X-Git-Url: http://git.indexdata.com/?a=blobdiff_plain;f=tools%2Fapache2%2Fmkws-live;h=630170d5c470fe34d69106147562c69e64a878e3;hb=cd1388ebf3b69038d495f12e120bdfc02a2e7aa2;hp=64215c29afcc0416de2448defcd30ef0a49a33a7;hpb=770bd29a832cffc1de7287ee8f806b5f938b6bf7;p=mkws-moved-to-github.git
diff --git a/tools/apache2/mkws-live b/tools/apache2/mkws-live
index 64215c2..630170d 100644
--- a/tools/apache2/mkws-live
+++ b/tools/apache2/mkws-live
@@ -9,18 +9,62 @@
DocumentRoot /home/indexdata/mkws/tools/htdocs
Alias /libjs-pz2/ /home/indexdata/libjs-pz2/
+ Alias /pazpar2/ /home/indexdata/pazpar2/
RewriteEngine on
RewriteLogLevel 1
RewriteLog /var/log/apache2/mkws-rewrite.log
- RewriteRule /service-proxy-auth /service-proxy/?command=auth&action=login&username=demo&password=demo [P] # [NE,P]
- RewriteRule /service-proxy/%3F /service-proxy/? [P] # [NE,P]
+
+ # Credential-hiding rewrite rules for standard MKWS account, testing account and various application accounts
+ RewriteRule /service-proxy-auth(/)?(;jsessionid=.+)? /service-proxy/$2?command=auth&action=check,login&username=mkws&password=mkws [P]
+ RewriteRule /service-proxy-testauth(/)?(;jsessionid=.+)? /service-proxy/$2?command=auth&action=check,login&username=mkwstest&password=mkwstest [P]
+ RewriteRule /service-proxy-credoauth(/)?(;jsessionid=.+)? /service-proxy/$2?command=auth&action=check,login&username=credo&password=emu [P]
+ RewriteRule /service-proxy-kohaauth(/)?(;jsessionid=.+)? /service-proxy/$2?command=auth&action=check,login&username=kohademo&password=kohademo [P]
+ RewriteRule /service-proxy-orexauth(/)?(;jsessionid=.+)? /service-proxy/$2?command=auth&action=check,login&username=orex&password=orexmkc [P]
+
+ # The following rule allows the server to accept service-proxy
+ # requests that begin with an escaped "%3F" rather than a literal
+ # "?". This is useful, as requests generated by ProxyPass
+ # elsewhere always have the leading "?" escaped for some reason.
+ RewriteRule /service-proxy/\?(.*) /service-proxy/?$1 [P] # [NE,P]
Header set Access-Control-Allow-Credentials true
# For MKC Service Proxy
- ProxyPass /service-proxy/ http://mk2-test.indexdata.com/service-proxy/
- ProxyPassReverse /service-proxy/ http://mk2-test.indexdata.com/service-proxy/
+ ProxyPass /service-proxy/ http://sp-mkc.indexdata.com/service-proxy/
+ ProxyPassReverse /service-proxy/ http://sp-mkc.indexdata.com/service-proxy/
+ # Or use: sp-mkc-sansa.indexdata.com:8080 or sp-mkc-arya.indexdata.com:8080
+
+ PerlOptions +Parent
+ PerlSwitches -I/home/indexdata/mkws/tools/mod_perl
+
+ PerlOutputFilterHandler MyApache2::SetACAO
+
+
+
+# Separate hostname for the MKWS instance of the Service Proxy.
+# This allows us to use a different SP configuration that handles
+# authentication differently.
+#
+# Once this is in universal use, we can get rid of the Service Proxy
+# stuff in the configuration for mkws.indexdata.com
+#
+
+ ServerName sp-mkws.indexdata.com
+
+ ErrorLog /var/log/apache2/sp-mkws-error.log
+ CustomLog /var/log/apache2/sp-mkws-access.log combined
+
+ DocumentRoot /home/indexdata/mkws/tools/sp-htdocs
+
+ # No rewriting on this server: use the true URL.
+ # (The security value of rewrite is when the application site does it.)
+
+ Header set Access-Control-Allow-Credentials true
+
+ ProxyPass /service-proxy/ http://sp-mkc.indexdata.com/service-proxy/
+ ProxyPassReverse /service-proxy/ http://sp-mkc.indexdata.com/service-proxy/
+ # Or use: sp-mkc-sansa.indexdata.com:8080 or sp-mkc-arya.indexdata.com:8080
PerlOptions +Parent
PerlSwitches -I/home/indexdata/mkws/tools/mod_perl