aboutsummaryrefslogtreecommitdiffstats
path: root/roles/apache/templates/etc/httpd/conf/httpd.conf.j2
blob: 6e52049584b76b311860ee13d8b7d6a96c37e518 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

ServerRoot "/etc/httpd"

{% for port in apache_listen_ports %}
Listen {{ port }}
{% endfor %}

Include conf.modules.d/*.conf

User apache
Group apache

ServerAdmin root@localhost
ServerName {{ ansible_fqdn }}

ServerTokens Prod
ServerSignature Off

# default deny
<Directory />
    AllowOverride none
    Require all denied
</Directory>

DocumentRoot "{{ apache_public_dir }}/html"

KeepAlive On

# relax access to content within {{ apache_public_dir }}.
<Directory "{{ apache_public_dir }}">
    AllowOverride None
    Require all granted
</Directory>

# further relax access to the default document root:
<Directory "{{ apache_public_dir }}/html">
    Options FollowSymLinks

    AllowOverride None

    Require all granted
</Directory>

# serve index.html if a directory is requested
<IfModule dir_module>
    DirectoryIndex index.html
</IfModule>

# deny .htaccess, .htpasswd
<Files ".ht*">
    Require all denied
</Files>

ErrorLog "logs/error_log"

LogLevel warn

<IfModule log_config_module>
    LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
    LogFormat "%h %l %u %t \"%r\" %>s %b" common

    <IfModule logio_module>
      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
    </IfModule>

    CustomLog "logs/access_log" combined
</IfModule>

<IfModule alias_module>
    ScriptAlias /cgi-bin/ "{{ apache_public_dir }}/cgi-bin/"

</IfModule>

<Directory "{{ apache_public_dir }}/cgi-bin">
    AllowOverride None
    Options None
    Require all granted
</Directory>

<IfModule mime_module>
    TypesConfig /etc/mime.types

    AddType application/x-compress .Z
    AddType application/x-gzip .gz .tgz

    AddType text/html .shtml
    AddOutputFilter INCLUDES .shtml
</IfModule>

AddDefaultCharset UTF-8

<IfModule mime_magic_module>
    MIMEMagicFile conf/magic
</IfModule>

EnableSendfile on

AddOutputFilterByType DEFLATE {{ apache_gzip_types | join(" ") }}

# Load config files in the "/etc/httpd/conf.d" directory, if any.
IncludeOptional conf.d/*.conf
generated by cgit (git 2.34.1) at 2024-09-19 12:13:54 -0400