2014-03-05 13:36:58 +01:00
|
|
|
Description: compliance with both Apache 2.4 and 2.2
|
2014-02-25 06:13:00 +01:00
|
|
|
Author: Xavier Guimard <x.guimard@free.fr>
|
|
|
|
Bug: http://jira.ow2.org/browse/LEMONLDAP-571
|
|
|
|
Bug-Debian: http://bugs.debian.org/669808
|
|
|
|
Bug-Debian: http://bugs.debian.org/669809
|
|
|
|
Bug-Debian: http://bugs.debian.org/669822
|
|
|
|
Forwarded: http://jira.ow2.org/browse/LEMONLDAP-571
|
|
|
|
Last-Update: 2013-05-31
|
|
|
|
|
|
|
|
--- a/_example/etc/handler-apache2.conf
|
|
|
|
+++ b/_example/etc/handler-apache2.conf
|
2014-03-05 13:36:58 +01:00
|
|
|
@@ -21,17 +21,27 @@
|
2014-02-25 06:13:00 +01:00
|
|
|
# needed): choose your URL to avoid restarting Apache when
|
|
|
|
# configuration change
|
|
|
|
<Location /reload>
|
|
|
|
- Order deny,allow
|
|
|
|
- Deny from all
|
|
|
|
- Allow from 127.0.0.0/8
|
2014-03-05 13:36:58 +01:00
|
|
|
+ <IfVersion < 2.4>
|
|
|
|
+ Order deny,allow
|
|
|
|
+ Deny from all
|
|
|
|
+ Allow from 127.0.0.0/8
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require ip 127
|
|
|
|
+ </IfVersion>
|
2014-05-21 19:44:24 +02:00
|
|
|
PerlHeaderParserHandler Lemonldap::NG::Handler->refresh
|
2014-02-25 06:13:00 +01:00
|
|
|
</Location>
|
|
|
|
|
|
|
|
# Uncomment this to activate status module
|
|
|
|
#<Location /status>
|
|
|
|
- # Order deny,allow
|
|
|
|
- # Deny from all
|
|
|
|
- # Allow from 127.0.0.0/8
|
2014-03-05 13:36:58 +01:00
|
|
|
+ # <IfVersion < 2.4>
|
|
|
|
+ # Order deny,allow
|
|
|
|
+ # Deny from all
|
|
|
|
+ # Allow from 127.0.0.0/8
|
|
|
|
+ # </IfVersion>
|
|
|
|
+ # <IfVersion >= 2.4>
|
|
|
|
+ # Require ip 127
|
|
|
|
+ # </IfVersion>
|
2014-05-21 19:44:24 +02:00
|
|
|
# PerlHeaderParserHandler Lemonldap::NG::Handler->status
|
2014-02-25 06:13:00 +01:00
|
|
|
#</Location>
|
|
|
|
|
|
|
|
--- a/_example/etc/manager-apache2.conf
|
|
|
|
+++ b/_example/etc/manager-apache2.conf
|
2014-03-05 13:36:58 +01:00
|
|
|
@@ -12,8 +12,13 @@
|
2014-02-25 06:13:00 +01:00
|
|
|
# DocumentRoot
|
|
|
|
DocumentRoot __MANAGERDIR__
|
|
|
|
<Directory __MANAGERDIR__>
|
2014-03-05 13:36:58 +01:00
|
|
|
- Order deny,allow
|
|
|
|
- Allow from all
|
|
|
|
+ <IfVersion < 2.4>
|
2014-03-05 20:33:11 +01:00
|
|
|
+ Order allow,deny
|
2014-03-05 13:36:58 +01:00
|
|
|
+ Allow from all
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require all granted
|
|
|
|
+ </IfVersion>
|
|
|
|
Options +ExecCGI +FollowSymLinks
|
2014-02-25 06:13:00 +01:00
|
|
|
</Directory>
|
|
|
|
|
2014-03-05 13:36:58 +01:00
|
|
|
@@ -21,8 +26,13 @@
|
2014-02-25 06:13:00 +01:00
|
|
|
Alias /doc/ __DOCDIR__
|
|
|
|
Alias /lib/ __DOCDIR__lib/
|
|
|
|
<Directory __DOCDIR__>
|
2014-03-05 20:33:11 +01:00
|
|
|
- Order allow,deny
|
2014-03-05 13:36:58 +01:00
|
|
|
- Allow from all
|
|
|
|
+ <IfVersion < 2.4>
|
|
|
|
+ Order deny,allow
|
|
|
|
+ Allow from all
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require all granted
|
|
|
|
+ </IfVersion>
|
|
|
|
ErrorDocument 404 /notfound.html
|
|
|
|
Options +FollowSymLinks
|
2014-02-25 06:13:00 +01:00
|
|
|
</Directory>
|
|
|
|
--- a/_example/etc/portal-apache2.conf
|
|
|
|
+++ b/_example/etc/portal-apache2.conf
|
2014-03-05 13:36:58 +01:00
|
|
|
@@ -12,8 +12,13 @@
|
2014-02-25 06:13:00 +01:00
|
|
|
# DocumentRoot
|
|
|
|
DocumentRoot __PORTALDIR__
|
|
|
|
<Directory __PORTALDIR__>
|
2014-03-05 13:36:58 +01:00
|
|
|
- Order allow,deny
|
|
|
|
- Allow from all
|
|
|
|
+ <IfVersion < 2.4>
|
|
|
|
+ Order allow,deny
|
|
|
|
+ Allow from all
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require all granted
|
|
|
|
+ </IfVersion>
|
|
|
|
Options +ExecCGI +FollowSymLinks
|
2014-02-25 06:13:00 +01:00
|
|
|
</Directory>
|
|
|
|
|
2014-03-05 13:36:58 +01:00
|
|
|
@@ -29,26 +34,46 @@
|
2014-02-25 06:13:00 +01:00
|
|
|
|
|
|
|
# SOAP functions for sessions management (disabled by default)
|
|
|
|
<Location /index.pl/adminSessions>
|
2014-03-05 13:36:58 +01:00
|
|
|
- Order deny,allow
|
|
|
|
- Deny from all
|
|
|
|
+ <IfVersion < 2.4>
|
|
|
|
+ Order deny,allow
|
|
|
|
+ Deny from all
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require all denied
|
|
|
|
+ </IfVersion>
|
2014-02-25 06:13:00 +01:00
|
|
|
</Location>
|
|
|
|
|
|
|
|
# SOAP functions for sessions access (disabled by default)
|
|
|
|
<Location /index.pl/sessions>
|
2014-03-05 13:36:58 +01:00
|
|
|
- Order deny,allow
|
|
|
|
- Deny from all
|
|
|
|
+ <IfVersion < 2.4>
|
|
|
|
+ Order deny,allow
|
|
|
|
+ Deny from all
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require all denied
|
|
|
|
+ </IfVersion>
|
2014-02-25 06:13:00 +01:00
|
|
|
</Location>
|
|
|
|
|
|
|
|
# SOAP functions for configuration access (disabled by default)
|
|
|
|
<Location /index.pl/config>
|
2014-03-05 13:36:58 +01:00
|
|
|
- Order deny,allow
|
|
|
|
- Deny from all
|
|
|
|
+ <IfVersion < 2.4>
|
|
|
|
+ Order deny,allow
|
|
|
|
+ Deny from all
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require all denied
|
|
|
|
+ </IfVersion>
|
2014-02-25 06:13:00 +01:00
|
|
|
</Location>
|
|
|
|
|
|
|
|
# SOAP functions for notification insertion (disabled by default)
|
|
|
|
<Location /index.pl/notification>
|
2014-03-05 13:36:58 +01:00
|
|
|
- Order deny,allow
|
|
|
|
- Deny from all
|
|
|
|
+ <IfVersion < 2.4>
|
|
|
|
+ Order deny,allow
|
|
|
|
+ Deny from all
|
|
|
|
+ </IfVersion>
|
|
|
|
+ <IfVersion >= 2.4>
|
|
|
|
+ Require all denied
|
|
|
|
+ </IfVersion>
|
2014-02-25 06:13:00 +01:00
|
|
|
</Location>
|
|
|
|
|
|
|
|
# SAML2 Issuer
|