm/nowebdav.html
+ ErrorDocument 404 /adm/notfound.html
+ ErrorDocument 406 /adm/unauthorized
+ ErrorDocument 500 /adm/errorhandler
+
+
+
+ RewriteEngine on
+ RewriteRule .* http://%{HTTP_HOST}/adm/nowebdav.html [L]
+
+
+
+
+
+ RewriteEngine on
+ RewriteRule .* http://%{HTTP_HOST}/adm/nowebdav.html [L]
+
+
+
+
+
+PerlAccessHandler Apache::lonracc
+
+
AuthType LONCAPA
Require valid-user
@@ -290,22 +401,22 @@ ErrorDocument 500 /adm/errorhandler
# ------------------------------------------------------------------------- RAT
-
+
SetHandler perl-script
PerlHandler Apache::lonratedt
-
+
SetHandler perl-script
PerlHandler Apache::lonratedt
-
+
SetHandler perl-script
PerlHandler Apache::lonratsrv
-
+
SetHandler perl-script
PerlHandler Apache::lonratmenu
@@ -329,7 +440,7 @@ PerlCleanupHandler Apache::lonindexer::c
PerlCleanupHandler Apache::lonacc::cleanup
-
+
SetHandler perl-script
PerlHandler Apache::lontex
@@ -344,7 +455,7 @@ SetHandler perl-script
PerlHandler Apache::lonsequence
-
+
PerlAccessHandler Apache::publiccheck
SetHandler perl-script
PerlHandler Apache::lonmeta
@@ -354,33 +465,156 @@ ErrorDocument 413 /adm/overloaded.tx
AuthType LONCAPA
Require valid-user
-SetHandler perl-script
PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
PerlHandler Apache::lonmeta
-
+
SetHandler perl-script
PerlHandler Apache::lonrights
-
+
SetHandler perl-script
PerlHandler Apache::londatecheck
+PerlHandler Apache::lonipcheck
PerlHandler Apache::lonxml
-
+
SetHandler perl-script
PerlHandler Apache::lonhomework
+
+SetHandler perl-script
+PerlHandler Apache::lonxml
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::loncacc
+ErrorDocument 403 /adm/login
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 406 /adm/unauthorized
+ErrorDocument 500 /adm/errorhandler
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::loncacc
+
+
+
+ErrorDocument 403 /adm/login
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
+
+ErrorDocument 403 /adm/login
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 406 /adm/unauthorized
+ErrorDocument 500 /adm/errorhandler
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+ErrorDocument 403 /adm/login
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
+
+SetHandler perl-script
+PerlHandler Apache::daxepage
+
+
+
+SetHandler perl-script
+PerlHandler Apache::daxepage
+
+
+
+SetHandler perl-script
+PerlHandler Apache::daxeopen
+
+
+
+SetHandler perl-script
+PerlHandler Apache::daxeopen
+
+
+
+SetHandler perl-script
+PerlHandler Apache::daxeopen
+
+
+
+SetHandler perl-script
+PerlHandler Apache::daxeopen
+
+
+
+
+ RewriteEngine on
+ RewriteRule /daxeopen/(.*) /$1
+
+
+
+
+
+ RewriteEngine on
+ RewriteRule /daxeopen/(.*) /$1
+
+
+
+
+
+ RewriteEngine on
+ RewriteRule /daxeopen/(.*) /$1
+
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::daxesave
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::loncoursepub
+ErrorDocument 404 /adm/notfound.html
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::lonacc
+PerlHandler Apache::londatecheck
+PerlHandler Apache::lonipcheck
SetHandler perl-script
PerlHandler Apache::lonwrapper
ErrorDocument 403 /adm/login
@@ -431,6 +665,26 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonsearchcourse
+ErrorDocument 403 /adm/login
+ErrorDocument 500 /adm/errorhandler
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonindexcourse
+ErrorDocument 403 /adm/login
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -460,6 +714,7 @@ PerlAuthzHandler Apache::lonacc
SetHandler perl-script
PerlHandler Apache::lonroles
ErrorDocument 403 /adm/login
+ErrorDocument 409 /adm/preferences?action=lockwarning
ErrorDocument 500 /adm/errorhandler
@@ -473,14 +728,24 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
-
+
AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::lonacc
SetHandler perl-script
-PerlHandler Apache::lonremote
+PerlHandler Apache::lonpickresource
ErrorDocument 403 /adm/login
-ErrorDocument 500 /adm/errorhandler
+ErrorDocument 500 /adm/errorhandler
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonpickauthor
+ErrorDocument 403 /adm/login
+ErrorDocument 500 /adm/errorhandler
@@ -493,6 +758,17 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonpickuser
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -513,17 +789,80 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::londependencies
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::loncourseauthor
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::loncourseuser
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
SetHandler perl-script
PerlHandler Apache::lonlogin
+
+SetHandler perl-script
+PerlHandler Apache::ltiauth
+
+
+
+SetHandler perl-script
+PerlHandler Apache::lonrelaunch
+
+
+
+SetHandler perl-script
+PerlHandler Apache::ltiauth
+
+
+
+SetHandler perl-script
+PerlHandler Apache::ltipassback
+
+
+
+SetHandler perl-script
+PerlHandler Apache::ltiroster
+
+
+
+SetHandler perl-script
+PerlHandler Apache::ltilogout
+
+
PerlAccessHandler Apache::publiccheck
AuthType LONCAPA
Require valid-user
-SetHandler perl-script
PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
PerlHandler Apache::restrictedaccess
ErrorDocument 500 /adm/errorhandler
@@ -532,12 +871,23 @@ ErrorDocument 500 /adm/errorhandler
PerlAccessHandler Apache::publiccheck
AuthType LONCAPA
Require valid-user
-SetHandler perl-script
PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
PerlHandler Apache::blockedaccess
ErrorDocument 500 /adm/errorhandler
+
+PerlAccessHandler Apache::publiccheck
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonprotected
+ErrorDocument 403 /adm/login
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -545,6 +895,7 @@ PerlAuthzHandler Apache::lonacc
SetHandler perl-script
PerlHandler Apache::lonlogout
ErrorDocument 403 /adm/login
+ErrorDocument 409 /adm/preferences?action=lockwarning
ErrorDocument 500 /adm/errorhandler
@@ -568,6 +919,35 @@ SetHandler perl-script
PerlHandler Apache::migrateuser
+
+ Header set Cache-Control "private,no-store,no-cache,max-age=0"
+
+ AuthType shibboleth
+ ShibUseEnvironment On
+ ShibRequestSetting requireSession 1
+ ShibRequestSetting redirectToSSL 443
+ require valid-user
+ PerlAuthzHandler Apache::lonshibacc
+ PerlAuthzHandler Apache::lonacc
+ ErrorDocument 403 /adm/login
+ ErrorDocument 500 /adm/errorhandler
+
+
+ PerlTypeHandler Apache::lonnoshib
+
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonlinkexit
+ErrorDocument 403 /adm/login
+ErrorDocument 409 /adm/preferences?action=lockwarning
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -578,22 +958,22 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
-
+
AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::lonacc
SetHandler perl-script
-PerlHandler Apache::lonspeller
+PerlHandler Apache::admannotations
ErrorDocument 403 /adm/login
-ErrorDocument 500 /adm/errorhandler
+ErrorDocument 500 /adm/errorhandler
-
+
AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::lonacc
SetHandler perl-script
-PerlHandler Apache::admbookmarks
+PerlHandler Apache::lonspeller
ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
@@ -654,6 +1034,17 @@ ErrorDocument 406 /adm/roles
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::courseprefs
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -687,6 +1078,17 @@ ErrorDocument 406 /adm/roles
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonrequestcourse
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -720,6 +1122,15 @@ ErrorDocument 406 /adm/roles
ErrorDocument 500 /adm/errorhandler
+
+PerlAccessHandler Apache::lonstatusacc
+SetHandler perl-script
+PerlHandler Apache::domainstatus
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -743,7 +1154,7 @@ ErrorDocument 406 /adm/unauthorized
ErrorDocument 500 /adm/errorhandler
-
+
AuthType LONCAPA
Require valid-user
PerlAuthzHandler Apache::loncacc
@@ -755,18 +1166,6 @@ ErrorDocument 406 /adm/unauthorized
ErrorDocument 500 /adm/errorhandler
-
-AuthType LONCAPA
-Require valid-user
-PerlAuthzHandler Apache::lonacc
-SetHandler perl-script
-PerlHandler Apache::lonpubdir
-ErrorDocument 403 /adm/login
-ErrorDocument 404 /adm/notfound.html
-ErrorDocument 406 /adm/unauthorized
-ErrorDocument 500 /adm/errorhandler
-
-
AuthType LONCAPA
Require valid-user
@@ -1019,6 +1418,18 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::londocs
+PerlCleanupHandler Apache::londocs::untiehash
+PerlCleanupHandler Apache::lonacc::cleanup
+ErrorDocument 403 /adm/login
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -1029,6 +1440,16 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonextresedit
+ErrorDocument 403 /adm/login
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -1088,6 +1509,17 @@ ErrorDocument 403 /adm/login
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonviewcoauthors
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
AuthType LONCAPA
Require valid-user
@@ -1142,9 +1574,52 @@ PerlHandler Apache::groupsort
PerlCleanupHandler Apache::groupsort::cleanup
PerlCleanupHandler Apache::lonacc::cleanup
ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonwishlistdisplay
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
ErrorDocument 500 /adm/errorhandler
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonblockingmenu
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
+
+PerlAccessHandler Apache::publiccheck
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonblockingstatus
+
+
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lonaccesstimes
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
+
SetHandler perl-script
PerlHandler Apache::lonerrorhandler
@@ -1184,7 +1659,7 @@ PerlHandler Apache::lonsupportreq
ErrorDocument 500 /adm/errorhandler
-
+
SetHandler perl-script
PerlHandler Apache::loncss
ErrorDocument 500 /adm/errorhandler
@@ -1202,77 +1677,45 @@ PerlHandler Apache::resetpw
ErrorDocument 500 /adm/errorhandler
-
+
SetHandler perl-script
-PerlHandler Apache::londns
+PerlHandler Apache::selfenroll
ErrorDocument 500 /adm/errorhandler
-# ------------------------------------------------- Backdoor Adm Tests/Programs
-
-
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
-
-
-
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
-
-
-
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
-
-
-
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
-
+
+SetHandler perl-script
+PerlHandler Apache::createaccount
+ErrorDocument 500 /adm/errorhandler
+
-
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
-
+
+SetHandler perl-script
+PerlHandler Apache::londns
+ErrorDocument 500 /adm/errorhandler
+
-
-AuthName "harvest"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user reaper
-
+
+SetHandler perl-script
+PerlHandler Apache::spellcheck
+
-
-AuthName "Offline"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user offline
-
+
+AuthType LONCAPA
+Require valid-user
+PerlAuthzHandler Apache::lonacc
+SetHandler perl-script
+PerlHandler Apache::lontiny
+ErrorDocument 403 /adm/login
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
-
-AuthName "Offline"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user offline
-
+# ------------------------------------------------- Backdoor Adm Tests/Programs
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
+PerlAccessHandler Apache::lonstatusacc
SetHandler perl-script
-PerlAuthzHandler Apache::lonacc
PerlHandler Apache::lontest
@@ -1290,35 +1733,41 @@ PerlChildExitHandler Apache::lonacc::goo
Options None
AllowOverride None
-order deny,allow
-deny from all
+
+ Require all denied
+
+
+ order deny,allow
+ deny from all
+
# Allow uploaded files to be served
-Options Includes FollowSymLinks
+Options FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
-# Allow construction space files to be served
-
-
-Options Includes FollowSymLinks
-AllowOverride
-order allow,deny
-allow from all
-
-
# Yes to symbolic links and server-side includes
-Options Includes FollowSymLinks
+Options FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# If it is in cgi-bin, then it can be executed as a CGI script.
@@ -1326,75 +1775,120 @@ allow from all
AllowOverride None
Options ExecCGI FollowSymLinks
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# Allow serving of files in prtspool
-Options Includes FollowSymLinks
+Options FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
# Allow serving of files in zipspool
-Options Includes FollowSymLinks
+Options FollowSymLinks
+AllowOverride None
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
+
+
+# Allow serving of files in captchaspool
+
+
+Options FollowSymLinks
AllowOverride None
-order allow,deny
-allow from all
+
+ Require all granted
+
+
+ order allow,deny
+ allow from all
+
+
+ DirectoryIndex disabled
+
+
+
+ DirectoryIndex disabled
+
+
# ============================================================= Access Handlers
# ------------------------------------------------- Allow server-status reports
+PerlAccessHandler Apache::lonstatusacc
SetHandler server-status
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
# ------------------------ Allow LON-CAPA "low-level" connection status reports
-
-AuthName "LON-CAPA Network Administration"
-AuthType Basic
-AuthUserFile /home/httpd/lonTabs/htpasswd
-require user lonadm
-
+
+PerlAccessHandler Apache::lonstatusacc
+ErrorDocument 406 /adm/roles
+ErrorDocument 500 /adm/errorhandler
+
# ------------------- Allow access to local system documentation from localhost
Alias /doc /usr/doc
-order deny,allow
-deny from all
-allow from localhost
Options Indexes FollowSymLinks
+
+ Require local
+
+
+ order deny,allow
+ deny from all
+ allow from localhost
+
# ******** THESE "SHOULD" NEVER BE ALTERED BY THE USER ************************
# ====================================== Internal Settings / Perl Configuration
-PerlSetVar lonVersion ''
+PerlSetVar lonVersion ''
PerlSetVar lonIDsDir /home/httpd/lonIDs
+PerlSetVar lonBalanceDir /home/httpd/balanceIDs
+PerlSetVar lonDAVsessDir /home/httpd/webdav/sessionIDs
PerlSetVar lonTabDir /home/httpd/lonTabs
PerlSetVar lonUsersDir /home/httpd/lonUsers
PerlSetVar lonIconsURL /adm/lonIcons
PerlSetVar londPort 5663
-PerlSetVar lonSysEMail korte@lite.msu.edu
+PerlSetVar lonSysEMail techsupport@loncapa.org
PerlSetVar lonDaemons /home/httpd/perl
+PerlSetVar lonLib /home/httpd/lib
PerlSetVar lonSockDir /home/httpd/sockets
PerlSetVar lonSockCreate /home/httpd/sockets/common
PerlSetVar lonDocRoot /home/httpd/html
PerlSetVar lonPrtDir /home/httpd/prtspool
PerlSetVar lonIncludes /home/httpd/html/res/adm/includes
PerlSetVar lonZipDir /home/httpd/zipspool
+PerlSetVar lonCaptchaDir /home/httpd/captchaspool
+PerlSetVar lonCaptchaDb /home/httpd/captchadb
+PerlSetVar lonLTIDir /home/httpd/lonLTItmp
+PerlSetVar ltiIDsDir /home/httpd/ltiIDs
PerlSetVar lonFontsDir /home/httpd/html/adm/fonts
-# & separated list of : separated fields in order of
+# & separated list of % separated fields in order of
# - internal name to call it,
# - regexp that it should match (done case-insensitively)
# - regexp that is should not match (done case-insensitively)
@@ -1402,12 +1896,12 @@ PerlSetVar lonFontsDir /home/h
# - a number that describes the minimum version that has mathml support
# - a number that describes the minimum number version that has unicode support
-PerlSetVar lonBrowsDet explorer:msie:netscape:msie\s(\d+\.\d+)\;:9999:9999&mozilla:mozilla\/[5-9]:msie:mozilla\/(\d+\.\d+)\s:9999:1&netscape:netscape:msie:netscape\/(\d+\.\d+):9999:7&netscape:netscape\/[7-9]:shouldnotmatch:netscape\/(\d+\.\d+):9999:7&amaya:amaya:mozilla:V(\d+\.\d+)\s:1:1&safari:safari:msie:safari\/(\d+)[\.\d+]:9999:84
+PerlSetVar lonBrowsDet explorer%msie%netscape%msie\s(\d+\.\d+)\;%9999%5&mozilla%mozilla\/[5-9]%msie%mozilla\/(\d+\.\d+)\s%9999%1&netscape%netscape%msie%netscape\/(\d+\.\d+)%9999%7&netscape%netscape\/[7-9]%shouldnotmatch%netscape\/(\d+\.\d+)%9999%7&amaya%amaya%mozilla%V(\d+\.\d+)\s%1%1&safari%safari%msie%safari\/([\d\.]+)%9999%84&chrome%chrome%chromeframe%\s+chrome\/(\d+\.\d+)%9999%1&explorer%\s+rv\:\d+\.\d+%firefox%\s+rv\:(\d+\.\d+)%9999%5&opera%\sOPR\/\d+\.\d+%shouldnotmatch%\sOPR\/(\d+\.\d+)%9999%6&opera%^Opera\/9.80\s.+Version\/\d+\.\d+$%shouldnotmatch%Version\/(\d+\.\d+)$%9999%6&opera%^Opera\/\d+\.\d+\s%Version\/\d+\.\d+$%^Opera\/(\d+\.\d+)\s%9999%6
PerlSetVar lonTextBrowsers windows\s+ce:lynx
PerlSetVar lonScansDir /home/httpd/scantron
PerlSetVar lonScriptTimeout 10
-PerlSetVar BugzillaHost http://bugs.lon-capa.org/
+PerlSetVar BugzillaHost https://bugs.loncapa.org/
PerlSetVar FAQHost http://help.lon-capa.org/
# -----------------------------------------------------------------------------
# NOTE: lonSqlAccess key is the password for the MySQL user
@@ -1418,12 +1912,6 @@ PerlSetVar FAQHost http://help.lon-capa
PerlSetVar lonSqlAccess localhostkey
-# -----------------------------------------------------------------------------
-# lonttpdPort is the port used by the lightweight graphics httpd server
-# not the main Apache server
-PerlSetVar lonhttpdPort 8080
-
-
#----------------------------------------------------------------------------
#
# Parameters used by secure lond/lonc
@@ -1453,6 +1941,8 @@ PerlSetVar lonCertificateDirectory /home
PerlSetVar lonnetCertificateAuthority loncapaCA.pem
PerlSetVar lonnetCertificate lonhostcert.pem
+PerlSetVar lonnetHostnameCertificate lonhostnamecert.pem
+PerlSetVar lonnetCertRevocationList loncapaCAcrl.pem
#
# To generate the request for a certificate, and to negotiate the
@@ -1494,6 +1984,9 @@ PerlSetVar SSLEmail certificate@lon-
#-------------------------------------------------------------------------
+# ====================================== Include support for SSL rewrites
+
+Include conf/loncapa_rewrite.conf
# ====================================== Include machine-specific configuration