# DO NOT EDIT - This file is being maintained by Chef WSGIDaemonProcess <%= @name %> user=<%= @user %> group=<%= @group %> processes=4 threads=8 restart-interval=3600 inactivity-timeout=180 graceful-timeout=60 maximum-requests=2000 ServerName <%= @name %> <% @aliases.each do |alias_name| -%> ServerAlias <%= alias_name %> <% end -%> ServerAdmin webmaster@openstreetmap.org CustomLog /var/log/apache2/<%= @name %>-access.log combined ErrorLog /var/log/apache2/<%= @name %>-error.log RedirectPermanent /.well-known/acme-challenge/ http://acme.openstreetmap.org/.well-known/acme-challenge/ RedirectPermanent / https://<%= @name %>/ <% unless @aliases.empty? -%> ServerName <%= @aliases.first %> <% @aliases.drop(1).each do |alias_name| -%> ServerAlias <%= alias_name %> <% end -%> ServerAdmin webmaster@openstreetmap.org SSLEngine on SSLCertificateFile /etc/ssl/certs/<%= @name %>.pem SSLCertificateKeyFile /etc/ssl/private/<%= @name %>.key CustomLog /var/log/apache2/<%= @name %>-access.log combined ErrorLog /var/log/apache2/<%= @name %>-error.log RedirectPermanent / https://<%= @name %>/ <% end -%> ServerName <%= @name %> ServerAdmin webmaster@openstreetmap.org SSLEngine on SSLCertificateFile /etc/ssl/certs/<%= @name %>.pem SSLCertificateKeyFile /etc/ssl/private/<%= @name %>.key CustomLog /var/log/apache2/<%= @name %>-access.log combined ErrorLog /var/log/apache2/<%= @name %>-error.log DocumentRoot <%= @directory %>/htdocs Alias /robots.txt <%= @directory %>/htdocs/site/robots.txt WSGIScriptAlias / <%= @directory %>/cgi-bin/trac.wsgi WSGIProcessGroup <%= @name %> DefineExternalAuth osm pipe /usr/local/bin/trac-authenticate # Disable /timeline for now RedirectMatch 410 ^/timeline(.*)$ AuthType Basic AuthName "OpenStreetMap Trac" AuthBasicProvider external AuthExternal osm Require valid-user /htdocs> Require all granted /cgi-bin> Require all granted