# DO NOT EDIT - This file is being maintained by Chef
ServerName <%= node[:fqdn] %>
ServerAlias nominatim.openstreetmap.org
ServerAlias nominatim.osm.org
ServerAlias nominatim.openstreetmap.com
ServerAlias nominatim.openstreetmap.net
ServerAlias nominatim.openstreetmaps.org
ServerAlias nominatim.openmaps.org
ServerAdmin webmaster@openstreetmap.org
# Enable SSL
SSLEngine on
SSLProxyEngine on
SSLCertificateFile /etc/ssl/certs/nominatim.openstreetmap.org.pem
SSLCertificateKeyFile /etc/ssl/private/nominatim.openstreetmap.org.key
# Remove Proxy request header to mitigate https://httpoxy.org/
RequestHeader unset Proxy early
RequestReadTimeout header=15-30,MinRate=500 body=15-30,MinRate=500
CustomLog <%= node[:nominatim][:logdir] %>/nominatim.openstreetmap.org-access.log combined
ErrorLog /var/log/apache2/nominatim.openstreetmap.org-error.log
DocumentRoot <%= @directory %>/website
/website/">
DirectoryIndex search.php
Options FollowSymLinks
Require all granted
ProxyPassMatch ^/([^/]*\.php(/.*)?)$ fcgi://127.0.0.1:<%= @pools[:www][:port ]%><%= @directory %>/website/$1
<% @pools.each do |name,details| -%>
Alias /pool-<%= name %>/ "<%= @directory %>/website/"
<% node[:nominatim][:redirects].each do |url,host| -%>
ProxyPassMatch ^/pool-<%= name %>/(<%= url %>\.php(/.*)?) http<% if port == 443 -%>s<% end -%>://<%= host %>/pool-<%= name %>/$1
<% end -%>
ProxyPassMatch ^/pool-<%= name %>/(.*\.php(/.*)?) fcgi://127.0.0.1:<%= details[:port ]%><%= @directory %>/website/$1
<% end -%>
Redirect 429 /pool-block/
ErrorDocument 429 /509.html
ErrorDocument 429 /509.html
Redirect 403 /pool-ban/
ErrorDocument 403 /403.html
ErrorDocument 403 /403.html
RewriteEngine On
# manual blocks
Include <%= @directory %>/settings/apache_blocks.conf
# regular requests and autoblocks
RewriteMap bulklist txt:<%= @directory %>/settings/ip_blocks.map
RewriteRule ^/(search|reverse|lookup)(\.php)?(/.*)? /pool-${bulklist:%{REMOTE_ADDR}|www}/$1.php$3 [PT]
RewriteRule ^/details(\.php)?(/.*)? /pool-${bulklist:%{REMOTE_ADDR}|details}/details.php$2 [PT]
ServerName <%= node[:fqdn] %>
ServerAlias nominatim.openstreetmap.org
ServerAlias nominatim.osm.org
ServerAlias nominatim.openstreetmap.com
ServerAlias nominatim.openstreetmap.net
ServerAlias nominatim.openstreetmaps.org
ServerAlias nominatim.openmaps.org
ServerAdmin webmaster@openstreetmap.org
CustomLog <%= node[:nominatim][:logdir] %>/nominatim.openstreetmap.org-access.log combined
ErrorLog /var/log/apache2/nominatim.openstreetmap.org-error.log
RewriteEngine On
# manual blocks
Include <%= @directory %>/settings/apache_blocks.conf
RedirectPermanent /.well-known/acme-challenge/ http://acme.openstreetmap.org/.well-known/acme-challenge/
RedirectPermanent / https://nominatim.openstreetmap.org/