salt
/
apache-formula
forked from ExternalMirrors/apache-formula
Watch 1
Star 0
Fork 0
Code Releases 0 Activity
Saltstack Official Apache Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
429 Commits
1 Branch
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
apache-formula/apache/vhosts/proxy.tmpl

132 lines
6.2KB
Raw Permalink Blame History 

  1. #

  2. # This file is managed by Salt! Do not edit by hand!

  3. #

  4. {# Define default values here so the template below can just focus on layout #}

  5. {% from "apache/map.jinja" import apache with context %}

  6. {% set sitename = site.get('ServerName', id) %}

  7. {% set vals = {

  8.     'interfaces': site.get('interface', '*').split(),

  9.     'port': site.get('port', '80'),

  10. 

  11.     'ServerName': sitename,

  12.     'ServerAlias': site.get('ServerAlias', ''),

  13. 

  14.     'ServerAdmin': site.get('ServerAdmin', 'webmaster@{0}'.format(sitename)),

  15. 

  16.     'UseCanonicalName': site.get('UseCanonicalName'),

  17. 

  18.     'LogLevel': site.get('LogLevel', 'warn'),

  19.     'ErrorLog': site.get('ErrorLog', '{0}/{1}-error.log'.format(map.logdir, sitename)),

  20.     'LogFormat': site.get('LogFormat', '"%a %l %u %t \\"%r\\" %>s %O \\"%{Referer}i\\" \\"%{User-Agent}i\\""'),

  21.     'CustomLog': site.get('CustomLog', '{0}/{1}-access.log'.format(map.logdir, sitename)),

  22. 

  23.     'ProxyRequests': site.get('ProxyRequests', 'Off'),

  24.     'ProxyPreserveHost': site.get('ProxyPreserveHost', 'On'),

  25.     'ProxyRoute': site.get('ProxyRoute', {}),

  26. 

  27.     'Location': {

  28.         'Order': 'allow,deny',

  29.         'Allow': 'from all',

  30.         'Require': 'all granted',

  31.     },

  32.     'LocationMatch': {

  33.         'Order': 'allow,deny',

  34.         'Allow': 'from all',

  35.         'Require': 'all granted',

  36.     },

  37. } %}

  38. <VirtualHost {%- for intf in vals.interfaces %} {{intf}}:{{ vals.port }}{% endfor -%}>

  39.     ServerName {{ vals.ServerName }}

  40.     {% if site.get('ServerAlias') != False %}ServerAlias {{ vals.ServerAlias }}{% endif %}

  41.     {% if site.get('ServerAdmin') != False %}ServerAdmin {{ vals.ServerAdmin }}{% endif %}

  42.     {% if site.get('UseCanonicalName') %}UseCanonicalName {{ vals.UseCanonicalName }}{% endif %}

  43. 

  44.     {% if site.get('LogLevel') != False %}LogLevel {{ vals.LogLevel }}{% endif %}

  45.     {% if site.get('ErrorLog') != False %}ErrorLog {{ vals.ErrorLog }}{% endif %}

  46.     {% if site.get('LogFormat') != False -%}LogFormat {{ vals.LogFormat }}{% endif %}

  47.     {% if site.get('CustomLog') != False -%}LogFormat {{ vals.LogFormat }} {{ sitename }}

  48.     CustomLog {{ vals.CustomLog }} {{ sitename }}{% endif %}

  49. 

  50.     {% if site.get('SSLCertificateFile') %}SSLEngine on

  51.     SSLCertificateFile {{ site.SSLCertificateFile }}

  52.     {% if site.get('SSLCertificateKeyFile') %}SSLCertificateKeyFile {{ site.SSLCertificateKeyFile }}{% endif %}

  53.     {% if site.get('SSLCertificateChainFile') %}SSLCertificateChainFile {{ site.SSLCertificateChainFile}}{% endif %}

  54.     {% endif %}

  55.     {% if site.get('Rewrite') %}RewriteEngine on

  56.     {{ site.Rewrite }}

  57.     {%  endif %}

  58.     {%   if site.get('SSLProxyEngine') %}SSLProxyEngine {{ site.SSLProxyEngine }}{% endif %}

  59.     ProxyRequests {{ vals.ProxyRequests }}

  60.     ProxyPreserveHost {{ vals.ProxyPreserveHost }}

  61.     {% if site.get('ProxyErrorOverride') %}ProxyErrorOverride {{ site.ProxyErrorOverride }} {% endif %}

  62.     {% if site.get('ProxyErrorDir') %}ProxyPass /{{ site.ProxyErrorDir }}/ ! {% endif %}

  63.     {% for proxy, proxyargs in vals.ProxyRoute|dictsort|reverse %}

  64.     {% set proxyvals = {

  65.         'ProxyPassSource': proxyargs.get('ProxyPassSource', '/'),

  66.         'ProxyPassTarget': proxyargs.get('ProxyPassTarget', 'https://{0}'.format(sitename)),

  67.         'ProxyPassTargetOptions': proxyargs.get('ProxyPassTargetOptions', ''),

  68.         'ProxyPassReverseSource': proxyargs.get('ProxyPassReverseSource', '/'),

  69.         'ProxyPassReverseTarget': proxyargs.get('ProxyPassReverseTarget', proxyargs.get('ProxyPassTarget', 'https://{0}'.format(sitename))),

  70.     } %}

  71.     ######### {{proxy}} #########

  72.     ProxyPass         {{ proxyvals.ProxyPassSource }} {{ proxyvals.ProxyPassTarget }} {{ proxyvals.ProxyPassTargetOptions }}

  73.     ProxyPassReverse  {{ proxyvals.ProxyPassReverseSource }} {{ proxyvals.ProxyPassReverseTarget }}

  74.     {% endfor %}

  75. 

  76.     {%- for path, loc in site.get('Location', {}).items() %}

  77.     {%- set lvals = {

  78.         'Order': loc.get('Order', vals.Location.Order),

  79.         'Allow': loc.get('Allow', vals.Location.Allow),

  80.         'Require': loc.get('Require', vals.Location.Require),

  81.         'Dav': loc.get('Dav', False),

  82.     } %}

  83.     <Location "{{ path }}">

  84.       {% if apache.version == '2.4' %}

  85.       {%- if lvals.get('Require') != False %}Require {{lvals.Require}}{% endif %}

  86.       {% else %}

  87.       {%- if lvals.get('Order') != False %}Order {{ lvals.Order }}{% endif %}

  88.       {%- if lvals.get('Allow') != False %}Allow {{ lvals.Allow }}{% endif %}

  89.       {% endif %}

  90.       {%- if loc.get('Formula_Append') %} {{ loc.Formula_Append|indent(8) }} {% endif %}

  91.     </Location>

  92.     {% endfor %}

  93.     {%- for regpath, locmat in site.get('LocationMatch', {}).items() %}

  94.     {%- set lmvals = {

  95.         'Order': locmat.get('Order', vals.LocationMatch.Order),

  96.         'Allow': locmat.get('Allow', vals.LocationMatch.Allow),

  97.         'Require': locmat.get('Require', vals.LocationMatch.Require),

  98.         'Dav': locmat.get('Dav', False),

  99.     } %}

  100.     <LocationMatch "{{ regpath }}">

  101.       {% if apache.version == '2.4' %}

  102.       {%- if lmvals.get('Require') != False %}Require {{lmvals.Require}}{% endif %}

  103.       {% else %}

  104.       {%- if lmvals.get('Order') != False %}Order {{ lmvals.Order }}{% endif %}

  105.       {%- if lmvals.get('Allow') != False %}Allow {{ lmvals.Allow }}{% endif %}

  106.       {% endif %}

  107.       {%- if locmat.get('Formula_Append') %} {{ locmat.Formula_Append|indent(8) }} {% endif %}

  108.     </LocationMatch>

  109.     {% endfor %}

  110.  {%- for proxypath, prox in site.get('Proxy_control', {}).items() %}

  111.    {%- set proxvals = {

  112.      'AllowAll': prox.get('AllowAll', vals.AllowAll),

  113.      'AllowCountry': prox.get('AllowCountry', vals.AllowCountry),

  114.      'AllowIP': prox.get('AllowIP', vals.AllowIP),

  115.    } %}

  116.     <Proxy "{{ proxypath }}">

  117.       {%- if proxvals.get('AllowAll') != False %}

  118.       Require all granted

  119.       {%- else %}

  120.       {% if proxvals.get('AllowCountry') != False %}{% set country_list = proxvals.get('AllowCountry', {}) %}GeoIPEnable On

  121.       {% for every_country in country_list %}SetEnvIf GEOIP_COUNTRY_CODE {{ every_country }} AllowCountry

  122.       {% endfor %}Require env AllowCountry {% endif %}

  123.       {% if proxvals.get('AllowIP') is defined %} {% set ip_list = proxvals.get('AllowIP', {}) %}

  124.       Require ip {% for every_ip in ip_list %}{{ every_ip }} {% endfor %} {% endif %}

  125.      {%- endif %}

  126.    </Proxy>

  127.  {%- endfor %}

  128.     {% if site.get('Formula_Append') %}

  129.     {{ site.Formula_Append|indent(4) }}

  130.     {% endif %}

  131. </VirtualHost>