Jedi Apache Configuration
This is an overlay directory for /etc/apache2
which provides server
configuration for Jedi (minus secret cert/password files). Ideally, this
overlay should only track changes to non-system files, since the OS may
revert system files (like httpd.conf
) during updates.
The main configuration is in other/jedi.conf
, which is auto-included
by the system’s default Apache config. The Makefile has useful targets,
documented by:
make help
Deployment
For easy inspection of change history, checkout as a git-svn clone (see Notes):
git svn clone https://svn.bcybernetics.com/grad/grad.houptlab.org/jedi-apache2 /etc/apache2
Install the Biology IT supplied certificate files:
server-ca.crt
bio.fsu.edu.crt
bio.fsu.edu.key
Start/Restart Apache, using either apachectl
commands or Makefile:
make restart
Managing Users
Add user and password:
sudo htpasswd /Library/WebServer/jedi_passwords newuser
Delete user:
sudo htpasswd -D /Library/WebServer/jedi_passwords olduser
Testing & Inspection
After making a change, run the basic smoke tests to ensure all security rules are being followed:
make test
To inspect past changes, use variations of git log
. For example, to see
old BioIT changes use:
git log -p --diff-filter=d *.conf extra users
Notes
Due to Xcode/SVN/Homebrew/Perl issues, git-svn
must be currently run like this:
PERL5LIB=/usr/local/opt/subversion/lib/perl5/site_perl/5.30.3/darwin-thread-multi-2level/:$PERL5LIB /usr/local/bin/perl /usr/local/Cellar/git/2.27.0/libexec/git-core/git-svn clone -A/Users/houpt/git-svn-author-file --username=chuck https://svn.bcybernetics.com/grad/grad.houptlab.org/jedi-apache2