salt
/
apache-formula
forked from ExternalMirrors/apache-formula
Watch 1
Star 0
Fork 0
Code Releases 0 Activity
Saltstack Official Apache Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
325 Commits
1 Branch
Tree: 7d5e588b6e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7d5e588b6e'
${ noResults }
apache-formula/apache/vhosts/proxy.tmpl

127 lines
6.1KB
Raw Blame History 

  1. {# Define default values here so the template below can just focus on layout #}

  2. {% from "apache/map.jinja" import apache with context %}

  3. {% set sitename = site.get('ServerName', id) %}

  4. {% set vals = {

  5.     'interfaces': site.get('interface', '*').split(),

  6.     'port': site.get('port', '80'),

  7. 

  8.     'ServerName': sitename,

  9.     'ServerAlias': site.get('ServerAlias', 'www.{0}'.format(sitename)),

  10. 

  11.     'ServerAdmin': site.get('ServerAdmin', 'webmaster@{0}'.format(sitename)),

  12. 

  13.     'UseCanonicalName': site.get('UseCanonicalName'),

  14. 

  15.     'LogLevel': site.get('LogLevel', 'warn'),

  16.     'ErrorLog': site.get('ErrorLog', '{0}/{1}-error.log'.format(map.logdir, sitename)),

  17.     'LogFormat': site.get('LogFormat', '"%a %l %u %t \\"%r\\" %>s %O \\"%{Referer}i\\" \\"%{User-Agent}i\\""'),

  18.     'CustomLog': site.get('CustomLog', '{0}/{1}-access.log'.format(map.logdir, sitename)),

  19. 

  20.     'ProxyRequests': site.get('ProxyRequests', 'Off'),

  21.     'ProxyPreserveHost': site.get('ProxyPreserveHost', 'On'),

  22.     'ProxyRoute': site.get('ProxyRoute', {}),

  23. 

  24.     'Location': {

  25.         'Order': 'allow,deny',

  26.         'Allow': 'from all',

  27.         'Require': 'all granted',

  28.     },

  29.     'LocationMatch': {

  30.         'Order': 'allow,deny',

  31.         'Allow': 'from all',

  32.         'Require': 'all granted',

  33.     },

  34. } %}

  35. <VirtualHost {%- for intf in vals.interfaces %} {{intf}}:{{ vals.port }}{% endfor -%}>

  36.     ServerName {{ vals.ServerName }}

  37.     {% if site.get('ServerAlias') != False %}ServerAlias {{ vals.ServerAlias }}{% endif %}

  38.     {% if site.get('ServerAdmin') != False %}ServerAdmin {{ vals.ServerAdmin }}{% endif %}

  39.     {% if site.get('UseCanonicalName') %}UseCanonicalName {{ vals.UseCanonicalName }}{% endif %}

  40. 

  41.     {% if site.get('LogLevel') != False %}LogLevel {{ vals.LogLevel }}{% endif %}

  42.     {% if site.get('ErrorLog') != False %}ErrorLog {{ vals.ErrorLog }}{% endif %}

  43.     {% if site.get('CustomLog') != False %}CustomLog {{ vals.CustomLog }} {{ vals.LogFormat }}{% endif %}

  44. 

  45.     {% if site.get('SSLCertificateFile') %}SSLEngine on

  46.     SSLCertificateFile {{ site.SSLCertificateFile }}

  47.     {% if site.get('SSLCertificateKeyFile') %}SSLCertificateKeyFile {{ site.SSLCertificateKeyFile }}{% endif %}

  48.     {% if site.get('SSLCertificateChainFile') %}SSLCertificateChainFile {{ site.SSLCertificateChainFile}}{% endif %}

  49.     {% endif %}

  50.     {% if site.get('Rewrite') %}RewriteEngine on

  51.     {{ site.Rewrite }}

  52.     {%  endif %}

  53.     {%   if site.get('SSLProxyEngine') %}SSLProxyEngine {{ site.SSLProxyEngine }}{% endif %}

  54.     ProxyRequests {{ vals.ProxyRequests }}

  55.     ProxyPreserveHost {{ vals.ProxyPreserveHost }}

  56.     {% if site.get('ProxyErrorOverride') %}ProxyErrorOverride {{ site.ProxyErrorOverride }} {% endif %}

  57.     {% if site.get('ProxyErrorDir') %}ProxyPass /{{ site.ProxyErrorDir }}/ ! {% endif %}

  58.     {% for proxy, proxyargs in vals.ProxyRoute|dictsort|reverse %}

  59.     {% set proxyvals = {

  60.         'ProxyPassSource': proxyargs.get('ProxyPassSource', '/'),

  61.         'ProxyPassTarget': proxyargs.get('ProxyPassTarget', 'https://{0}'.format(sitename)),

  62.         'ProxyPassTargetOptions': proxyargs.get('ProxyPassTargetOptions', ''),

  63.         'ProxyPassReverseSource': proxyargs.get('ProxyPassReverseSource', '/'),

  64.         'ProxyPassReverseTarget': proxyargs.get('ProxyPassReverseTarget', proxyargs.get('ProxyPassTarget', 'https://{0}'.format(sitename))),

  65.     } %}

  66.     ######### {{proxy}} #########

  67.     ProxyPass         {{ proxyvals.ProxyPassSource }} {{ proxyvals.ProxyPassTarget }} {{ proxyvals.ProxyPassTargetOptions }}

  68.     ProxyPassReverse  {{ proxyvals.ProxyPassReverseSource }} {{ proxyvals.ProxyPassReverseTarget }}

  69.     {% endfor %}

  70. 

  71.     {%- for path, loc in site.get('Location', {}).items() %}

  72.     {%- set lvals = {

  73.         'Order': loc.get('Order', vals.Location.Order),

  74.         'Allow': loc.get('Allow', vals.Location.Allow),

  75.         'Require': loc.get('Require', vals.Location.Require),

  76.         'Dav': loc.get('Dav', False),

  77.     } %}

  78.     <Location "{{ path }}">

  79.       {% if apache.use_require %}

  80.       {%- if lvals.get('Require') != False %}Require {{lvals.Require}}{% endif %}

  81.       {% else %}

  82.       {%- if lvals.get('Order') != False %}Order {{ lvals.Order }}{% endif %}

  83.       {%- if lvals.get('Allow') != False %}Allow {{ lvals.Allow }}{% endif %}

  84.       {% endif %}

  85.       {%- if loc.get('Formula_Append') %} {{ loc.Formula_Append|indent(8) }} {% endif %}

  86.     </Location>

  87.     {% endfor %}

  88.     {%- for regpath, locmat in site.get('LocationMatch', {}).items() %}

  89.     {%- set lmvals = {

  90.         'Order': locmat.get('Order', vals.LocationMatch.Order),

  91.         'Allow': locmat.get('Allow', vals.LocationMatch.Allow),

  92.         'Require': locmat.get('Require', vals.LocationMatch.Require),

  93.         'Dav': locmat.get('Dav', False),

  94.     } %}

  95.     <LocationMatch "{{ regpath }}">

  96.       {% if apache.use_require %}

  97.       {%- if lmvals.get('Require') != False %}Require {{lmvals.Require}}{% endif %}

  98.       {% else %}

  99.       {%- if lmvals.get('Order') != False %}Order {{ lmvals.Order }}{% endif %}

  100.       {%- if lmvals.get('Allow') != False %}Allow {{ lmvals.Allow }}{% endif %}

  101.       {% endif %}

  102.       {%- if locmat.get('Formula_Append') %} {{ locmat.Formula_Append|indent(8) }} {% endif %}

  103.     </LocationMatch>

  104.     {% endfor %}

  105.  {%- for proxypath, prox in site.get('Proxy_control', {}).items() %}

  106.    {%- set proxvals = {

  107.      'AllowAll': prox.get('AllowAll', vals.AllowAll),

  108.      'AllowCountry': prox.get('AllowCountry', vals.AllowCountry),

  109.      'AllowIP': prox.get('AllowIP', vals.AllowIP),

  110.    } %}

  111.     <Proxy "{{ proxypath }}">

  112.       {%- if proxvals.get('AllowAll') != False %}

  113.       Require all granted

  114.       {%- else %}

  115.       {% if proxvals.get('AllowCountry') != False %}{% set country_list = proxvals.get('AllowCountry', {}) %}GeoIPEnable On

  116.       {% for every_country in country_list %}SetEnvIf GEOIP_COUNTRY_CODE {{ every_country }} AllowCountry

  117.       {% endfor %}Require env AllowCountry {% endif %}

  118.       {% if proxvals.get('AllowIP') is defined %} {% set ip_list = proxvals.get('AllowIP', {}) %}

  119.       Require ip {% for every_ip in ip_list %}{{ every_ip }} {% endfor %} {% endif %}

  120.      {%- endif %}

  121.    </Proxy>

  122.  {%- endfor %}

  123.     {% if site.get('Formula_Append') %}

  124.     {{ site.Formula_Append|indent(4) }}

  125.     {% endif %}

  126. </VirtualHost>