config/lighttpd.conf

   1 #
   2 # Load the modules that we need
   3 #
   4 server.modules = (
   5   "mod_access",
   6   "mod_accesslog",
   7   "mod_cgi",
   8   "mod_compress",
   9   "mod_evasive",
  10   "mod_expire",
  11   "mod_fastcgi",
  12   "mod_redirect",
  13   "mod_status"
  14 )
  15
  16 #
  17 # Basic server configuration
  18 #
  19 server.username = "www-data"
  20 server.groupname = "www-data"
  21 server.pid-file = "/var/run/lighttpd.pid"
  22 server.max-fds = 8192
  23 server.reject-expect-100-with-417 = "disable"
  24
  25 #
  26 # Setup logging
  27 #
  28 accesslog.filename = "/var/log/lighttpd/access.log"
  29 server.errorlog = "/var/log/lighttpd/error.log"
  30
  31 #
  32 # Allow munin to monitor the server's status
  33 #
  34 $HTTP["remoteip"] == "128.40.168.98" {
  35   status.config-url = "/server-config"
  36   status.status-url = "/server-status"
  37   status.statistics-url = "/server-statistics"
  38 }
  39
  40 #
  41 # IP blocked at SteveC's request as it was trying to download the
  42 # history of every object in the database one at a time
  43 #
  44 $HTTP["remoteip"] == "143.210.16.160" { url.access-deny = ("") }
  45
  46 #
  47 # Rule to block tilesAtHome when somebody decides to queue vast
  48 # number of tiles for rerendering
  49 #
  50 #$HTTP["useragent"] == "tilesAtHome" { url.access-deny = ("") }
  51
  52 #
  53 # Limit connections to 20 per IP address
  54 #
  55 evasive.max-conns-per-ip = 20
  56
  57 #
  58 # Setup MIME type mapping
  59 #
  60 mimetype.assign = (
  61   ".css" => "text/css",
  62   ".gif" => "image/gif",
  63   ".html" => "text/html; charset=utf-8",
  64   ".jpg" => "image/jpeg",
  65   ".js" => "application/x-javascript",
  66   ".png" => "image/png",
  67   ".swf" => "application/x-shockwave-flash",
  68   ".txt" => "text/plain",
  69   ".xml" => "text/xml"
  70 )
  71
  72 #
  73 # Force special MIME type for crossdomain.xml files
  74 #
  75 $HTTP["url"] =~ "/crossdomain\.xml$" {
  76   mimetype.assign = ( ".xml" => "text/x-cross-domain-policy" )
  77 }
  78
  79 #
  80 # Enable compression of appropriate static content
  81 #
  82 compress.filetype = (
  83   "application/x-javascript",
  84   "application/x-shockwave-flash",
  85   "text/css",
  86   "text/html",
  87   "text/plain"
  88 )
  89
  90 #
  91 # Set expiry for static content
  92 #
  93 expire.url = (
  94   "/export/embed.html" => "access 7 days",
  95   "/images/" => "access 10 years",
  96   "/javascripts/" => "access 10 years",
  97   "/openlayers/" => "access 7 days",
  98   "/stylesheets/" => "access 10 years"
  99 )
 100
 101 #
 102 # Cache compressed content
 103 #
 104 compress.cache-dir = "/var/cache/lighttpd"
 105
 106 #
 107 # Redirect trac and wiki requests to the right places
 108 #
 109 url.redirect = (
 110   "^/trac/(.*)$" => "http://trac.openstreetmap.org/$1",
 111   "^/wiki/(.*)$" => "http://wiki.openstreetmap.org/$1"
 112 )
 113
 114 #
 115 # Redirect everything except www.openstreetmap.org and
 116 # api.openstreetmap.org to www.openstreetmap.org
 117 #
 118 $HTTP["host"] =~ "^api\." {
 119   $HTTP["host"] != "api.openstreetmap.org" {
 120     url.redirect = ( "^(.*)$" => "http://api.openstreetmap.org$1" )
 121   }
 122 }
 123 else $HTTP["host"] != "www.openstreetmap.org" {
 124   url.redirect = ( "^(.*)$" => "http://www.openstreetmap.org$1" )
 125 }
 126
 127 #
 128 # Run anything with a .pl iextension as a CGI script
 129 #
 130 cgi.assign = ( ".pl" => "/usr/bin/perl" )
 131
 132 #
 133 # Serve static content from the rails public area ourselves
 134 #
 135 server.document-root = "/home/rails/public"
 136
 137 #
 138 # Send everything else to the appropriate FastCGI server
 139 #
 140 $HTTP["useragent"] =~ "^tilesAtHome" {
 141   server.error-handler-404 = "/dispatch.tah"
 142 }
 143 else $HTTP["url"] =~ "^/api/0\.6/(map|trackpoints|amf|amf/read|swf/trackpoints|changeset/[0-9]+/upload)$" {
 144   server.error-handler-404 = "/dispatch.bulkapi"
 145 }
 146 else $HTTP["url"] =~ "^/api/0\.6/.*/(full|search)$" {
 147   server.error-handler-404 = "/dispatch.bulkapi"
 148 }
 149 else $HTTP["url"] =~ "^/api/0\.6/" {
 150   server.error-handler-404 = "/dispatch.api"
 151 }
 152 else $HTTP["url"] =~ "^/api/0\.[0-9]+/" {
 153   url.access-deny = ("")
 154 }
 155 else $HTTP["url"] =~ "^/geocoder/(search|description)_osm_namefinder$" {
 156   server.error-handler-404 = "/dispatch.namefinder"
 157 }
 158 else $HTTP["url"] =~ "^/geocoder/(search|description)_geonames$" {
 159   server.error-handler-404 = "/dispatch.geonames"
 160 }
 161 else $HTTP["url"] =~ "^/" {
 162   server.error-handler-404 = "/dispatch.web"
 163 }
 164
 165 #
 166 # Configure the FastCGI servers
 167 #
 168 fastcgi.server = (
 169   ".web" => (
 170     ( "host" => "127.0.0.1", "port" => 8000, "check-local" => "disable" ),
 171     ( "host" => "127.0.0.1", "port" => 8001, "check-local" => "disable" ),
 172     ( "host" => "127.0.0.1", "port" => 8002, "check-local" => "disable" ),
 173     ( "host" => "127.0.0.1", "port" => 8003, "check-local" => "disable" ),
 174     ( "host" => "127.0.0.1", "port" => 8004, "check-local" => "disable" ),
 175     ( "host" => "127.0.0.1", "port" => 8005, "check-local" => "disable" ),
 176     ( "host" => "127.0.0.1", "port" => 8006, "check-local" => "disable" ),
 177     ( "host" => "127.0.0.1", "port" => 8007, "check-local" => "disable" ),
 178     ( "host" => "127.0.0.1", "port" => 8008, "check-local" => "disable" ),
 179     ( "host" => "127.0.0.1", "port" => 8009, "check-local" => "disable" ),
 180     ( "host" => "127.0.0.1", "port" => 8010, "check-local" => "disable" ),
 181     ( "host" => "127.0.0.1", "port" => 8011, "check-local" => "disable" ),
 182     ( "host" => "127.0.0.1", "port" => 8012, "check-local" => "disable" ),
 183     ( "host" => "127.0.0.1", "port" => 8013, "check-local" => "disable" ),
 184     ( "host" => "127.0.0.1", "port" => 8014, "check-local" => "disable" ),
 185     ( "host" => "127.0.0.1", "port" => 8015, "check-local" => "disable" ),
 186     ( "host" => "127.0.0.1", "port" => 8016, "check-local" => "disable" ),
 187     ( "host" => "127.0.0.1", "port" => 8017, "check-local" => "disable" ),
 188     ( "host" => "127.0.0.1", "port" => 8018, "check-local" => "disable" ),
 189     ( "host" => "127.0.0.1", "port" => 8019, "check-local" => "disable" ),
 190     ( "host" => "127.0.0.1", "port" => 8020, "check-local" => "disable" ),
 191     ( "host" => "127.0.0.1", "port" => 8021, "check-local" => "disable" ),
 192     ( "host" => "127.0.0.1", "port" => 8022, "check-local" => "disable" ),
 193     ( "host" => "127.0.0.1", "port" => 8023, "check-local" => "disable" ),
 194     ( "host" => "127.0.0.1", "port" => 8024, "check-local" => "disable" ),
 195     ( "host" => "127.0.0.1", "port" => 8025, "check-local" => "disable" )
 196   ),
 197   ".namefinder" => (
 198     ( "host" => "127.0.0.1", "port" => 8026, "check-local" => "disable" ),
 199     ( "host" => "127.0.0.1", "port" => 8027, "check-local" => "disable" ),
 200     ( "host" => "127.0.0.1", "port" => 8028, "check-local" => "disable" ),
 201     ( "host" => "127.0.0.1", "port" => 8029, "check-local" => "disable" )
 202   ),
 203   ".geonames" => (
 204     ( "host" => "127.0.0.1", "port" => 8030, "check-local" => "disable" ),
 205     ( "host" => "127.0.0.1", "port" => 8031, "check-local" => "disable" ),
 206     ( "host" => "127.0.0.1", "port" => 8032, "check-local" => "disable" ),
 207     ( "host" => "127.0.0.1", "port" => 8033, "check-local" => "disable" )
 208   ),
 209   ".api" => (
 210     ( "host" => "127.0.0.1", "port" => 8030, "check-local" => "disable" ),
 211     ( "host" => "127.0.0.1", "port" => 8031, "check-local" => "disable" ),
 212     ( "host" => "127.0.0.1", "port" => 8032, "check-local" => "disable" ),
 213     ( "host" => "127.0.0.1", "port" => 8033, "check-local" => "disable" ),
 214     ( "host" => "127.0.0.1", "port" => 8034, "check-local" => "disable" ),
 215     ( "host" => "127.0.0.1", "port" => 8035, "check-local" => "disable" ),
 216     ( "host" => "127.0.0.1", "port" => 8036, "check-local" => "disable" ),
 217     ( "host" => "127.0.0.1", "port" => 8037, "check-local" => "disable" ),
 218     ( "host" => "127.0.0.1", "port" => 8038, "check-local" => "disable" ),
 219     ( "host" => "127.0.0.1", "port" => 8039, "check-local" => "disable" ),
 220     ( "host" => "127.0.0.1", "port" => 8040, "check-local" => "disable" ),
 221     ( "host" => "127.0.0.1", "port" => 8041, "check-local" => "disable" ),
 222     ( "host" => "127.0.0.1", "port" => 8042, "check-local" => "disable" ),
 223     ( "host" => "127.0.0.1", "port" => 8043, "check-local" => "disable" ),
 224     ( "host" => "127.0.0.1", "port" => 8044, "check-local" => "disable" )
 225   ),
 226   ".bulkapi" => (
 227     ( "host" => "10.0.0.10", "port" => 8000, "check-local" => "disable" ),
 228     ( "host" => "10.0.0.11", "port" => 8000, "check-local" => "disable" ),
 229     ( "host" => "10.0.0.12", "port" => 8000, "check-local" => "disable" ),
 230     ( "host" => "10.0.0.10", "port" => 8001, "check-local" => "disable" ),
 231     ( "host" => "10.0.0.11", "port" => 8001, "check-local" => "disable" ),
 232     ( "host" => "10.0.0.12", "port" => 8001, "check-local" => "disable" ),
 233     ( "host" => "10.0.0.10", "port" => 8002, "check-local" => "disable" ),
 234     ( "host" => "10.0.0.11", "port" => 8002, "check-local" => "disable" ),
 235     ( "host" => "10.0.0.12", "port" => 8002, "check-local" => "disable" ),
 236     ( "host" => "10.0.0.10", "port" => 8003, "check-local" => "disable" ),
 237     ( "host" => "10.0.0.11", "port" => 8003, "check-local" => "disable" ),
 238     ( "host" => "10.0.0.12", "port" => 8003, "check-local" => "disable" ),
 239     ( "host" => "10.0.0.10", "port" => 8004, "check-local" => "disable" ),
 240     ( "host" => "10.0.0.11", "port" => 8004, "check-local" => "disable" ),
 241     ( "host" => "10.0.0.12", "port" => 8004, "check-local" => "disable" ),
 242     ( "host" => "10.0.0.10", "port" => 8005, "check-local" => "disable" ),
 243     ( "host" => "10.0.0.11", "port" => 8005, "check-local" => "disable" ),
 244     ( "host" => "10.0.0.12", "port" => 8005, "check-local" => "disable" ),
 245     ( "host" => "10.0.0.10", "port" => 8006, "check-local" => "disable" ),
 246     ( "host" => "10.0.0.11", "port" => 8006, "check-local" => "disable" ),
 247     ( "host" => "10.0.0.12", "port" => 8006, "check-local" => "disable" ),
 248     ( "host" => "10.0.0.10", "port" => 8007, "check-local" => "disable" ),
 249     ( "host" => "10.0.0.11", "port" => 8007, "check-local" => "disable" ),
 250     ( "host" => "10.0.0.12", "port" => 8007, "check-local" => "disable" ),
 251     ( "host" => "10.0.0.10", "port" => 8008, "check-local" => "disable" ),
 252     ( "host" => "10.0.0.11", "port" => 8008, "check-local" => "disable" ),
 253     ( "host" => "10.0.0.12", "port" => 8008, "check-local" => "disable" ),
 254     ( "host" => "10.0.0.10", "port" => 8009, "check-local" => "disable" ),
 255     ( "host" => "10.0.0.11", "port" => 8009, "check-local" => "disable" ),
 256     ( "host" => "10.0.0.12", "port" => 8009, "check-local" => "disable" ),
 257     ( "host" => "10.0.0.10", "port" => 8010, "check-local" => "disable" ),
 258     ( "host" => "10.0.0.11", "port" => 8010, "check-local" => "disable" ),
 259     ( "host" => "10.0.0.12", "port" => 8010, "check-local" => "disable" ),
 260   ),
 261   ".tah" => (
 262     ( "host" => "10.0.0.10", "port" => 8011, "check-local" => "disable" ),
 263     ( "host" => "10.0.0.11", "port" => 8011, "check-local" => "disable" ),
 264     ( "host" => "10.0.0.12", "port" => 8011, "check-local" => "disable" )
 265   )
 266 )