X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/21215b4694db988a3e31a285f2b291a5f42bbf14..345227077c93652c7ab11d863e480d2efc20aa18:/cookbooks/dev/templates/default/apache.user.erb
diff --git a/cookbooks/dev/templates/default/apache.user.erb b/cookbooks/dev/templates/default/apache.user.erb
index f31ed4f61..39f1cd60f 100644
--- a/cookbooks/dev/templates/default/apache.user.erb
+++ b/cookbooks/dev/templates/default/apache.user.erb
@@ -7,6 +7,9 @@ WSGIDaemonProcess <%= @user %>.dev.openstreetmap.org user=<%= @user %> inactivit
ServerAdmin webmaster@openstreetmap.org
ServerAlias <%= @user %>.dev.osm.org
+ # Remove Proxy request header to mitigate https://httpoxy.org/
+ RequestHeader unset Proxy early
+
UseCanonicalName Off
DocumentRoot <%= @directory %>
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
@@ -14,19 +17,16 @@ WSGIDaemonProcess <%= @user %>.dev.openstreetmap.org user=<%= @user %> inactivit
WSGIProcessGroup <%= @user %>.dev.openstreetmap.org
RewriteEngine on
- #RewriteLog /var/log/apache2/rewrite.log
- #RewriteLogLevel 4
+ #LogLevel rewrite:trace2
CustomLog /var/log/apache2/<%= @user %>.dev.openstreetmap.org-access.log combined
ErrorLog /var/log/apache2/<%= @user %>.dev.openstreetmap.org-error.log
RewriteCond <%= @directory %>%{REQUEST_FILENAME} -f
- RewriteRule ^/cgi-bin/(.*)$ /cgi-bin/cgiwrap/~<%= @user %>/cgi-bin/$1 [PT,L]
+ RewriteRule ^/cgi-bin/(.*)$ /~<%= @user %>/cgi-bin/$1 [PT,L]
RewriteCond <%= @directory %>%{REQUEST_FILENAME} -f
- RewriteRule ^/cgi-bin-d/(.*)$ /cgi-bin/cgiwrapd/~<%= @user %>/cgi-bin/$1 [PT,L]
-
- ProxyPassMatch ^/(.*\.ph(p|ps|p3|tml)(/.*)?)$ fcgi://127.0.0.1:<%= @port %><%= @directory %>/$1
+ RewriteRule ^/(.*\.ph(p|ps|p3|tml)(/.*)?)$ fcgi://127.0.0.1:<%= @port %><%= @directory %>/$1 [P]
>
@@ -35,6 +35,12 @@ WSGIDaemonProcess <%= @user %>.dev.openstreetmap.org user=<%= @user %> inactivit
Require all granted
+/cgi-bin>
+ SetHandler cgi-script
+ Options ExecCGI SymLinksIfOwnerMatch
+ Require all granted
+
+
/wsgi-bin>
SetHandler wsgi-script
Options ExecCGI SymLinksIfOwnerMatch