View Single Post
  #1  
Old 26th November 2008, 20:23
archerjd archerjd is offline
Member
 
Join Date: Dec 2006
Posts: 66
Thanks: 6
Thanked 6 Times in 6 Posts
Smile Force ISPC3 to update apache2 vhost files

I am working with the latest SVN of ISPC3 and wanted to know if there is a way to force ISPConfig to update/rewrite all of apache2's vhost files.

The thing is, I have been configuring ISPC3 on Debian Lenny.
I know I know, not a good idea. But I am using mod_gnutls with it and so far everything works out well. Even so, when configuring the system with a little tweak here a little tweak there the change doesn't take effect right away.

To give you an idea of what I have done here, I have modified the /usr/local/ispconfig/server/conf/vhost.conf.master file to make use of mod_gnutls. Below is a diff of the file.
Code:
--- /usr/local/ispconfig/server/conf/vhost.conf.master  2008-11-26 10:26:51.000000000 -0600
+++ vhost.conf.master   2008-11-26 12:04:20.000000000 -0600
@@ -98,12 +98,15 @@


 <tmpl_if name='ssl_enabled'>
-<IfModule mod_ssl.c>
+<IfModule mod_gnutls.c>
 ###########################################################
-# SSL Vhost
+# GnuTLS Vhost
 ###########################################################

 <VirtualHost <tmpl_var name='ip_address'>:443>
+  GnuTLSEnable On
+  GnuTLSExportCertificates on
+  GnuTLSPriorities NORMAL
   DocumentRoot <tmpl_var name='web_document_root'>
   ServerName <tmpl_var name='domain'>
 <tmpl_if name='alias'>
@@ -123,11 +126,10 @@
        ErrorDocument 503 /error/overloaded.html

 </tmpl_if>
-       SSLEngine on
-       SSLCertificateFile <tmpl_var name='document_root'>/ssl/<tmpl_var name='domain'>.crt
-       SSLCertificateKeyFile <tmpl_var name='document_root'>/ssl/<tmpl_var name='domain'>.key
+       GnuTLSCertificateFile <tmpl_var name='document_root'>/ssl/<tmpl_var name='domain'>.crt
+       GnuTLSKeyFile <tmpl_var name='document_root'>/ssl/<tmpl_var name='domain'>.key
 <tmpl_if name='has_bundle_cert'>
-       SSLCACertificateFile <tmpl_var name='document_root'>/ssl/<tmpl_var name='domain'>.bundle
+       GnuTLSClientCAFile <tmpl_var name='document_root'>/ssl/<tmpl_var name='domain'>.bundle
 </tmpl_if>

 <tmpl_if name='cgi'op='==' value='y'>
@@ -192,4 +194,4 @@
 </VirtualHost>
 </IfModule>

-</tmpl_if>
\ No newline at end of file
+</tmpl_if>
I would also like to add the following code to enable WebDAV for clients that have an ssl cert and FTP access.
Code:
Alias /webdav <tmpl_var name='document_root'>
<Location />
    DAV On
    AuthBasicAuthoritative Off
    AuthUserFile /dev/null
    AuthMySQL On
    AuthName "WebDAV Authering Service"
    AuthType Basic
    Auth_MySQL_Host localhost
    Auth_MySQL_User ispconfig
    Auth_MySQL_Password ispconfig_password # No variable found for this as of yet.
    AuthMySQL_DB dbispconfig
    AuthMySQL_Password_Table ftp_user
    Auth_MySQL_Username_Field username
    Auth_MySQL_Password_Field password
    Auth_MySQL_Group_Field gid
    Auth_MySQL_Encryption_Types Crypt
    Auth_MySQL_Empty_Passwords Off
    Auth_MySQL_Authoritative On
    Auth_MySQL_Password_Clause " AND active=y"
    <LimitExcept GET HEAD OPTIONS>
        require group <tmpl_var name='system_group'>
    </LimitExcept>
</Location>
But that is beside the point.

Thanks guys,

-Archer

Last edited by archerjd; 26th November 2008 at 21:42.
Reply With Quote
Sponsored Links