sub init_web
{
$default_web_port = $config{'web_port'} || 80;
$writelogs_cmd = "$module_config_directory/writelogs.pl";
}
sub require_apache
{
return if ($require_apache++);
&foreign_require("apache", "apache-lib.pl");
}
# setup_web(&domain)
# Setup a virtual website for some domain
sub setup_web
{
local $tmpl = &get_template($_[0]->{'template'});
local $web_port = $_[0]->{'web_port'} || $tmpl->{'web_port'} || 80;
if ($_[0]->{'alias'} && $tmpl->{'web_alias'} == 1) {
&$first_print($text{'setup_webalias'});
}
else {
&$first_print($text{'setup_web'});
}
&require_apache();
local $conf = &apache::get_config();
local ($f, $newfile) = &get_website_file($_[0]);
&lock_file($f);
# add NameVirtualHost if needed
local $nvstar = &add_name_virtual($_[0], $conf, $web_port);
# Add Listen if needed
&add_listen($_[0], $conf, $web_port);
local @dirs = &apache_template($tmpl->{'web'}, $_[0], $tmpl->{'web_suexec'});
if ($_[0]->{'alias'} && $tmpl->{'web_alias'} == 1) {
# Update the parent virtual host
local $alias = &get_domain($_[0]->{'alias'});
local ($pvirt, $pconf) = &get_apache_virtual($alias->{'dom'},
$alias->{'web_port'});
if (!$pvirt) {
&$second_print($text{'setup_ewebalias'});
return 0;
}
&lock_file($pvirt->{'file'});
local @sa = &apache::find_directive("ServerAlias", $pconf);
local $d;
foreach $d (@dirs) {
if ($d =~ /^\s*Server(Name|Alias)\s+(.*)/) {
push(@sa, $2);
}
}
&apache::save_directive("ServerAlias", \@sa, $pconf, $conf);
&flush_file_lines();
&unlock_file($pvirt->{'file'});
$_[0]->{'alias_mode'} = 1;
}
else {
# Add the actual <VirtualHost>
# We use a * for the address for name-based servers under Apache 2,
# if NameVirtualHost * exists.
local $vip = $_[0]->{'name'} &&
$apache::httpd_modules{'core'} >= 1.312 &&
&is_shared_ip($_[0]->{'ip'}) &&
$nvstar ? "*" : $_[0]->{'ip'};
local $lref = &read_file_lines($f);
push(@$lref, "<VirtualHost $vip:$web_port>");
local $proxying;
if ($_[0]->{'alias'}) {
# Because this is just an alias to an existing virtual server,
# create a ProxyPass or Redirect
@dirs = grep { /^\s*Server(Name|Alias)\s/i } @dirs;
local $aliasdom = &get_domain($_[0]->{'alias'});
local $port = $aliasdom->{'web_port'} == 80 ? "" :
":$aliasdom->{'web_port'}";
local $urlhost = "www.".$aliasdom->{'dom'};
if (!gethostbyname($urlhost)) {
$urlhost = $aliasdom->{'dom'};
}
local $url = "http://$urlhost$port/";
if ($apache::httpd_modules{'mod_proxy'} &&
$tmpl->{'web_alias'} == 2) {
push(@dirs, "ProxyPass / $url",
"ProxyPassReverse / $url");
$proxying = 1;
}
elsif ($tmpl->{'web_alias'} == 0) {
push(@dirs, "Redirect / $url");
}
elsif ($tmpl->{'web_alias'} == 4) {
push(@dirs, "RedirectPermanent / $url");
}
}
elsif ($_[0]->{'subdom'}) {
# Because this is a sub-domain, force the document directory
# to be under the super-domain's public_html. Also, the logs
# must be the same as the parent domain's logs.
local $subdom = &get_domain($_[0]->{'subdom'});
local $subdir = &public_html_dir($_[0]);
local $mydir = &public_html_dir($_[0], 0, 1);
local $subcgi = &cgi_bin_dir($_[0]);
local $mycgi = &cgi_bin_dir($_[0], 0, 1);
local $clog = &get_apache_log(
$subdom->{'dom'}, $subdom->{'web_port'}, 0);
local $elog = &get_apache_log(
$subdom->{'dom'}, $subdom->{'web_port'}, 1);
foreach my $d (@dirs) {
if ($d =~ /^\s*DocumentRoot/) {
$d = "DocumentRoot $subdir";
}
if ($d =~ /^\s*ScriptAlias\s+\/cgi-bin\//) {
$d = "ScriptAlias /cgi-bin/ $subcgi/";
}
elsif ($d =~ /^\s*<Directory\s+\Q$mydir\E>/) {
$d = "<Directory $subdir>";
}
elsif ($d =~ /^\s*<Directory\s+\Q$mycgi\E>/) {
$d = "<Directory $subcgi>";
}
elsif ($d =~ /^ErrorLog/ && $elog) {
$d = "ErrorLog $elog";
}
elsif ($d =~ /^CustomLog\s+(.*)\s+(\S+)$/ && $clog) {
$d = "CustomLog $clog $2";
}
}
foreach my $sd ($subdir, $subcgi) {
if (!-d $sd) {
mkdir($sd, 0755);
&set_ownership_permissions(
$_[0]->{'uid'}, $_[0]->{'ugid'}, 0755, $sd);
}
}
}
push(@$lref, @dirs);
push(@$lref, "</VirtualHost>");
&flush_file_lines();
$_[0]->{'web_port'} = $web_port;
undef(@apache::get_config_cache);
if ($proxying) {
# Add <Proxy *> section, to ensure that proxypass works
&add_proxy_allow_directives($_[0]);
}
# Create a link from another Apache dir
if ($newfile) {
&apache::create_webfile_link($f);
}
# Create empty access and error log files, world-readable
local $log = &get_apache_log($_[0]->{'dom'}, $_[0]->{'web_port'}, 0);
local $elog = &get_apache_log($_[0]->{'dom'}, $_[0]->{'web_port'}, 1);
local $l;
foreach $l ($log, $elog) {
if ($l && !-r $l) {
&open_tempfile(LOG, ">$l");
&close_tempfile(LOG);
&set_ownership_permissions(undef, undef, 0644, $l);
}
}
$_[0]->{'alias_mode'} = 0;
}
&unlock_file($f);
&create_framefwd_file($_[0]);
&$second_print($text{'setup_done'});
®ister_post_action(\&restart_apache);
# Add the Apache user to the group for this virtual server, if missing, unless
# the template says not to.
local $web_user = &get_apache_user($_[0]);
if ($tmpl->{'web_user'} ne 'none' && $web_user) {
&add_user_to_domain_group($_[0], $web_user, 'setup_webuser');
}
# Make the web directory accessible under SElinux Apache
if (&has_command("chcon")) {
local $hdir = &public_html_dir($_[0]);
&execute_command("chcon -R -t httpd_sys_content_t ".quotemeta($hdir));
local $cgidir = &cgi_bin_dir($_[0]);
&execute_command("chcon -R -t httpd_sys_script_exec_t ".
quotemeta($cgidir));
local $logdir = "$_[0]->{'home'}/logs";
&execute_command("chcon -R -t httpd_log_t ".quotemeta($logdir));
}
# Setup the writelogs wrapper
&setup_writelogs($_[0]);
# Create a root-owned file in ~/logs to prevent deletion of the directory
local $logsdir = "$_[0]->{'home'}/logs";
if (-d $logsdir && !-e "$logsdir/.nodelete") {
open(NODELETE, ">$logsdir/.nodelete");
close(NODELETE);
&set_ownership_permissions(0, 0, 0700, "$logsdir/.nodelete");
}
# Setup for script languages
if (!$_[0]->{'alias'} && $_[0]->{'dir'}) {
&add_script_language_directives($_[0], $tmpl, $_[0]->{'web_port'});
}
}
# delete_web(&domain)
# Delete the virtual server from the Apache config
sub delete_web
{
&require_apache();
local $conf = &apache::get_config();
if ($_[0]->{'alias_mode'}) {
# Just delete ServerAlias directives from parent
&$first_print($text{'delete_apachealias'});
local $alias = &get_domain($_[0]->{'alias'});
local ($pvirt, $pconf) = &get_apache_virtual($alias->{'dom'},
$alias->{'web_port'});
if (!$pvirt) {
&$second_print($text{'setup_ewebalias'});
return 0;
}
&lock_file($pvirt->{'file'});
local @sa = &apache::find_directive("ServerAlias", $pconf);
@sa = grep { !/\Q$_[0]->{'dom'}\E$/ } @sa;
&apache::save_directive("ServerAlias", \@sa, $pconf, $conf);
&flush_file_lines();
&unlock_file($pvirt->{'file'});
&$second_print($text{'setup_done'});
®ister_post_action(\&restart_apache);
}
elsif ($config{'delete_indom'}) {
# Delete all matching virtual servers
&$first_print($text{'delete_apache'});
if (!$_[0]->{'alias_mode'}) {
# Remove the custom Listen directive added for the domain
&remove_listen($d, $conf, $d->{'web_port'});
}
local @virt = reverse(&apache::find_directive_struct("VirtualHost",
$conf));
foreach $v (@virt) {
local $sn = &apache::find_directive("ServerName",
$v->{'members'});
if ($sn =~ /\Q$_[0]->{'dom'}\E$/) {
&delete_web_virtual_server($v);
}
}
&$second_print($text{'setup_done'});
®ister_post_action(\&restart_apache);
}
else {
# Just delete one virtual server
&$first_print($text{'delete_apache'});
if (!$_[0]->{'alias_mode'}) {
# Remove the custom Listen directive added for the domain
&remove_listen($d, $conf, $d->{'web_port'});
}
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'},
$_[0]->{'web_port'});
if ($virt) {
&delete_web_virtual_server($virt);
&$second_print($text{'setup_done'});
®ister_post_action(\&restart_apache);
}
else {
&$second_print($text{'delete_noapache'});
}
}
undef(@apache::get_config_cache);
}
# delete_web_virtual_server(&vhost)
# Delete a single virtual server from the Apache config
sub delete_web_virtual_server
{
&require_apache();
&lock_file($_[0]->{'file'});
local $lref = &read_file_lines($_[0]->{'file'});
splice(@$lref, $_[0]->{'line'}, $_[0]->{'eline'} - $_[0]->{'line'} + 1);
&flush_file_lines();
if (&is_empty($lref)) {
# Don't keep around empty web files
&unlink_file($_[0]->{'file'});
# Delete a link from another Apache dir
&apache::delete_webfile_link($_[0]->{'file'});
}
&unlock_file($_[0]->{'file'});
}
# is_empty(&lref)
sub is_empty
{
local $l;
foreach $l (@{$_[0]}) {
if ($l =~ /\S/) {
return 0;
}
}
return 1;
}
# modify_web(&domain, &olddomain, [&alias, &oldalias])
# If this server has changed from name-based to IP-based hosting, update
# the Apache configuration
sub modify_web
{
local $rv = 0;
&require_apache();
local $conf = &apache::get_config();
if ($_[0]->{'alias'} && $_[0]->{'alias_mode'}) {
# Possibly just updating parent virtual server
if ($_[0]->{'dom'} ne $_[1]->{'dom'}) {
&$first_print($text{'save_apache5'});
local $alias = &get_domain($_[0]->{'alias'});
local ($pvirt, $pconf) = &get_apache_virtual($alias->{'dom'},
$alias->{'web_port'});
if (!$pvirt) {
&$second_print($text{'setup_ewebalias'});
}
else {
&lock_file($pvirt->{'file'});
local @sa = &apache::find_directive("ServerAlias", $pconf);
local $s;
foreach $s (@sa) {
$s =~ s/\Q$_[1]->{'dom'}\E($|\s)/$_[0]->{'dom'}$1/g;
}
&apache::save_directive("ServerAlias", \@sa, $pconf,
$conf);
&flush_file_lines();
&unlock_file($pvirt->{'file'});
&$second_print($text{'setup_done'});
$rv++;
}
}
}
else {
# Update an actual virtual server
local ($virt, $vconf) = &get_apache_virtual($_[1]->{'dom'},
$_[1]->{'web_port'});
&lock_file($virt->{'file'});
if ($_[0]->{'name'} != $_[1]->{'name'} ||
$_[0]->{'ip'} ne $_[1]->{'ip'} ||
$_[0]->{'ssl'} != $_[1]->{'ssl'} ||
$_[0]->{'web_port'} != $_[1]->{'web_port'}) {
# Name-based hosting mode or IP has changed .. update the
# Listen directives, and the virtual host definition
&$first_print($text{'save_apache'});
local $conf = &apache::get_config();
local $nvstar = &add_name_virtual($_[0], $conf, $_[0]->{'web_port'});
&add_listen($_[0], $conf, $_[0]->{'web_port'});
local $lref = &read_file_lines($virt->{'file'});
local $vip = $_[0]->{'name'} &&
$apache::httpd_modules{'core'} >= 1.312 &&
&is_shared_ip($_[0]->{'ip'}) &&
$nvstar ? "*" : $_[0]->{'ip'};
$lref->[$virt->{'line'}] =
"<VirtualHost $vip:$_[0]->{'web_port'}>";
&flush_file_lines();
$rv++;
&$second_print($text{'setup_done'});
}
if ($_[0]->{'home'} ne $_[1]->{'home'}) {
# Home directory has changed .. update any directives that
# referred to the old directory
&$first_print($text{'save_apache3'});
local $lref = &read_file_lines($virt->{'file'});
for($i=$virt->{'line'}; $i<=$virt->{'eline'}; $i++) {
$lref->[$i] =~ s/$_[1]->{'home'}/$_[0]->{'home'}/g;
}
&flush_file_lines();
$rv++;
&$second_print($text{'setup_done'});
}
if ($_[0]->{'alias'} && $_[2] && $_[2]->{'dom'} ne $_[3]->{'dom'}) {
# This is an alias, and the domain it is aliased to has changed.
# update all Proxy* and Redirect directives
&$first_print($text{'save_apache4'});
local $lref = &read_file_lines($virt->{'file'});
for($i=$virt->{'line'}; $i<=$virt->{'eline'}; $i++) {
if ($lref->[$i] =~
/^\s*(Proxy|Redirect\s|RedirectPermanent\s)/) {
$lref->[$i] =~ s/$_[3]->{'dom'}/$_[2]->{'dom'}/g;
}
}
&flush_file_lines();
$rv++;
&$second_print($text{'setup_done'});
}
if ($_[0]->{'proxy_pass_mode'} == 1 &&
$_[1]->{'proxy_pass_mode'} == 1 &&
$_[0]->{'proxy_pass'} ne $_[1]->{'proxy_pass'}) {
# This is a proxying forwarding website and the URL has
# changed - update all Proxy* directives
&$first_print($text{'save_apache6'});
local $lref = &read_file_lines($virt->{'file'});
for($i=$virt->{'line'}; $i<=$virt->{'eline'}; $i++) {
if ($lref->[$i] =~ /^\s*ProxyPass(Reverse)?\s/) {
$lref->[$i] =~ s/$_[1]->{'proxy_pass'}/$_[0]->{'proxy_pass'}/g;
}
}
&flush_file_lines();
$rv++;
&$second_print($text{'setup_done'});
}
if ($_[0]->{'proxy_pass_mode'} != $_[1]->{'proxy_pass_mode'}) {
# Proxy mode has been enabled or disabled .. remove all
# ProxyPass / , ProxyPassReverse / and AliasMatch ^/$
# directives, and create new ones as appropriate.
local $mode = $_[0]->{'proxy_pass_mode'} ||
$_[1]->{'proxy_pass_mode'};
&$first_print($mode == 2 ? $text{'save_apache8'}
: $text{'save_apache9'});
# Take out old proxy directives and block
local $lref = &read_file_lines($virt->{'file'});
local @lines = @$lref[$virt->{'line'}+1 .. $virt->{'eline'}-1];
@lines = grep { !/^ProxyPass\s+\/\s/ &&
!/^ProxyPassReverse\s+\/\s/ &&
!/^AliasMatch\s+\^\/\.\*\$\s/ &&
!/^SSLProxyEngine\s/ } @lines;
for(my $i=0; $i<@lines; $i++) {
if ($lines[$i] eq "<Proxy *>" &&
$lines[$i+2] eq "</Proxy>") {
# Take out <Proxy *> block
splice(@lines, $i, 3);
last;
}
}
# Add new directives
local @ppdirs = &apache_proxy_directives($_[0]);
push(@lines, @ppdirs);
splice(@$lref, $virt->{'line'} + 1,
$virt->{'eline'} - $virt->{'line'} - 1, @lines);
&flush_file_lines($virt->{'file'});
$rv++;
&$second_print($text{'setup_done'});
}
if ($_[0]->{'user'} ne $_[1]->{'user'}) {
# Username has changed .. update SuexecUserGroup and User
local $suexec = &apache::find_directive_struct(
"SuexecUserGroup", $vconf);
if ($suexec && $suexec->{'words'}->[0] eq $_[1]->{'user'}) {
&$first_print($text{'save_apache7'});
&apache::save_directive("SuexecUserGroup",
[ "$_[0]->{'user'} $_[0]->{'ugroup'}" ],
$vconf, $conf);
&flush_file_lines();
$rv++;
&$second_print($text{'setup_done'});
}
local $user = &apache::find_directive_struct(
"User", $vconf);
if ($user && $user->{'words'}->[0] eq $_[1]->{'user'}) {
&$first_print($text{'save_apache7'});
&apache::save_directive("User",
[ $_[0]->{'user'} ],
$vconf, $conf);
&flush_file_lines();
$rv++;
&$second_print($text{'setup_done'});
}
}
if ($_[0]->{'dom'} ne $_[1]->{'dom'}) {
# Domain name has changed .. update ServerName and ServerAlias
&$first_print($text{'save_apache2'});
&apache::save_directive("ServerName", [ $_[0]->{'dom'} ],
$vconf, $conf);
local @sa = map { s/$_[1]->{'dom'}/$_[0]->{'dom'}/g; $_ }
&apache::find_directive("ServerAlias", $vconf);
&apache::save_directive("ServerAlias", \@sa, $vconf, $conf);
&flush_file_lines();
$rv++;
if ($virt->{'file'} =~ /$_[1]->{'dom'}/) {
# Filename contains domain name .. need to re-name
&unlock_file($virt->{'file'});
&apache::delete_webfile_link($virt->{'file'});
local $nfn = $virt->{'file'};
$nfn =~ s/$_[1]->{'dom'}/$_[0]->{'dom'}/;
&rename_logged($virt->{'file'}, $nfn);
&apache::create_webfile_link($nfn);
}
&$second_print($text{'setup_done'});
}
&unlock_file($virt->{'file'});
if ($rv) {
undef(@apache::get_config_cache);
}
&create_framefwd_file($_[0]);
if (!$_[0]->{'ssl'}) {
# Only re-start here if we won't re-start later after
# changing SSL
®ister_post_action(\&restart_apache, 1) if ($rv);
}
}
return $rv;
}
# validate_web(&domain)
# Returns an error message if no Apache virtual host exists
sub validate_web
{
local ($d) = @_;
if ($d->{'alias_mode'}) {
# Find alias target
local $alias = &get_domain($d->{'alias'});
local ($pvirt, $pconf) = &get_apache_virtual($alias->{'dom'},
$alias->{'web_port'});
return &text('validate_eweb', "<tt>$alias->{'dom'}</tt>") if (!$pvirt);
}
else {
# Find real domain
local ($virt, $vconf) = &get_apache_virtual($d->{'dom'},
$d->{'web_port'});
return &text('validate_eweb', "<tt>$d->{'dom'}</tt>") if (!$virt);
# If using php via CGI or fcgi, check for wrappers
if (defined(&get_domain_php_mode)) {
local $mode = &get_domain_php_mode($d);
if ($mode ne "mod_php") {
local $dest = $mode eq "fcgid" ? "$d->{'home'}/fcgi-bin"
: &cgi_bin_dir($_[0]);
local $suffix = $mode eq "fcgid" ? "fcgi" : "cgi";
foreach my $v (&list_available_php_versions($d,$mode)) {
local $path = "$dest/php$v->[0].$suffix";
if (!-x $path) {
return &text('validate_ewebphp',
$v->[0], "<tt>$path</tt>");
}
}
}
}
}
return undef;
}
$disabled_website = "$module_config_directory/disabled.html";
$disabled_website_dir = "$module_config_directory/disabledweb";
# disable_web(&domain)
# Adds a directive to force all requests to show an error page
sub disable_web
{
&$first_print($text{'disable_apache'});
&require_apache();
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'},
$_[0]->{'web_port'});
if ($virt) {
&create_disable_directives($virt, $vconf, $_[0]);
&$second_print($text{'setup_done'});
®ister_post_action(\&restart_apache);
}
else {
&$second_print($text{'delete_noapache'});
}
}
# create_disable_directives(&virt, &vconf, &domain)
sub create_disable_directives
{
local ($virt, $vconf, $d) = @_;
local $tmpl = &get_template($d->{'template'});
&lock_file($virt->{'file'});
local $conf = &apache::get_config();
if ($tmpl->{'disabled_url'} eq 'none') {
# Disable is done via local HTML
local @am = &apache::find_directive("AliasMatch", $vconf);
local $dis = &disabled_website_html($d);
&apache::save_directive("AliasMatch",
[ @am, "^/.*\$ $dis" ], $vconf, $conf);
&flush_file_lines();
local $msg = $tmpl->{'disabled_web'} eq 'none' ?
"<h1>Website Disabled</h1>\n" :
join("\n", split(/\t/, $tmpl->{'disabled_web'}));
$msg = &substitute_domain_template($msg, $d);
&open_lock_tempfile(DISABLED, ">$dis");
&print_tempfile(DISABLED, $msg);
&close_tempfile(DISABLED);
&set_ownership_permissions(undef, undef, 0644, $disabled_website);
}
else {
# Disable is done via redirect
local @rm = &apache::find_directive("RedirectMatch", $vconf);
local $url = &substitute_domain_template($tmpl->{'disabled_url'}, $d);
&apache::save_directive("RedirectMatch",
[ @rm, "^/.*\$ $url" ], $vconf, $conf);
&flush_file_lines();
}
&unlock_file($virt->{'file'});
}
# disabled_website_html(&domain)
# Returns the file for storing the disabled site file for some domain
sub disabled_website_html
{
if (!-d $disabled_website_dir) {
mkdir($disabled_website_dir, 0755);
&set_ownership_permissions(undef, undef, $disabled_website_dir, 0755);
}
return "$disabled_website_dir/$_[0]->{'id'}.html";
}
# enable_web(&domain)
# Deletes the special error page directive
sub enable_web
{
&$first_print($text{'enable_apache'});
&require_apache();
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'},
$_[0]->{'web_port'});
if ($virt) {
&remove_disable_directives($virt, $vconf, $_[0]);
&$second_print($text{'setup_done'});
®ister_post_action(\&restart_apache);
}
else {
&$second_print($text{'delete_noapache'});
}
}
# remove_disable_directives(&virt, &vconf, &domain)
sub remove_disable_directives
{
local ($virt, $vconf, $d) = @_;
&lock_file($virt->{'file'});
# Remove local disables
local @am = &apache::find_directive("AliasMatch", $vconf);
local $dis = &disabled_website_html($d);
@am = grep { $_ ne "^/.*\$ $disabled_website" &&
$_ ne "^/.*\$ $dis" } @am;
local $conf = &apache::get_config();
&apache::save_directive("AliasMatch", \@am, $vconf, $conf);
# Remove remote disables
local @rm = &apache::find_directive("RedirectMatch", $vconf);
@rm = grep { substr($_, 0, 5) ne "^/.*\$" } @rm;
&apache::save_directive("RedirectMatch", \@rm, $vconf, $conf);
&flush_file_lines();
&unlock_file($virt->{'file'});
}
# check_web_clash(&domain, [field])
# Returns 1 if an Apache webserver already exists for some domain
sub check_web_clash
{
if (!$_[1] || $_[1] eq 'dom') {
local $tmpl = &get_template($_[0]->{'template'});
local $web_port = $tmpl->{'web_port'} || 80;
local ($cvirt, $cconf) = &get_apache_virtual($_[0]->{'dom'}, $web_port);
return $cvirt ? 1 : 0;
}
return 0;
}
# restart_apache([restart])
# Tell Apache to re-read its config file
sub restart_apache
{
&$first_print($_[0] ? $text{'setup_webpid2'} : $text{'setup_webpid'});
if ($config{'check_apache'}) {
# Do a config check first
local $err = &apache::test_config();
if ($err) {
&$second_print(&text('setup_webfailed', "<pre>$err</pre>"));
return 0;
}
}
local $pid = &get_apache_pid();
if (!$pid || !kill(0, $pid)) {
&$second_print($text{'setup_notrun'});
return 0;
}
if ($_[0]) {
# Totally stop and start
&apache::stop_apache();
sleep(5);
&apache::start_apache();
}
else {
# Just signal a re-load
&apache::restart_apache();
}
&cleanup_php_cgi_processes() if (defined(&cleanup_php_cgi_processes));
&$second_print($text{'setup_done'});
return 1;
}
# get_apache_log(domain-name, [port], [errorlog])
# Given a domain name, returns the path to its log file
sub get_apache_log
{
&require_apache();
local ($virt, $vconf) = &get_apache_virtual($_[0], $_[1]);
if ($virt) {
local $log;
if ($_[2]) {
# Looking for error log
$log = &apache::find_directive("ErrorLog", $vconf, 1);
}
else {
# Looking for normal log
$log = &apache::find_directive("TransferLog", $vconf, 1) ||
&apache::find_directive("CustomLog", $vconf, 1);
}
if ($log =~ /^\|\Q$writelogs_cmd\E\s+(\S+)\s+(\S+)/) {
# Via writelogs .. return real path
local $file = $2;
if ($file =~ /^\//) {
$log = $file;
}
else {
local $d = &get_domain_by("dom", $_[0]);
if ($d) {
$log = "$d->{'home'}/$file";
}
}
}
elsif ($log =~ /^\|/) {
# Via some program .. so we don't know where the real log is
return undef;
}
return $log;
}
else {
return undef;
}
}
# get_apache_template_log(&domain, [errorlog])
# Returns the log file path that a domain's template would use
sub get_apache_template_log
{
local ($dom, $error) = @_;
local $tmpl = &get_template($dom->{'template'});
local @dirs = &apache_template($tmpl->{'web'}, $dom, $tmpl->{'web_suexec'});
foreach my $l (@dirs) {
if ($error && $l =~ /^ErrorLog\s+(\S+)/) {
$log = $1;
}
elsif (!$error && $l =~ /^(TransferLog|CustomLog)\s+(\S+)/) {
$log = $2;
}
}
if ($log !~ /^\//) {
$log = "$dom->{'home'}/$log";
}
return $log;
}
# get_apache_virtual(domain, [port], [file])
# Returns the directive for a virtual server and the list of configuration
# directives with in, for some domain
sub get_apache_virtual
{
&require_apache();
local $conf;
if ($_[2]) {
# Looking in specified file
$conf = [ &apache::get_config_file($_[2]) ];
}
else {
# Looking in global Apache config
$conf = &apache::get_config();
}
local $v;
local $sp = $_[1] || $default_web_port;
foreach $v (&apache::find_directive_struct("VirtualHost", $conf)) {
local $vp = $v->{'words'}->[0] =~ /:(\d+)$/ ? $1 : $default_web_port;
next if ($vp != $sp);
local $sn = &apache::find_directive("ServerName", $v->{'members'});
return ($v, $v->{'members'}) if (lc($sn) eq $_[0] ||
lc($sn) eq "www.$_[0]");
local $n;
foreach $n (&apache::find_directive_struct(
"ServerAlias", $v->{'members'})) {
local @lcw = map { lc($_) } @{$n->{'words'}};
return ($v, $v->{'members'})
if (&indexof($_[0], @lcw) >= 0 ||
&indexof("www.$_[0]", @lcw) >= 0);
}
}
return ();
}
# get_apache_pid()
# Returns the Apache PID file, if it is running
sub get_apache_pid
{
&require_apache();
return &check_pid_file(&apache::get_pid_file());
}
# apache_template(text, &domain, suexec)
# Returns a suitably substituted Apache template
sub apache_template
{
local $dirs = $_[0];
$dirs =~ s/\t/\n/g;
$dirs = &substitute_domain_template($dirs, $_[1]);
local @dirs = split(/\n/, $dirs);
local ($sudir, $ppdir);
foreach (@dirs) {
$sudir++ if (/^\s*SuexecUserGroup\s/i || /^\s*User\s/i);
$ppdir++ if (/^\s*ProxyPass\s/);
}
local $tmpl = &get_template($_[1]->{'template'});
local $pdom = $_[1]->{'parent'} ? &get_domain($_[1]->{'parent'}) : $_[1];
if (!$sudir && $_[2] && $pdom->{'unix'}) {
# Automatically add suexec directives if missing
if ($apache::httpd_modules{'core'} >= 2.0) {
if ($apache::httpd_modules{'mod_suexec'}) {
unshift(@dirs, "SuexecUserGroup \"#$pdom->{'uid'}\" ".
"\"#$pdom->{'ugid'}\"");
}
}
else {
unshift(@dirs, "User \"#$pdom->{'uid'}\"",
"Group \"#$pdom->{'ugid'}\"");
}
}
if (!$ppdir && $_[1]->{'proxy_pass'}) {
# Add proxy directives
push(@dirs, &apache_proxy_directives($_[1]));
}
if ($tmpl->{'web_writelogs'}) {
# Fix any CustomLog or ErrorLog directives to write via writelogs.pl
foreach $d (@dirs) {
if ($d =~ /^(CustomLog|ErrorLog)\s+(\S+)(\s*\S*)/) {
$d = "$1 \"|$writelogs_cmd $_[1]->{'id'} $2\"$3";
}
}
}
return @dirs;
}
# apache_proxy_directives(&domain)
# Returns text lines for proxy pass or frame forwarding directives
sub apache_proxy_directives
{
local ($d) = @_;
&require_apache();
local @dirs;
if ($d->{'proxy_pass_mode'} == 1) {
# Proxy to another server
push(@dirs, "ProxyPass / $d->{'proxy_pass'}",
"ProxyPassReverse / $d->{'proxy_pass'}");
if ($d->{'proxy_pass'} =~ /^https:/ &&
$apache::httpd_modules{'core'} >= 2.0) {
# SSL proxy mode
push(@dirs, "SSLProxyEngine on");
}
if ($apache::httpd_modules{'core'} >= 2.0) {
# Ensure that proxying works
push(@dirs, "<Proxy *>",
"allow from all",
"</Proxy>");
}
}
elsif ($d->{'proxy_pass_mode'} == 2) {
# Redirect to /framefwd.html
local $ff = &framefwd_file($d);
push(@dirs, "AliasMatch ^/.*\$ $ff");
}
return @dirs;
}
# backup_web(&domain, file)
# Save the virtual server's Apache config as a separate file, except for
# ServerAlias lines for alias domains
sub backup_web
{
return 1 if ($_[0]->{'alias'} && $_[0]->{'alias_mode'});
&$first_print($text{'backup_apachecp'});
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'},
$_[0]->{'web_port'});
if ($virt) {
local $lref = &read_file_lines($virt->{'file'});
local $l;
local @adoms = &get_domain_by("alias", $_[0]->{'id'});
local %adoms = map { $_->{'dom'}, 1 } @adoms;
&open_tempfile(FILE, ">$_[1]");
foreach $l (@$lref[$virt->{'line'} .. $virt->{'eline'}]) {
if ($l =~ /^ServerAlias\s+(.*)/i) {
local @sa = split(/\s+/, $1);
@sa = grep { !($adoms{$_} ||
/^([^\.]+)\.(\S+)/ && $adoms{$2}) } @sa;
next if (!@sa);
$l = "ServerAlias ".join(" ", @sa);
}
&print_tempfile(FILE, "$l\n");
}
&close_tempfile(FILE);
&$second_print($text{'setup_done'});
return 1;
}
else {
&$second_print($text{'delete_noapache'});
return 0;
}
}
# restore_web(&domain, file, &options, &all-options, home-format, &olddomain)
# Update the virtual server's Apache configuration from a file. Does not
# change the actual <Virtualhost> lines!
sub restore_web
{
return 1 if ($_[0]->{'alias'} && $_[0]->{'alias_mode'});
&$first_print($text{'restore_apachecp'});
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'},
$_[0]->{'web_port'});
local $tmpl = &get_template($_[0]->{'template'});
if ($virt) {
local $srclref = &read_file_lines($_[1]);
local $dstlref = &read_file_lines($virt->{'file'});
&lock_file($virt->{'file'});
splice(@$dstlref, $virt->{'line'}+1, $virt->{'eline'}-$virt->{'line'}-1,
@$srclref[1 .. @$srclref-2]);
# Fix IP address in <Virtualhost> section (if needed)
if ($dstlref->[$virt->{'line'}] =~
/^(.*<Virtualhost\s+)([0-9\.]+)(.*)$/i) {
$dstlref->[$virt->{'line'}] = $1.$_[0]->{'ip'}.$3;
}
if ($_[3]->{'reuid'}) {
# Fix up any UID or GID in suexec lines
local $i;
foreach $i ($virt->{'line'} .. $virt->{'line'}+scalar(@$srclref)-1) {
if ($dstlref->[$i] =~ /^SuexecUserGroup\s/) {
$dstlref->[$i] = "SuexecUserGroup \"#$_[0]->{'uid'}\" \"#$_[0]->{'ugid'}\"";
}
elsif ($dstlref->[$i] =~ /^User\s/) {
$dstlref->[$i] = "User \"#$_[0]->{'uid'}\"";
}
elsif ($dstlref->[$i] =~ /^Group\s/) {
$dstlref->[$i] = "Group \"#$_[0]->{'ugid'}\"";
}
}
}
if (!$tmpl->{'web_suexec'}) {
# Remove suexec directives if not supported on this server
foreach $i ($virt->{'line'} ..
$virt->{'line'}+scalar(@$srclref)-1) {
if ($dstlref->[$i] =~ /^(SuexecUserGroup|User|Group)\s/) {
splice(@$dstlref, $i--, 1);
}
}
}
else {
# Fix SuexecUserGroup or User/Group directives to match
# Apache version
local ($uline, $gline, $suline);
foreach $i ($virt->{'line'} ..
$virt->{'line'}+scalar(@$srclref)-1) {
local $l = $dstlref->[$i];
$uline = $i if ($l =~ /^User\s/);
$gline = $i if ($l =~ /^Group\s/);
$suline = $i if ($l =~ /^SuexecUserGroup\s/);
}
local $pdom = $_[0]->{'parent'} ?
&get_domain($_[0]->{'parent'}) : $_[0];
if ($apache::httpd_modules{'core'} >= 2.0 && $uline) {
# Replace User and Group with SuexecUserGroup
splice(@$dstlref, $uline, 1,
"SuexecUserGroup \"#$pdom->{'uid'}\" \"#$pdom->{'ugid'}\"");
if ($gline) {
splice(@$dstlref, $gline, 1);
}
}
elsif ($apache::httpd_modules{'core'} < 2.0 && $suline) {
# Replace SuexecUserGroup with User and Group
splice(@$dstlref, $suline, 1,
"User \"#$pdom->{'uid'}\"",
"Group \"#$pdom->{'ugid'}\"");
}
}
if ($_[5]->{'home'} && $_[5]->{'home'} ne $_[0]->{'home'}) {
# Fix up any DocumentRoot or other file-related directives
local $i;
foreach $i ($virt->{'line'} .. $virt->{'line'}+scalar(@$srclref)-1) {
$dstlref->[$i] =~ s/\Q$_[5]->{'home'}\E/$_[0]->{'home'}/g;
}
}
&flush_file_lines();
&unlock_file($virt->{'file'});
undef(@apache::get_config_cache);
# Re-generate PHP wrappers to match this system
if (defined(&create_php_wrappers) && !$_[0]->{'alias'}) {
local $mode = &get_domain_php_mode($_[0]);
&create_php_wrappers($_[0], $mode);
}
&$second_print($text{'setup_done'});
®ister_post_action(\&restart_apache);
return 1;
}
else {
&$second_print($text{'delete_noapache'});
return 0;
}
}
%apache_mmap = ( 'jan' => 0, 'feb' => 1, 'mar' => 2, 'apr' => 3,
'may' => 4, 'jun' => 5, 'jul' => 6, 'aug' => 7,
'sep' => 8, 'oct' => 9, 'nov' => 10, 'dec' => 11 );
# bandwidth_web(&domain, start, &bw-hash)
# Searches through log files for records after some date, and updates the
# day counters in the given hash
sub bandwidth_web
{
require 'timelocal.pl';
local @logs = ( &get_apache_log($_[0]->{'dom'}, $_[0]->{'web_port'}),
&get_apache_log($_[0]->{'dom'}, $_[0]->{'web_sslport'}) );
return if ($_[0]->{'alias'} || $_[0]->{'subdom'}); # never accounted separately
local $l;
local $max_ltime = $_[1];
foreach $l (&unique(@logs)) {
local $f;
foreach $f (&all_log_files($l, $max_ltime)) {
local $_;
if ($f =~ /\.gz$/i) {
open(LOG, "gunzip -c ".quotemeta($f)." |");
}
elsif ($f =~ /\.Z$/i) {
open(LOG, "uncompress -c ".quotemeta($f)." |");
}
else {
open(LOG, $f);
}
while(<LOG>) {
if (/^(\S+)\s+(\S+)\s+(\S+)\s+\[(\d+)\/(\S+)\/(\d+):(\d+):(\d+):(\d+)\s+(\S+)\]\s+"([^"]*)"\s+(\S+)\s+(\S+)/) {
# Valid-looking log line .. work out the time
local $ltime = timelocal($9, $8, $7, $4, $apache_mmap{lc($5)}, $6-1900);
if ($ltime > $_[1]) {
local $day = int($ltime / (24*60*60));
$_[2]->{"web_".$day} += $13;
}
$max_ltime = $ltime if ($ltime > $max_ltime);
}
}
close(LOG);
}
}
return $max_ltime;
}
# all_log_files(file, last-date)
# Returns all compressed rotated versions of some file, excluding those
# that have not been modified since some time
sub all_log_files
{
$_[0] =~ /^(.*)\/([^\/]+)$/;
local $dir = $1;
local $base = $2;
local ($f, @rv, %mtime);
opendir(DIR, $dir);
foreach $f (readdir(DIR)) {
if ($f =~ /^\Q$base\E/ && -f "$dir/$f" && $f ne $base.".offset") {
local @st = stat("$dir/$f");
if ($f ne $base) {
next if ($_[1] && $st[9] <= $_[1]);
}
$mtime{"$dir/$f"} = $st[9];
push(@rv, "$dir/$f");
}
}
closedir(DIR);
return sort { $mtime{$a} cmp $mtime{$b} } @rv;
}
# create_framefwd_file(&domain)
# Create a framefwd.html file for a server, if needed
sub create_framefwd_file
{
if ($_[0]->{'proxy_pass_mode'} == 2) {
local $template = &get_template($_[0]->{'template'});
local $ff = &framefwd_file($_[0]);
&unlink_file($ff);
local $text = $template->{'frame'};
$text =~ s/\t/\n/g;
&open_tempfile(FRAME, ">$ff");
local %subs = %{$_[0]};
$subs{'proxy_title'} ||= $tmpl{'owner'};
$subs{'proxy_meta'} ||= "";
$subs{'proxy_meta'} = join("\n", split(/\t/, $subs{'proxy_meta'}));
&print_tempfile(FRAME, &substitute_domain_template($text, \%subs));
&close_tempfile(FRAME);
if ($_[0]->{'unix'}) {
&set_ownership_permissions($_[0]->{'uid'}, $_[0]->{'gid'} || $_[0]->{'ugid'}, undef, $ff);
}
# Create a blank HTML page too, used in the frameset
local $bl = &frameblank_file($_[0]);
&unlink_file($bl);
&open_tempfile(BLANK, ">$bl");
&print_tempfile(BLANK, "<body bgcolor=#ffffff></body>\n");
&close_tempfile(BLANK);
if ($_[0]->{'unix'}) {
&set_ownership_permissions($_[0]->{'uid'}, $_[0]->{'gid'} || $_[0]->{'ugid'}, undef, $bl);
}
}
}
# public_html_dir(&domain, [relative], [no-subdomain])
# Returns the HTML documents directory for a virtual server
sub public_html_dir
{
local ($d, $rel, $nosubdom) = @_;
if ($d->{'subdom'} && !$nosubdom) {
# Under public_html of parent domain
local $subdom = &get_domain($d->{'subdom'});
local $phtml = &public_html_dir($subdom, $rel);
if ($rel) {
return "../../$phtml/$d->{'subprefix'}";
}
else {
return "$phtml/$d->{'subprefix'}";
}
}
else {
# Under own home
local $tmpl = &get_template($d->{'template'});
local ($hdir) = ($tmpl->{'web_html_dir'} || 'public_html');
if ($hdir ne 'public_html') {
$hdir = &substitute_domain_template($hdir, $d);
}
return $rel ? $hdir : "$d->{'home'}/$hdir";
}
}
# cgi_bin_dir(&domain, [relative], [no-subdomain])
# Returns the CGI programs directory for a virtual server
sub cgi_bin_dir
{
local ($d, $rel, $nosubdom) = @_;
local $cdir = $d->{'cgi_bin_dir'} || "cgi-bin";
if ($d->{'subdom'} && !$nosubdom) {
# Under cgi-bin of parent domain
local $subdom = &get_domain($d->{'subdom'});
local $pcgi = &cgi_bin_dir($subdom, $rel);
return $rel ? "../../$pcgi/$d->{'subprefix'}"
: "$pcgi/$d->{'subprefix'}";
}
else {
# Under own home
return $rel ? $cdir : "$d->{'home'}/$cdir";
}
}
# framefwd_file(&domain)
sub framefwd_file
{
local $hdir = &public_html_dir($_[0]);
return "$hdir/framefwd.html";
}
# frameblank_file(&domain)
sub frameblank_file
{
local $hdir = &public_html_dir($_[0]);
return "$hdir/frameblank.html";
}
# check_depends_web(&dom)
# Ensure that a website has a home directory, if not proxying
sub check_depends_web
{
if ($_[0]->{'alias'}) {
# If this is an alias domain, then no home is needed
return undef;
}
elsif ($_[0]->{'proxy_pass_mode'} == 2) {
# If proxying using frame forwarding, a home is needed
return $_[0]->{'dir'} ? undef : $text{'setup_edepframe'};
}
elsif ($_[0]->{'proxy_pass_mode'} == 1) {
# If proxying using ProxyPass, no home is needed
return undef;
}
else {
# For a normal website, we need a home
return $_[0]->{'dir'} ? undef : $text{'setup_edepweb'};
}
}
# frame_fwd_input(forwardto)
sub frame_fwd_input
{
local $rv;
local $label;
if ($config{'proxy_pass'} == 1) {
$label = &hlink($text{'form_proxy'}, "proxypass");
}
else {
$label = &hlink($text{'form_framefwd'}, "framefwd");
}
return &ui_table_row($label,
&ui_opt_textbox("proxy", $_[0], 40,
$text{'form_plocal'}, $text{'form_purl'}), 3);
}
# setup_writelogs(&domain)
# Creates the writelogs wrapper
sub setup_writelogs
{
&foreign_require("cron", "cron-lib.pl");
&cron::create_wrapper($writelogs_cmd, $module_name, "writelogs.pl");
if (&has_command("chcon")) {
&execute_command("chcon -t httpd_sys_script_exec_t ".quotemeta($writelogs_cmd).
">/dev/null 2>&1");
&execute_command("chcon -t httpd_sys_script_exec_t ".
quotemeta("$module_root_directory/writelogs.pl").
">/dev/null 2>&1");
}
}
# enable_writelogs(&domain)
# Enables logging via a program for some server
sub enable_writelogs
{
&require_apache();
local $conf = &apache::get_config();
local @ports = ( $_[0]->{'web_port'},
$_[0]->{'ssl'} ? ( $_[0]->{'web_sslport'} ) : ( ) );
local ($p, $any);
foreach $p (@ports) {
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'}, $p);
local $ld;
foreach $ld ("CustomLog", "ErrorLog") {
local $custom = &apache::find_directive($ld, $vconf);
if ($custom !~ /$writelogs_cmd/ && $custom =~ /(\S+)(\s*\S*)/) {
# Fix logging directive
&$first_print($text{'save_fix'.lc($ld)});
$custom = "\"|$writelogs_cmd $_[0]->{'id'} $1\"$2";
&apache::save_directive($ld, [ $custom ],
$vconf, $conf);
&$second_print($text{'setup_done'});
$any++;
}
}
}
if ($any) {
&flush_file_lines();
®ister_post_action(\&restart_apache);
}
}
# disable_writelogs(&domain)
# Disables logging via a program for some server
sub disable_writelogs
{
&require_apache();
local $conf = &apache::get_config();
local @ports = ( $_[0]->{'web_port'},
$_[0]->{'ssl'} ? ( $_[0]->{'web_sslport'} ) : ( ) );
local ($p, $any);
foreach $p (@ports) {
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'}, $p);
local $ld;
foreach $ld ("CustomLog", "ErrorLog") {
local $custom = &apache::find_directive($ld, $vconf);
if ($custom =~ /^"\|$writelogs_cmd\s+(\S+)\s+(\S+)"(\s*\S*)/) {
# Un-fix logging directive
&$first_print($text{'save_unfix'.lc($ld)});
$custom = "$2$3";
&apache::save_directive($ld, [ $custom ],
$vconf, $conf);
&$second_print($text{'setup_done'});
$any++;
}
}
}
if ($any) {
&flush_file_lines();
®ister_post_action(\&restart_apache);
}
}
# get_writelogs_status(&domain)
# Returns 1 if some domain is doing logging via a program
sub get_writelogs_status
{
local ($virt, $vconf) = &get_apache_virtual($_[0]->{'dom'},
$_[0]->{'web_port'});
local $custom = &apache::find_directive("CustomLog", $vconf);
return $custom =~ /^"\|$writelogs_cmd\s+(\S+)\s+(\S+)"(\s*\S*)/ ? 1 : 0;
}
# get_website_file(&domain)
# Returns the file to add a new website to
sub get_website_file
{
&require_apache();
local $vfile = $apache::config{'virt_file'} ?
&apache::server_root($apache::config{'virt_file'}) :
undef;
local ($rv, $newfile);
if ($vfile) {
if (!-d $vfile) {
$rv = $vfile;
}
else {
local $tmpl = $apache::config{'virt_name'} || '${DOM}.conf';
$rv = "$vfile/".&substitute_domain_template($tmpl, $_[0]);
$newfile = 1;
}
}
else {
local $vconf = &apache::get_virtual_config();
$rv = $vconf->[0]->{'file'};
}
return wantarray ? ($rv, $newfile) : $rv;
}
# get_apache_user([&domain])
# Returns the Unix user that the Apache process runs as, such as www or httpd
sub get_apache_user
{
if ($_[0]) {
local $tmpl = &get_template($_[0]->{'template'});
return $tmpl->{'web_user'} if ($tmpl->{'web_user'} &&
defined(getpwnam($tmpl->{'web_user'})));
}
foreach $u ("httpd", "apache", "www", "www-data", "wwwrun", "nobody") {
return $u if (defined(getpwnam($u)));
}
return undef; # won't happen!
}
# sysinfo_web()
# Returns the Apache and mod_php versions
sub sysinfo_web
{
&require_apache();
local $ver = $apache::httpd_modules{'core'};
$ver =~ s/^(\d+)\.(\d)(\d+)$/$1.$2.$3/;
local @rv = ( [ $text{'sysinfo_apache'}, $ver ] );
if (defined(&list_available_php_versions)) {
local @avail = map { $_->[0] } &list_available_php_versions();
if (@avail) {
push(@rv, [ $text{'sysinfo_php'}, join(", ", @avail) ]);
}
}
return @rv;
}
# add_name_virtual(&domain, $conf, port)
# Adds a NameVirtualHost entry for some domain, if needed. Returns 1 there is
# an existing NameVirtualHost entry for * or *:80 .
# For Apache 2.2 and above, NameVirtualHost * will no longer match
# virtualhosts like *:80, so we need to add *:80 even if * is already there.
sub add_name_virtual
{
local ($d, $conf, $web_port) = @_;
&require_apache();
local $nvstar;
if ($d->{'name'}) {
local ($found, $found_no_port);
local @nv = &apache::find_directive("NameVirtualHost", $conf);
local $canstar = $apache::httpd_modules{'core'} < 2.2;
foreach my $nv (@nv) {
$found++ if ($nv =~ /^(\S+):(\S+)/ && $1 eq $d->{'ip'} ||
$nv eq '*' && $canstar ||
$nv =~ /^\*:(\d+)$/ && $1 == $web_port);
$found_no_port++ if ($nv eq $d->{'ip'});
$nvstar++ if ($nv eq '*' && $canstar ||
$nv =~ /^\*:(\d+)$/ && $1 == $web_port);
}
if (!$found) {
@nv = grep { $_ ne $d->{'ip'} } @nv if ($found_no_port);
&apache::save_directive("NameVirtualHost",
[ @nv, "$d->{'ip'}:$web_port" ],
$conf, $conf);
&flush_file_lines();
}
}
return $nvstar;
}
# add_listen(&domain, &conf, port)
# Adds a Listen directive for some domain's port, if needed
sub add_listen
{
local ($d, $conf, $web_port) = @_;
&require_apache();
local $defport = &apache::find_directive("Port", $conf) || 80;
local @listen = &apache::find_directive("Listen", $conf);
local $lfound;
foreach my $l (@listen) {
$lfound++ if (($l eq '*' && $web_port == $defport) ||
($l =~ /^\*:(\d+)$/ && $web_port == $1) ||
($l =~ /^0\.0\.0\.0:(\d+)$/ && $web_port == $1) ||
($l =~ /^\d+$/ && $web_port == $l) ||
($l =~ /^(\S+):(\d+)$/ &&
&to_ipaddress("$1") eq $d->{'ip'} &&
$2 == $web_port) ||
(&to_ipaddress($l) eq $d->{'ip'}));
}
if (!$lfound && @listen > 0) {
# Apache is listening on some IP addresses and ports, but not the
# needed one.
local $ip = $d->{'virt'} ? $d->{'ip'} : "*";
&apache::save_directive("Listen", [ @listen, "$ip:$web_port" ],
$conf, $conf);
&flush_file_lines();
}
}
# remove_listen(&domain, &conf, port)
# Remove any Listen directive that exactly matches the domain's IP and the
# given port, if and only if the domain has a private IP address
sub remove_listen
{
local ($d, $conf, $web_port) = @_;
if ($d->{'virt'} && !$d->{'name'}) {
local @listen = &apache::find_directive("Listen", $conf);
local @newlisten = grep { $_ ne "$d->{'ip'}:$web_port" } @listen;
if (scalar(@listen) != scalar(@newlisten)) {
&apache::save_directive("Listen", \@newlisten,
$conf, $conf);
&flush_file_lines();
}
}
}
sub links_web
{
local ($d) = @_;
local @rv;
if ($config{'avail_web'}) {
&require_apache();
local $conf = &apache::get_config();
local ($virt, $vconf) = &get_apache_virtual($d->{'dom'},
$d->{'web_port'});
if ($virt) {
# Link to configure virtual host
push(@rv, { 'mod' => 'apache',
'desc' => $text{'links_web'},
'page' => "virt_index.cgi?virt=".
&indexof($virt, @$conf),
'cat' => 'services',
});
}
if ($d->{'ssl'}) {
# Link to configure SSL virtual host
local ($virt, $vconf) = &get_apache_virtual($d->{'dom'},
$d->{'web_sslport'});
if ($virt) {
push(@rv, { 'mod' => 'apache',
'desc' => $text{'links_ssl'},
'page' => "virt_index.cgi?virt=".
&indexof($virt, @$conf),
'cat' => 'services',
});
}
}
}
if ($virtualmin_pro) {
# Link to website, proxied via Webmin
local $pt = $d->{'web_port'} == 80 ? "" : ":$d->{'web_port'}";
push(@rv, { 'mod' => $module_name,
'desc' => $text{'links_website'},
'page' => "link.cgi/$d->{'ip'}/http://www.$d->{'dom'}$pt/",
'cat' => 'services',
});
}
if ($config{'avail_syslog'} && &get_webmin_version() >= 1.305) {
# Links to logs
foreach my $log ([ 0, $text{'links_alog'} ],
[ 1, $text{'links_elog'} ]) {
local $lf = &get_apache_log($d->{'dom'},
$d->{'web_port'}, $log->[0]);
if ($lf) {
local $param = &master_admin() ? "file"
: "extra";
push(@rv, { 'mod' => 'syslog',
'desc' => $log->[1],
'page' => "save_log.cgi?view=1&".
"$param=".&urlize($lf),
'cat' => 'logs',
});
}
}
}
if ($config{'avail_phpini'}) {
# Links to edit PHP configs
if (defined(&get_domain_php_mode) &&
&get_domain_php_mode($d) ne "mod_cgi") {
foreach my $ini (&list_domain_php_inis($d)) {
push(@rv, { 'mod' => 'phpini',
'desc' => $ini->[0] ?
&text('links_phpini2', $ini->[0]) :
&text('links_phpini'),
'page' => 'list_ini.cgi?file='.
&urlize($ini->[1]),
'cat' => 'services',
});
}
}
}
return @rv;
}
# startstop_web([&typestatus])
# Returns a hash containing the current status of the web service and short
# and long descriptions for the action to switch statuses
sub startstop_web
{
local ($typestatus) = @_;
local $apid = defined($typestatus->{'apache'}) ?
$typestatus->{'apache'} == 1 : &get_apache_pid();
if ($apid) {
return ( { 'status' => 1,
'name' => $text{'index_aname'},
'desc' => $text{'index_astop'},
'restartdesc' => $text{'index_arestart'},
'longdesc' => $text{'index_astopdesc'} } );
}
else {
return ( { 'status' => 0,
'name' => $text{'index_aname'},
'desc' => $text{'index_astart'},
'longdesc' => $text{'index_astartdesc'} } );
}
}
# start_service_web()
# Attempts to start the web service, returning undef on success or any error
# message on failure.
sub start_service_web
{
&require_apache();
return &apache::start_apache();
}
# start_service_web()
# Attempts to stop the web service, returning undef on success or any error
# message on failure.
sub stop_service_web
{
&require_apache();
local $err = &apache::stop_apache();
sleep(1) if (!$err);
return $err;
}
# show_template_web(&tmpl)
# Outputs HTML for editing apache related template options
sub show_template_web
{
local ($tmpl) = @_;
# Work out fields to disable
local @webfields = ( "web", "suexec", "writelogs", "user_def", "user",
"html_dir", "html_dir_def", "html_perms", "stats_mode",
"stats_dir", "stats_hdir", "statspass", "statsnoedit",
"alias_mode", "web_port", "web_sslport",
"web_webmin_ssl", "web_usermin_ssl" );
if ($virtualmin_pro) {
push(@webfields, "web_php_suexec", "web_phpver", "web_phpchildren",
"web_php_noedit", "web_ruby_suexec" );
foreach my $phpver (@all_possible_php_versions) {
push(@webfields, "web_php_ini_".$phpver,
"web_php_ini_".$phpver."_def");
}
}
local $ndi = &none_def_input("web", $tmpl->{'web'}, $text{'tmpl_webbelow'}, 1,
0, undef, \@webfields);
print &ui_table_row(&hlink($text{'tmpl_web'}, "template_web"),
$ndi."<br>\n".
&ui_textarea("web", $tmpl->{'web'} eq "none" ? "" :
join("\n", split(/\t/, $tmpl->{'web'})),
10, 60));
# Input for adding suexec directives
print &ui_table_row(&hlink($text{'newweb_suexec'}, "template_suexec"),
&ui_radio("suexec", $tmpl->{'web_suexec'} ? 1 : 0,
[ [ 1, $text{'yes'} ], [ 0, $text{'no'} ] ]));
# Input for logging via program
print &ui_table_row(&hlink($text{'newweb_writelogs'}, "template_writelogs"),
&ui_radio("writelogs", $tmpl->{'web_writelogs'} ? 1 : 0,
[ [ 1, $text{'yes'} ], [ 0, $text{'no'} ] ]));
# Input for Apache user to add to domain's group
print &ui_table_row(&hlink($text{'newweb_user'}, "template_user_def"),
&ui_radio("user_def", $tmpl->{'web_user'} eq 'none' ? 2 :
$tmpl->{'web_user'} ? 0 : 1,
[ [ 2, $text{'no'}."<br>" ],
[ 1, $text{'newweb_userdef'}."<br>" ],
[ 0, $text{'newweb_useryes'}." ".
&ui_user_textbox("user", $tmpl->{'web_user'} eq 'none' ?
'' : $tmpl->{'web_user'}) ] ]));
# HTML sub-directory input
print &ui_table_row(&hlink($text{'newweb_htmldir'}, "template_html_dir_def"),
&ui_opt_textbox("html_dir", $tmpl->{'web_html_dir'}, 20,
"$text{'default'} (<tt>public_html</tt>)<br>",
$text{'newweb_htmldir0'})."<br>\n".
(" " x 3).$text{'newweb_htmldir0suf'});
local $hdir = $tmpl->{'web_html_dir'} || "public_html";
# HTML directory permissions
print &ui_table_row(&hlink($text{'newweb_htmlperms'}, "template_html_perms"),
&ui_textbox("html_perms", $tmpl->{'web_html_perms'}, 4));
# Webalizer stats sub-directory input
local $smode = $tmpl->{'web_stats_hdir'} ? 2 :
$tmpl->{'web_stats_dir'} ? 1 : 0;
print &ui_table_row(&hlink($text{'newweb_statsdir'}, "template_stats_dir"),
&ui_radio("stats_mode", $smode,
[ [ 0, "$text{'default'} (<tt>$hdir/stats</tt>)<br>" ],
[ 1, &text('newweb_statsdir0', "<tt>$hdir</tt>")."\n".
&ui_textbox("stats_dir",
$tmpl->{'web_stats_dir'}, 20)."<br>" ],
[ 2, &text('newweb_statsdir2', "<tt>$hdir</tt>")."\n".
&ui_textbox("stats_hdir",
$tmpl->{'web_stats_hdir'}, 20) ] ]));
# Password-protect webalizer dir
print &ui_table_row(&hlink($text{'newweb_statspass'}, "template_statspass"),
&ui_radio("statspass", $tmpl->{'web_stats_pass'} ? 1 : 0,
[ [ 1, $text{'yes'} ], [ 0, $text{'no'} ] ]));
# Allow editing of Webalizer report
print &ui_table_row(&hlink($text{'newweb_statsedit'}, "template_statsedit"),
&ui_radio("statsnoedit", $tmpl->{'web_stats_noedit'} ? 1 : 0,
[ [ 0, $text{'yes'} ], [ 1, $text{'no'} ] ]));
# Alias mode
print &ui_table_row(&hlink($text{'tmpl_alias'}, "template_alias_mode"),
&ui_radio("alias_mode", int($tmpl->{'web_alias'}),
[ [ 0, $text{'tmpl_alias0'}."<br>" ],
[ 0, $text{'tmpl_alias4'}."<br>" ],
[ 2, $text{'tmpl_alias2'}."<br>" ],
[ 1, $text{'tmpl_alias1'} ] ]));
# Port for normal webserver
print &ui_table_row(&hlink($text{'newweb_port'}, "template_web_port"),
&ui_textbox("web_port", $tmpl->{'web_port'}, 6));
# Port for SSL webserver
print &ui_table_row(&hlink($text{'newweb_sslport'}, "template_web_sslport"),
&ui_textbox("web_sslport", $tmpl->{'web_sslport'}, 6));
# Setup matching Webmin/Usermin SSL cert
print &ui_table_row(&hlink($text{'newweb_webmin'},
"template_web_webmin_ssl"),
&ui_radio("web_webmin_ssl",
$tmpl->{'web_webmin_ssl'} ? 1 : 0,
[ [ 1, $text{'yes'} ], [ 0, $text{'no'} ] ]));
print &ui_table_row(&hlink($text{'newweb_usermin'},
"template_web_usermin_ssl"),
&ui_radio("web_usermin_ssl",
$tmpl->{'web_usermin_ssl'} ? 1 : 0,
[ [ 1, $text{'yes'} ], [ 0, $text{'no'} ] ]));
if ($virtualmin_pro) {
print &ui_table_hr();
# Run PHP scripts as user
print &ui_table_row(
&hlink($text{'tmpl_phpmode'}, "template_phpmode"),
&ui_radio("web_php_suexec", int($tmpl->{'web_php_suexec'}),
[ [ 0, $text{'phpmode_mod_php'}."<br>" ],
[ 1, $text{'phpmode_cgi'}."<br>" ],
[ 2, $text{'phpmode_fcgid'}."<br>" ] ]));
# Default PHP version to setup
print &ui_table_row(
&hlink($text{'tmpl_phpver'}, "template_phpver"),
&ui_select("web_phpver", $tmpl->{'web_phpver'},
[ [ "", $text{'tmpl_phpverdef'} ],
map { [ $_->[0] ] } &list_available_php_versions() ]));
# Default number of PHP child processes
print &ui_table_row(
&hlink($text{'tmpl_phpchildren'}, "template_phpchildren"),
&ui_opt_textbox("web_phpchildren", $tmpl->{'web_phpchildren'},
5, $text{'default'}." ($default_php_fcgid_children)"));
# Source php.ini files
foreach my $phpver (@all_possible_php_versions) {
print &ui_table_row(
&hlink(&text('tmpl_php_iniv', $phpver), "template_php_ini"),
&ui_opt_textbox("web_php_ini_$phpver",
$tmpl->{'web_php_ini_'.$phpver},
40, $text{'default'}));
}
# Allow editing of PHP configs
print &ui_table_row(
&hlink($text{'tmpl_php_noedit'}, "template_php_noedit"),
&ui_radio("web_php_noedit", $tmpl->{'web_php_noedit'},
[ [ 0, $text{'yes'} ], [ 1, $text{'no'} ] ]));
# Run ruby scripts as user
print &ui_table_row(
&hlink($text{'tmpl_rubymode'}, "template_rubymode"),
&ui_radio("web_ruby_suexec", int($tmpl->{'web_ruby_suexec'}),
[ [ -1, $text{'phpmode_noruby'}."<br>" ],
[ 0, $text{'phpmode_mod_ruby'}."<br>" ],
[ 1, $text{'phpmode_cgi'}."<br>" ] ]));
}
print &ui_table_hr();
# Webalizer template
print &ui_table_row(&hlink($text{'tmpl_webalizer'},
"template_webalizer"),
&none_def_input("webalizer", $tmpl->{'webalizer'},
$text{'tmpl_webalizersel'}, 0, 0,
$text{'tmpl_webalizernone'}, [ "webalizer" ])."\n".
&ui_textbox("webalizer", $tmpl->{'webalizer'} eq "none" ?
"" : $tmpl->{'webalizer'}, 40));
print &ui_table_hr();
# PHP variables for scripts
if ($virtualmin_pro) {
$ptable = &ui_columns_start([ $text{'tmpl_phpname'},
$text{'tmpl_phpval'} ] );
local $i = 0;
local @pv = $tmpl->{'php_vars'} eq "none" ? ( ) :
split(/\t+/, $tmpl->{'php_vars'});
local @pfields;
foreach $pv (@pv, "", "") {
local ($n, $v) = split(/=/, $pv, 2);
$ptable .= &ui_columns_row([
&ui_textbox("phpname_$i", $n, 25),
&ui_textbox("phpval_$i", $v, 35) ]);
push(@pfields, "phpname_$i", "phpval_$i");
$i++;
}
$ptable .= &ui_columns_end();
print &ui_table_row(
&hlink($text{'tmpl_php_vars'}, "template_php_vars"),
&none_def_input("php_vars", $tmpl->{'php_vars'},
$text{'tmpl_disabled_websel'}, 0, 0, undef,
\@pfields)."<br>\n".
$ptable);
}
print &ui_table_hr();
# Disabled website HTML
print &ui_table_row(&hlink($text{'tmpl_disabled_web'},
'disabled_web'),
&none_def_input("disabled_web", $tmpl->{'disabled_web'},
$text{'tmpl_disabled_websel'}, 0, 0,
$text{'tmpl_disabled_webdef'}, [ "disabled_web" ])."<br>\n".
&ui_textarea("disabled_web",
$tmpl->{'disabled_web'} eq "none" ? undef :
join("\n", split(/\t/, $tmpl->{'disabled_web'})),
5, 50));
# Disabled website URL
$url = $tmpl->{'disabled_url'};
$url = "" if ($url eq "none");
print &ui_table_row(&hlink($text{'tmpl_disabled_url'},
'disabled_url'),
&none_def_input("disabled_url", $tmpl->{'disabled_url'},
&text('tmpl_disabled_urlsel',
&ui_textbox("disabled_url", $url, 30)), 0, 0,
$text{'tmpl_disabled_urlnone'}, [ "disabled_url" ]));
if ($config{'proxy_pass'} == 2) {
# Frame-forwarding HTML (if enabled)
print &ui_table_hr();
print &ui_table_row(&hlink($text{'tmpl_frame'}, "template_frame"),
&none_def_input("frame", $tmpl->{'frame'},
$text{'tmpl_framebelow'}, 1, 0, undef,
[ "frame" ])."<br>".
&ui_textarea("frame", $tmpl->{'frame'} eq "none" ? undef :
join("\n", split(/\t/, $tmpl->{'frame'})),
10, 60));
}
}
# parse_template_web(&tmpl)
# Updates apache related template options from %in
sub parse_template_web
{
local ($tmpl) = @_;
# Save web-related settings
$old_web_port = $web_port;
$old_web_sslport = $web_sslport;
$tmpl->{'web'} = &parse_none_def("web");
if ($in{"web_mode"} == 2) {
$err = &check_apache_directives($in{"web"});
&error($err) if ($err);
$tmpl->{'web_suexec'} = $in{'suexec'};
$tmpl->{'web_writelogs'} = $in{'writelogs'};
if ($in{'html_dir_def'}) {
delete($tmpl->{'web_html_dir'});
}
else {
$in{'html_dir'} =~ /^\S+$/ && $in{'html_dir'} !~ /^\// &&
$in{'html_dir'} !~ /\.\./ || &error($text{'newweb_ehtml'});
$tmpl->{'web_html_dir'} = $in{'html_dir'};
}
$in{'html_perms'} =~ /^[0-7]{3,4}$/ ||
&error($text{'newweb_ehtmlperms'});
$tmpl->{'web_html_perms'} = $in{'html_perms'};
delete($tmpl->{'web_stats_dir'});
delete($tmpl->{'web_stats_hdir'});
$smode = $in{'stats_mode'} == 1 ? "stats_dir" :
$in{'stats_mode'} == 2 ? "stats_hdir" : undef;
if ($smode) {
$in{$smode} =~ /^\S+$/ && $in{$smode} !~ /^\// &&
$in{$smode} !~ /\.\./ || &error($text{'newweb_estats'});
$tmpl->{"web_".$smode} = $in{$smode};
}
$tmpl->{'web_stats_pass'} = $in{'statspass'};
$tmpl->{'web_stats_noedit'} = $in{'statsnoedit'};
if ($in{'user_def'} == 1) {
delete($tmpl->{'web_user'});
}
elsif ($in{'user_def'} == 2) {
$tmpl->{'web_user'} = 'none';
}
else {
defined(getpwnam($in{'user'})) || &error($text{'newweb_euser'});
$tmpl->{'web_user'} = $in{'user'};
}
$tmpl->{'web_alias'} = $in{'alias_mode'};
$in{'web_port'} =~ /^\d+$/ && $in{'web_port'} > 0 &&
$in{'web_port'} < 65536 || &error($text{'newweb_eport'});
$tmpl->{'web_port'} = $in{'web_port'};
$in{'web_sslport'} =~ /^\d+$/ && $in{'web_sslport'} > 0 &&
$in{'web_sslport'} < 65536 ||
&error($text{'newweb_esslport'});
$in{'web_port'} != $in{'web_sslport'} ||
&error($text{'newweb_esslport2'});
$tmpl->{'web_sslport'} = $in{'web_sslport'};
if (&get_webmin_version() >= 1.201) {
$tmpl->{'web_webmin_ssl'} = $in{'web_webmin_ssl'};
$tmpl->{'web_usermin_ssl'} = $in{'web_usermin_ssl'};
}
if ($virtualmin_pro) {
&require_apache();
if ($in{'web_php_suexec'}) {
$in{'suexec'} ||
&error($text{'tmpl_ephpsuexec'});
&has_command("php") ||
&error($text{'tmpl_ephpcmd'});
}
if ($in{'web_php_suexec'} == 2 &&
!$apache::httpd_modules{'mod_fcgid'}) {
&error($text{'tmpl_ephpmode2'});
}
$tmpl->{'web_php_suexec'} = $in{'web_php_suexec'};
$tmpl->{'web_phpver'} = $in{'web_phpver'};
if ($in{'web_phpchildren_def'}) {
$tmpl->{'web_phpchildren'} = undef;
}
else {
if ($in{'web_phpchildren'} < 1 ||
$in{'web_phpchildren'} > $max_php_fcgid_children) {
&error(&text('phpmode_echildren',
$max_php_fcgid_children));
}
$tmpl->{'web_phpchildren'} = $in{'web_phpchildren'};
}
foreach my $phpver (@all_possible_php_versions) {
$in{'web_php_ini_'.$phpver.'_def'} ||
-r $in{'web_php_ini_'.$phpver} ||
&error($text{'tmpl_ephpini'});
$tmpl->{'web_php_ini_'.$phpver} =
$in{'web_php_ini_'.$phpver.'_def'} ? undef
: $in{'web_php_ini_'.$phpver};
}
$tmpl->{'web_php_noedit'} = $in{'web_php_noedit'};
if ($in{'web_ruby_suexec'} > 0) {
&has_command("ruby") ||
&error($text{'tmpl_erubycmd'});
}
$tmpl->{'web_ruby_suexec'} = $in{'web_ruby_suexec'};
}
}
$tmpl->{'webalizer'} = &parse_none_def("webalizer");
if ($in{"webalizer_mode"} == 2) {
-r $in{'webalizer'} || &error($text{'tmpl_ewebalizer'});
}
$tmpl->{'disabled_web'} = &parse_none_def("disabled_web");
if ($in{'disabled_url_mode'} == 2) {
$in{'disabled_url'} =~ /^(http|https):\/\/\S+/ ||
&error($text{'tmpl_edisabled_url'});
}
$tmpl->{'disabled_url'} = &parse_none_def("disabled_url");
# Save PHP variables
if ($virtualmin_pro) {
if ($in{"php_vars_mode"} == 0) {
$tmpl->{'php_vars'} = "none";
}
elsif ($in{"php_vars_mode"} == 1) {
delete($tmpl->{'php_vars'});
}
elsif ($in{"php_vars_mode"} == 2) {
for($i=0; defined($n = $in{"phpname_$i"}); $i++) {
next if (!$n);
$n =~ /^\S+$/ ||
&error(&text('tmpl_ephp_var', $n));
$v = $in{"phpval_$i"};
push(@phpvars, "$n=$v");
}
$tmpl->{'php_vars'} = join("\t", @phpvars);
}
}
if ($config{'proxy_pass'} == 2) {
# Save frame-forwarding settings
$tmpl->{'frame'} = &parse_none_def("frame");
}
}
# postsave_template_web(&template)
# Called after a template is saved
sub postsave_template_web
{
if ($tmpl->{'id'} == 0) {
# If the web or SSL ports were changed, all existing virtual hosts
# should be updated with the *old* setting to that we know what port
# they were created on
if ($old_web_port != $in{'web_port'} ||
$old_web_sslport != $in{'web_sslport'}) {
foreach $d (&list_domains()) {
&save_domain($d);
}
}
}
}
# show_template_phpwrappers(&template)
# Outputs HTML for setting custom PHP wrapper scripts
sub show_template_phpwrappers
{
local ($tmpl) = @_;
foreach my $w (@php_wrapper_templates) {
local $ndi = &none_def_input($w, $tmpl->{$w},
$text{'tmpl_wrapperbelow'}, 0, 0,
$text{'tmpl_wrappernone'}, [ $w ]);
print &ui_table_row(&hlink($text{'tmpl_'.$w}, "template_".$w),
$ndi."<br>".
&ui_textarea($w, $tmpl->{$w} eq "none" ? "" :
join("\n", split(/\t/, $tmpl->{$w})),
5, 60));
}
}
# parse_template_phpwrappers(&template)
# Update the template with inputs from show_template_phpwrappers
sub parse_template_phpwrappers
{
local ($tmpl) = @_;
foreach my $w (@php_wrapper_templates) {
if ($in{$w."_mode"} == 0) {
$tmpl->{$w} = 'none';
}
elsif ($in{$w."_mode"} == 0) {
delete($tmpl->{$w});
}
elsif ($in{$w."_mode"} == 2) {
$in{$w} =~ s/\r//g;
$in{$w} =~ /^\#\!/ || &error($text{'tmpl_e'.$w});
$tmpl->{$w} = $in{$w};
$tmpl->{$w} =~ s/\n/\t/g;
}
}
}
# get_domain_suexec(&domain)
# Returns 1 if some virtual host is setup to use suexec
sub get_domain_suexec
{
local ($d) = @_;
&require_apache();
local ($virt, $vconf) = &get_apache_virtual($d->{'dom'}, $d->{'web_port'});
if ($apache::httpd_modules{'core'} >= 2.0) {
# Look for SuexecUserGroup
local $su = &apache::find_directive("SuexecUserGroup", $vconf);
return $su ? 1 : 0;
}
else {
# Look for User and Group
local $u = &apache::find_directive("User", $vconf);
local $g = &apache::find_directive("Group", $vconf);
return $u && $g ? 1 : 0;
}
}
# save_domain_suexec(&domain, enabled)
# Enables or disables suexec for some virtual host
sub save_domain_suexec
{
local ($d, $mode) = @_;
&require_apache();
local ($virt, $vconf) = &get_apache_virtual($d->{'dom'}, $d->{'web_port'});
local $pdom = $d->{'parent'} ? &get_domain($d->{'parent'}) : $d;
local $conf = &apache::get_config();
if ($apache::httpd_modules{'core'} >= 2.0) {
# Add or remove SuexecUserGroup
&apache::save_directive("SuexecUserGroup",
$mode ? [ "\"#$pdom->{'uid'}\" \"#$pdom->{'gid'}\"" ] : [ ],
$vconf, $conf);
}
else {
# Add or remove User and Group directives
&apache::save_directive("User",
$mode ? [ "\"#$pdom->{'uid'}\"" ] : [ ], $vconf, $conf);
&apache::save_directive("Group",
$mode ? [ "\"#$pdom->{'gid'}\"" ] : [ ], $vconf, $conf);
}
&flush_file_lines();
®ister_post_action(\&restart_apache);
}
# add_script_language_directives(&domain, &tmpl, port)
# Adds directives needed to enable PHP, Ruby and other languages to the
# <virtualhost> for some new domain.
sub add_script_language_directives
{
local ($d, $tmpl, $port) = @_;
if (defined(&save_domain_php_mode)) {
&require_apache();
if ($tmpl->{'web_php_suexec'} == 1 ||
$tmpl->{'web_php_suexec'} == 2 &&
!$apache::httpd_modules{'mod_fcgid'}) {
# Create cgi wrappers for PHP 4 and 5
&save_domain_php_mode($d, "cgi", $port, 1);
}
elsif ($tmpl->{'web_php_suexec'} == 2) {
# Add directives for FastCGId
&save_domain_php_mode($d, "fcgid", $port, 1);
}
}
if (defined(&save_domain_ruby_mode)) {
if ($tmpl->{'web_ruby_suexec'} >= 0) {
# Setup for Ruby
&save_domain_ruby_mode($d,
$tmpl->{'web_ruby_suexec'} == 0 ? "mod_ruby" :
$tmpl->{'web_ruby_suexec'} == 1 ? "cgi" : "fcgid",
$port, 1);
}
}
}
# add_proxy_allow_directives(&domain)
# Adds a <Proxy *> section to allow ProxyPass to work, in case it is overridden
# at a higher level (as seen on Ubuntu).
sub add_proxy_allow_directives
{
local ($d) = @_;
&require_apache();
return 0 if ($apache::httpd_modules{'core'} < 2); # Not supported in 1.3
local @ports;
push(@ports, $d->{'web_port'}) if ($d->{'web'});
push(@ports, $d->{'web_sslport'}) if ($d->{'ssl'});
local $added = 0;
foreach my $port (@ports) {
local ($virt, $vconf) = &get_apache_virtual($d->{'dom'}, $port);
next if (!$virt);
local @proxy = grep { $_ eq "*" }
&apache::find_directive("Proxy", $vconf);
if (!@proxy) {
local $lref = &read_file_lines($virt->{'file'});
splice(@$lref, $virt->{'eline'}, 0,
"<Proxy *>",
"allow from all",
"</Proxy>");
&flush_file_lines($virt->{'file'});
undef(@apache::get_config_cache);
$added++;
}
}
return $added;
}
$done_feature_script{'web'} = 1;
1;
syntax highlighted by Code2HTML, v. 0.9.1