67 lines
1.9 KiB
Django/Jinja
67 lines
1.9 KiB
Django/Jinja
#
|
|
# koji-hub is an xmlrpc interface to the Koji database
|
|
#
|
|
|
|
Alias /kojihub /usr/share/koji-hub/kojixmlrpc.py
|
|
|
|
<Directory "/usr/share/koji-hub">
|
|
Options ExecCGI
|
|
SetHandler wsgi-script
|
|
WSGIApplicationGroup %{GLOBAL}
|
|
# ^ works around a hub issue with OpenSSL
|
|
# see: https://cryptography.io/en/latest/faq/#starting-cryptography-using-mod-wsgi-produces-an-internalerror-during-a-call-in-register-osrandom-engine
|
|
WSGIScriptReloading Off
|
|
# ^ reloading breaks hub "firstcall" check
|
|
# see: https://pagure.io/koji/issue/875
|
|
<IfVersion < 2.4>
|
|
Order allow,deny
|
|
Allow from all
|
|
</IfVersion>
|
|
<IfVersion >= 2.4>
|
|
Require all granted
|
|
</IfVersion>
|
|
</Directory>
|
|
|
|
# Also serve /mnt/koji
|
|
Alias /kojifiles "/mnt/koji/"
|
|
|
|
<Directory "/mnt/koji">
|
|
Options Indexes SymLinksIfOwnerMatch
|
|
#If your top /mnt/koji directory is not owned by the httpd user, then
|
|
#you will need to follow all symlinks instead, e.g.
|
|
#Options Indexes FollowSymLinks
|
|
AllowOverride None
|
|
IndexOptions +NameWidth=*
|
|
<IfVersion < 2.4>
|
|
Order allow,deny
|
|
Allow from all
|
|
</IfVersion>
|
|
<IfVersion >= 2.4>
|
|
Require all granted
|
|
</IfVersion>
|
|
</Directory>
|
|
|
|
# uncomment this to enable authentication via SSL client certificates
|
|
# <Location /kojihub/ssllogin>
|
|
# SSLVerifyClient require
|
|
# SSLVerifyDepth 10
|
|
# SSLOptions +StdEnvVars
|
|
# </Location>
|
|
|
|
# If you need to support koji < 1.4.0 clients using SSL authentication, then use the following instead:
|
|
# <Location /kojihub>
|
|
# SSLOptions +StdEnvVars
|
|
# </Location>
|
|
# In this case, you will need to enable these options globally (in ssl.conf):
|
|
# SSLVerifyClient require
|
|
# SSLVerifyDepth 10
|
|
|
|
# uncomment this to enable authentication via GSSAPI
|
|
<Location /kojihub/ssllogin>
|
|
AuthType GSSAPI
|
|
AuthName "GSSAPI Single Sign On Login"
|
|
GssapiCredStore keytab:/etc/koji.keytab
|
|
Require valid-user
|
|
</Location>
|
|
|