freshlybakedca.ke
Git fork
1ServerName dummy
2PidFile httpd.pid
3DocumentRoot www
4LogFormat "%h %l %u %t \"%r\" %>s %b" common
5CustomLog access.log common
6ErrorLog error.log
7<IfModule !mod_log_config.c>
8 LoadModule log_config_module modules/mod_log_config.so
9</IfModule>
10<IfModule !mod_alias.c>
11 LoadModule alias_module modules/mod_alias.so
12</IfModule>
13<IfModule !mod_cgi.c>
14 LoadModule cgi_module modules/mod_cgi.so
15</IfModule>
16<IfModule !mod_env.c>
17 LoadModule env_module modules/mod_env.so
18</IfModule>
19<IfModule !mod_rewrite.c>
20 LoadModule rewrite_module modules/mod_rewrite.so
21</IFModule>
22<IfModule !mod_version.c>
23 LoadModule version_module modules/mod_version.so
24</IfModule>
25<IfModule !mod_headers.c>
26 LoadModule headers_module modules/mod_headers.so
27</IfModule>
28<IfModule !mod_setenvif.c>
29 LoadModule setenvif_module modules/mod_setenvif.so
30</IfModule>
31
32<IfDefine HTTP2>
33LoadModule http2_module modules/mod_http2.so
34Protocols h2 h2c
35</IfDefine>
36
37<IfModule !mod_auth_basic.c>
38 LoadModule auth_basic_module modules/mod_auth_basic.so
39</IfModule>
40<IfModule !mod_authn_file.c>
41 LoadModule authn_file_module modules/mod_authn_file.so
42</IfModule>
43<IfModule !mod_authz_user.c>
44 LoadModule authz_user_module modules/mod_authz_user.so
45</IfModule>
46<IfModule !mod_authz_host.c>
47 LoadModule authz_host_module modules/mod_authz_host.so
48</IfModule>
49
50<IfDefine PROXY>
51<IfModule !mod_proxy.c>
52 LoadModule proxy_module modules/mod_proxy.so
53</IfModule>
54<IfModule !mod_proxy_http.c>
55 LoadModule proxy_http_module modules/mod_proxy_http.so
56</IfModule>
57ProxyRequests On
58<Proxy "*">
59 AuthType Basic
60 AuthName "proxy-auth"
61 AuthUserFile proxy-passwd
62 Require valid-user
63</Proxy>
64</IfDefine>
65
66<IfModule !mod_authn_core.c>
67 LoadModule authn_core_module modules/mod_authn_core.so
68</IfModule>
69<IfModule !mod_authz_core.c>
70 LoadModule authz_core_module modules/mod_authz_core.so
71</IfModule>
72<IfModule !mod_access_compat.c>
73 LoadModule access_compat_module modules/mod_access_compat.so
74</IfModule>
75<IfModule !mod_unixd.c>
76 LoadModule unixd_module modules/mod_unixd.so
77</IfModule>
78
79<IfDefine HTTP2>
80<IfModule !mod_mpm_event.c>
81 LoadModule mpm_event_module modules/mod_mpm_event.so
82</IfModule>
83</IfDefine>
84<IfDefine !HTTP2>
85<IfModule !mod_mpm_prefork.c>
86 LoadModule mpm_prefork_module modules/mod_mpm_prefork.so
87</IfModule>
88</IfDefine>
89
90PassEnv GIT_VALGRIND
91PassEnv GIT_VALGRIND_OPTIONS
92PassEnv GNUPGHOME
93PassEnv ASAN_OPTIONS
94PassEnv LSAN_OPTIONS
95PassEnv UBSAN_OPTIONS
96PassEnv GIT_TRACE
97PassEnv GIT_CONFIG_NOSYSTEM
98PassEnv GIT_TEST_SIDEBAND_ALL
99PassEnv LANG
100PassEnv LC_ALL
101
102Alias /dumb/ www/
103Alias /auth/dumb/ www/auth/dumb/
104
105SetEnv PERL_PATH ${PERL_PATH}
106
107<LocationMatch /smart/>
108 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
109 SetEnv GIT_HTTP_EXPORT_ALL
110</LocationMatch>
111<LocationMatch /smart_noexport/>
112 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
113</LocationMatch>
114<LocationMatch /smart_custom_env/>
115 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
116 SetEnv GIT_HTTP_EXPORT_ALL
117 SetEnv GIT_COMMITTER_NAME "Custom User"
118 SetEnv GIT_COMMITTER_EMAIL custom@example.com
119</LocationMatch>
120<LocationMatch /smart_namespace/>
121 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
122 SetEnv GIT_HTTP_EXPORT_ALL
123 SetEnv GIT_NAMESPACE ns
124</LocationMatch>
125<LocationMatch /smart_cookies/>
126 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
127 SetEnv GIT_HTTP_EXPORT_ALL
128 Header set Set-Cookie name=value
129</LocationMatch>
130<LocationMatch /smart_headers/>
131 <RequireAll>
132 Require expr %{HTTP:x-magic-one} == 'abra'
133 Require expr %{HTTP:x-magic-two} == 'cadabra'
134 </RequireAll>
135 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
136 SetEnv GIT_HTTP_EXPORT_ALL
137</LocationMatch>
138<LocationMatch /one_time_script/>
139 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
140 SetEnv GIT_HTTP_EXPORT_ALL
141</LocationMatch>
142<LocationMatch /smart_v0/>
143 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
144 SetEnv GIT_HTTP_EXPORT_ALL
145 SetEnv GIT_PROTOCOL
146</LocationMatch>
147<LocationMatch /custom_auth/>
148 SetEnv GIT_EXEC_PATH ${GIT_EXEC_PATH}
149 SetEnv GIT_HTTP_EXPORT_ALL
150 <IfDefine USE_CGIPASSAUTH>
151 CGIPassAuth on
152 </IfDefine>
153</LocationMatch>
154ScriptAlias /smart/incomplete_length/git-upload-pack incomplete-length-upload-pack-v2-http.sh/
155ScriptAlias /smart/incomplete_body/git-upload-pack incomplete-body-upload-pack-v2-http.sh/
156ScriptAlias /smart/no_report/git-receive-pack error-no-report.sh/
157ScriptAliasMatch /error_git_upload_pack/(.*)/git-upload-pack error.sh/
158ScriptAliasMatch /smart_*[^/]*/(.*) ${GIT_EXEC_PATH}/git-http-backend/$1
159ScriptAlias /broken_smart/ broken-smart-http.sh/
160ScriptAlias /error_smart/ error-smart-http.sh/
161ScriptAlias /error/ error.sh/
162ScriptAliasMatch /one_time_script/(.*) apply-one-time-script.sh/$1
163ScriptAliasMatch /custom_auth/(.*) nph-custom-auth.sh/$1
164<Directory ${GIT_EXEC_PATH}>
165 Options FollowSymlinks
166</Directory>
167<Files incomplete-length-upload-pack-v2-http.sh>
168 Options ExecCGI
169</Files>
170<Files incomplete-body-upload-pack-v2-http.sh>
171 Options ExecCGI
172</Files>
173<Files error-no-report.sh>
174 Options ExecCGI
175</Files>
176<Files broken-smart-http.sh>
177 Options ExecCGI
178</Files>
179<Files error-smart-http.sh>
180 Options ExecCGI
181</Files>
182<Files error.sh>
183 Options ExecCGI
184</Files>
185<Files apply-one-time-script.sh>
186 Options ExecCGI
187</Files>
188<Files ${GIT_EXEC_PATH}/git-http-backend>
189 Options ExecCGI
190</Files>
191
192RewriteEngine on
193RewriteRule ^/dumb-redir/(.*)$ /dumb/$1 [R=301]
194RewriteRule ^/smart-redir-perm/(.*)$ /smart/$1 [R=301]
195RewriteRule ^/smart-redir-temp/(.*)$ /smart/$1 [R=302]
196RewriteRule ^/smart-redir-auth/(.*)$ /auth/smart/$1 [R=301]
197RewriteRule ^/smart-redir-limited/(.*)/info/refs$ /smart/$1/info/refs [R=301]
198RewriteRule ^/ftp-redir/(.*)$ ftp://localhost:1000/$1 [R=302]
199
200RewriteRule ^/loop-redir/x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-x-(.*) /$1 [R=302]
201RewriteRule ^/loop-redir/(.*)$ /loop-redir/x-$1 [R=302]
202
203# redir-to/502/x?y -> really-redir-to?path=502/x&qs=y which returns 502
204# redir-to/x?y -> really-redir-to?path=x&qs=y -> x?y
205RewriteCond %{QUERY_STRING} ^(.*)$
206RewriteRule ^/redir-to/(.*)$ /really-redir-to?path=$1&qs=%1 [R=302]
207RewriteCond %{QUERY_STRING} ^path=502/(.*)&qs=(.*)$
208RewriteRule ^/really-redir-to$ - [R=502,L]
209RewriteCond %{QUERY_STRING} ^path=(.*)&qs=(.*)$
210RewriteRule ^/really-redir-to$ /%1?%2 [R=302]
211
212# The first rule issues a client-side redirect to something
213# that _doesn't_ look like a git repo. The second rule is a
214# server-side rewrite, so that it turns out the odd-looking
215# thing _is_ a git repo. The "[PT]" tells Apache to match
216# the usual ScriptAlias rules for /smart.
217RewriteRule ^/insane-redir/(.*)$ /intern-redir/$1/foo [R=301]
218RewriteRule ^/intern-redir/(.*)/foo$ /smart/$1 [PT]
219
220# Serve info/refs internally without redirecting, but
221# issue a redirect for any object requests.
222RewriteRule ^/redir-objects/(.*/info/refs)$ /dumb/$1 [PT]
223RewriteRule ^/redir-objects/(.*/objects/.*)$ /dumb/$1 [R=301]
224
225<IfDefine SSL>
226LoadModule ssl_module modules/mod_ssl.so
227
228SSLCertificateFile httpd.pem
229SSLCertificateKeyFile httpd.pem
230SSLRandomSeed startup file:/dev/urandom 512
231SSLRandomSeed connect file:/dev/urandom 512
232SSLSessionCache none
233SSLEngine On
234</IfDefine>
235
236<Location /auth/>
237 AuthType Basic
238 AuthName "git-auth"
239 AuthUserFile passwd
240 Require valid-user
241</Location>
242
243<LocationMatch "^/auth-push/.*/git-receive-pack$">
244 AuthType Basic
245 AuthName "git-auth"
246 AuthUserFile passwd
247 Require valid-user
248</LocationMatch>
249
250<LocationMatch "^/auth-fetch/.*/git-upload-pack$">
251 AuthType Basic
252 AuthName "git-auth"
253 AuthUserFile passwd
254 Require valid-user
255</LocationMatch>
256
257RewriteCond %{QUERY_STRING} service=git-receive-pack [OR]
258RewriteCond %{REQUEST_URI} /git-receive-pack$
259RewriteRule ^/half-auth-complete/ - [E=AUTHREQUIRED:yes]
260
261<Location /half-auth-complete/>
262 Order Deny,Allow
263 Deny from env=AUTHREQUIRED
264
265 AuthType Basic
266 AuthName "Git Access"
267 AuthUserFile passwd
268 Require valid-user
269 Satisfy Any
270</Location>
271
272<IfDefine DAV>
273 LoadModule dav_module modules/mod_dav.so
274 LoadModule dav_fs_module modules/mod_dav_fs.so
275
276 DAVLockDB DAVLock
277 <Location /dumb/>
278 Dav on
279 </Location>
280 <Location /auth/dumb>
281 Dav on
282 </Location>
283</IfDefine>
284
285<IfDefine SVN>
286 LoadModule dav_svn_module modules/mod_dav_svn.so
287
288 <Location /${LIB_HTTPD_SVN}>
289 DAV svn
290 SVNPath "${LIB_HTTPD_SVNPATH}"
291 </Location>
292</IfDefine>