summaryrefslogtreecommitdiff
path: root/puppet/modules/apache/templates/vhosts/default.erb
blob: 1ef8023d16dc5140e397c05de0ba6b92bd37f54f (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
<%
vhost_parts = case @ssl_mode
  when 'only' then [:ssl]
  when false,'false' then  [:normal]
  else [:normal,:ssl]
end
vhost_parts.each do |vhost_part| -%>
<VirtualHost *:<%= vhost_part == :ssl ? '443' : '80' %> >

<%= scope.function_templatewlv(['apache/vhosts/partials/header_default.erb',
                                {'vhost_part'    => vhost_part,
                                 'configuration' => @configuration,}]) %>

<%= scope.function_template(['apache/vhosts/partials/logs.erb']) %>

<% if @run_mode.to_s =~ /(proxy\-|static\-)?itk/ -%>
  <IfModule mpm_itk_module>
    AssignUserId <%= "#{@run_uid} #{@run_gid}" %>
  </IfModule>

<% elsif @run_mode.to_s == 'fcgid' -%>
  <IfModule mod_fcgid.c>
    SuexecUserGroup <%= "#{@run_uid} #{@run_gid}" %>
    FcgidMaxRequestsPerProcess 5000
    FCGIWrapper /var/www/mod_fcgid-starters/<%= @name %>/<%= @name %>-starter .<%= @passing_extension %>
    AddHandler fcgid-script .<%= @passing_extension %>
  </IfModule>

<% end -%>
<% if @ssl_mode == 'force' && vhost_part == :normal -%>
  RewriteEngine On
  RewriteCond %{HTTPS} !=on
  RewriteCond %{HTTP:X-Forwarded-Proto} !=https
  RewriteRule (.*) https://%{SERVER_NAME}$1 [R=permanent,L]
<% end -%>
<%= scope.function_templatewlv([@template_partial, {'vhost_part' => vhost_part } ]) %>
<% unless @template_partial == 'apache/vhosts/itk_plus/partial.erb' -%>
<%= scope.function_template(['apache/vhosts/partials/mod_security.erb']) %>
<% end -%>
<% unless @additional_options.to_s == 'absent' -%>
  <%= @additional_options %>
<% end -%>
</VirtualHost>
<% end -%>