ansible-role-kojihub/templates/etc/httpd/conf.d/kojihub.conf.j2

52 lines
1.5 KiB
Plaintext
Raw Normal View History

2020-12-23 03:52:59 +00:00
#
# koji-hub is an xmlrpc interface to the Koji database
#
Alias /kojihub /usr/share/koji-hub/kojixmlrpc.py
<Directory "/usr/share/koji-hub">
Options ExecCGI
SetHandler wsgi-script
WSGIApplicationGroup %{GLOBAL}
# ^ works around a hub issue with OpenSSL
# see: https://cryptography.io/en/latest/faq/#starting-cryptography-using-mod-wsgi-produces-an-internalerror-during-a-call-in-register-osrandom-engine
WSGIScriptReloading Off
# ^ reloading breaks hub "firstcall" check
# see: https://pagure.io/koji/issue/875
<IfVersion < 2.4>
Order allow,deny
Allow from all
</IfVersion>
<IfVersion >= 2.4>
Require all granted
</IfVersion>
</Directory>
2020-12-23 09:12:56 +00:00
# Also serve {{ koji_mount }}
Alias /kojifiles "{{ koji_mount }}/"
2020-12-23 03:52:59 +00:00
2020-12-23 09:12:56 +00:00
<Directory "{{ koji_mount }}/">
#Options Indexes SymLinksIfOwnerMatch
2020-12-23 03:52:59 +00:00
#If your top /mnt/koji directory is not owned by the httpd user, then
#you will need to follow all symlinks instead, e.g.
2020-12-23 09:12:56 +00:00
Options Indexes FollowSymLinks
2020-12-23 03:52:59 +00:00
AllowOverride None
IndexOptions +NameWidth=*
<IfVersion < 2.4>
Order allow,deny
Allow from all
</IfVersion>
<IfVersion >= 2.4>
Require all granted
</IfVersion>
</Directory>
# uncomment this to enable authentication via GSSAPI
<Location /kojihub/ssllogin>
AuthType GSSAPI
AuthName "GSSAPI Single Sign On Login"
GssapiCredStore keytab:/etc/koji.keytab
Require valid-user
</Location>