2009-09-30 10:53:47 +02:00
|
|
|
# Apache and PHP configuration for EGroupware
|
|
|
|
|
#
|
|
|
|
|
# Many settings are required to have a # certain value for eGroupWare
|
|
|
|
|
# to function reasonably, so only change something if you are sure.
|
|
|
|
|
|
|
|
|
|
# this makes EGroupware available for all vhosts
|
|
|
|
|
Alias /egroupware /usr/share/egroupware
|
|
|
|
|
|
2011-06-14 14:23:10 +02:00
|
|
|
# Enable ActiveSync protocol support via eSync app
|
|
|
|
|
Alias /Microsoft-Server-ActiveSync /usr/share/egroupware/activesync/index.php
|
|
|
|
|
|
2011-10-11 11:29:43 +02:00
|
|
|
RedirectMatch ^/.well-known/(caldav|carddav)$ /egroupware/groupdav.php/
|
2011-08-02 18:37:22 +02:00
|
|
|
# iOS 4.3+ calendar requires that to autodetect accounts
|
|
|
|
|
RedirectMatch ^(/principals/users/.*)$ /egroupware/groupdav.php$1
|
|
|
|
|
|
2009-09-30 10:53:47 +02:00
|
|
|
<Directory /usr/share/egroupware/>
|
|
|
|
|
Options FollowSymLinks ExecCGI
|
2014-10-07 14:55:47 +02:00
|
|
|
AllowOverride None
|
2015-11-09 11:44:55 +01:00
|
|
|
<IfModule !mod_authz_core.c>
|
2017-11-05 09:29:58 +01:00
|
|
|
# Apache 2.2
|
2015-11-09 11:44:55 +01:00
|
|
|
Order allow,deny
|
|
|
|
|
Allow from all
|
|
|
|
|
</IfModule>
|
2014-10-06 17:09:04 +02:00
|
|
|
<IfModule mod_authz_core.c>
|
|
|
|
|
# Apache 2.4
|
|
|
|
|
Require all granted
|
|
|
|
|
</IfModule>
|
2009-09-30 10:53:47 +02:00
|
|
|
DirectoryIndex index.html index.php
|
|
|
|
|
AddHandler cgi-script .cgi
|
|
|
|
|
AddDefaultCharset Off
|
|
|
|
|
php_flag file_uploads on
|
|
|
|
|
php_flag log_errors on
|
|
|
|
|
php_flag magic_quotes_gpc off
|
|
|
|
|
php_flag magic_quotes_runtime off
|
|
|
|
|
php_flag register_globals off
|
|
|
|
|
php_flag short_open_tag on
|
|
|
|
|
php_flag track_vars on
|
|
|
|
|
php_flag display_errors off
|
2010-03-30 15:24:45 +02:00
|
|
|
# E_ALL & ~E_NOTICE & ~E_STRICT = 8191 - 8 - 2048 = 6135
|
|
|
|
|
php_value error_reporting 6135
|
2009-09-30 10:53:47 +02:00
|
|
|
php_value max_execution_time 90
|
2014-02-22 18:12:24 +01:00
|
|
|
php_admin_value mbstring.func_overload 0
|
2011-10-11 11:29:43 +02:00
|
|
|
php_value memory_limit 128M
|
2015-01-21 13:46:41 +01:00
|
|
|
php_value include_path .
|
2018-01-30 13:58:00 +01:00
|
|
|
# need to include directories of OpenSSL trusted CAs depending on distribution
|
|
|
|
|
php_admin_value open_basedir /usr/share/egroupware:/var/lib/egroupware:/tmp:/etc/pki/tls/certs:/etc/pki/ca-trust
|
2009-09-30 10:53:47 +02:00
|
|
|
php_value upload_max_filesize 64M
|
2010-04-05 08:52:11 +02:00
|
|
|
php_admin_value upload_tmp_dir /tmp
|
2009-09-30 10:53:47 +02:00
|
|
|
php_value post_max_size 65M
|
2012-07-23 10:26:22 +02:00
|
|
|
php_value max_input_vars 3000
|
2017-02-02 17:09:22 +01:00
|
|
|
php_admin_value session.gc_maxlifetime 14400
|
2009-09-30 10:53:47 +02:00
|
|
|
<Files ~ "\.inc\.php$">
|
2015-11-09 11:44:55 +01:00
|
|
|
<IfModule !mod_authz_core.c>
|
2017-11-05 09:29:58 +01:00
|
|
|
# Apache 2.2
|
2015-11-09 11:44:55 +01:00
|
|
|
Order allow,deny
|
|
|
|
|
Deny from all
|
|
|
|
|
</IfModule>
|
2014-10-06 17:09:04 +02:00
|
|
|
<IfModule mod_authz_core.c>
|
|
|
|
|
# Apache 2.4
|
|
|
|
|
Require all denied
|
|
|
|
|
</IfModule>
|
2009-09-30 10:53:47 +02:00
|
|
|
</Files>
|
2011-10-30 22:11:32 +01:00
|
|
|
# Enable the following block in order to redirect logins to HTTPS:
|
|
|
|
|
#RewriteEngine On
|
|
|
|
|
#RewriteCond %{HTTPS} !^on$
|
|
|
|
|
#RewriteCond %{SCRIPT_FILENAME} login\.php [OR]
|
|
|
|
|
#RewriteCond %{AUTH_TYPE} Basic [NC]
|
|
|
|
|
#RewriteRule .* https://%{HTTP_HOST}/%{REQUEST_URI} [L,R]
|
2009-09-30 10:53:47 +02:00
|
|
|
</Directory>
|
|
|
|
|
|
2011-10-30 22:11:32 +01:00
|
|
|
# Enable the following block in order to redirect setup activities to HTTPS:
|
|
|
|
|
#<Directory /usr/share/egroupware/setup/>
|
|
|
|
|
# RewriteEngine On
|
|
|
|
|
# RewriteCond %{HTTPS} !^on$
|
|
|
|
|
# RewriteRule .* https://%{HTTP_HOST}/%{REQUEST_URI} [L,R]
|
|
|
|
|
#</Directory>
|
