Context Navigation

Changes between Version 22 and Version 23 of TracOnGentoo

Timestamp:: Mar 21, 2005, 10:28:13 AM (19 years ago)
Author:: lycos42@…
Comment:: layout

Legend:

: Unmodified
: Added
: Removed
: Modified

TracOnGentoo

-              v22
+              v23
 Next, there are per-project specific directives that define a project. This example has to be repeated for each project.
 {{{
+        ###
+        ### project1
+        ###
+        Alias /project1/dox /var/www/dev.domain.tld/htdocs/project1/dox
+        <Location /project1/svn>
+                <IfDefine SVN>
+                        DAV svn
+                        SVNPath /var/svn/project1
+                        SVNIndexXSLT /project1/trac/svnindex.xsl
+                </IfDefine>
+                <LimitExcept GET PROPFIND OPTIONS REPORT>
+                        AuthType Basic
+                        AuthName "project1::svn"
+                        <IfModule mod_auth_ldap.c>
+                                AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
+                                Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
+                        </IfModule>
+                </LimitExcept>
+        </Location>
+###
+### project1
+###
+Alias /project1/dox /var/www/dev.domain.tld/htdocs/project1/dox
+<Location /project1/svn>
+      <IfDefine SVN>
+              DAV svn
+              SVNPath /var/svn/project1
+              SVNIndexXSLT /project1/trac/svnindex.xsl
+      </IfDefine>
+      <LimitExcept GET PROPFIND OPTIONS REPORT>
+              AuthType Basic
+              AuthName "project1::svn"
+         <IfModule mod_auth_ldap.c>
+              AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
+              Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
+         </IfModule>
+      </LimitExcept>
+</Location>
+<Location /project1>
+         SetEnv TRAC_ENV "/var/lib/trac/project1"
+</Location>
+<Location /project1/login>
+         AuthType Basic
+         AuthName "project1::trac"
+       <IfModule mod_auth_ldap.c>
+            AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
+            Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
+       </IfModule>
+</Location>
+Alias /project1/trac /var/www/dev.domain.tld/htdocs/project1/trac
+ScriptAlias /project1 /var/www/dev.domain.tld/cgi-bin/trac.cgi
+}}}
+As you can see, I make a big use of Locations and Aliases. Now, some comments.
+.2.1. Trac stuff
+We need several directives to make Trac work. The first thing is to set the TRAC_ENV environment variable. This variable indicates to trac.cgi the location of the Trac environment corresponding to project1 in the filesystem. Actually, I'm storing every Trac environment under /var/lib/trac/, so the projectX Trac environment can be found under /var/lib/trac/projectX/.
+That's why we set the TRAC_ENV for the entire /project1 web space, with the following:
+{{{
         <Location /project1>
                 SetEnv TRAC_ENV "/var/lib/trac/project1"
         </Location>
+        <Location /project1/login>
+                AuthType Basic
+                AuthName "project1::trac"
+                <IfModule mod_auth_ldap.c>
+                        AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
+                        Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
+                </IfModule>
+        </Location>
+        Alias /project1/trac /var/www/dev.domain.tld/htdocs/project1/trac
+}}}
+Then we redirect every request for /project1/* to trac.cgi with the ScriptAlias directive:
+{{{
         ScriptAlias /project1 /var/www/dev.domain.tld/cgi-bin/trac.cgi
 }}}
-As you can see, I make a big use of Locations and Aliases. Now, some comments.
-.2.1. Trac stuff
-We need several directives to make Trac work. The first thing is to set the TRAC_ENV environment variable. This variable indicates to trac.cgi the location of the Trac environment corresponding to project1 in the filesystem. Actually, I'm storing every Trac environment under /var/lib/trac/, so the projectX Trac environment can be found under /var/lib/trac/projectX/.
-That's why we set the TRAC_ENV for the entire /project1 web space, with the following:
-{{{
-        <Location /project1>
-                SetEnv TRAC_ENV "/var/lib/trac/project1"
-        </Location>
-}}}
-Then we redirect every request for /project1/* to trac.cgi with the ScriptAlias directive:
-{{{
-        ScriptAlias /project1 /var/www/dev.domain.tld/cgi-bin/trac.cgi
-}}}
 This needs to be placed at the very end of the project configuration, because it is a default redirection for every request made to /project1/*. Special configuration for some URIs will be placed before this directive to be taken in account.
 A needed escaping URI is /project1/login, used by Trac to authenticate users. I've set a Location for it, and placed the authentication stuff inside:
 {{{
         <Location /project1/login>
                 AuthType Basic
                 AuthName "project1::trac"
                 <IfModule mod_auth_ldap.c>
                         AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
                         Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
                 </IfModule>
         </Location>
+<Location /project1/login>
+       AuthType Basic
+       AuthName "project1::trac"
+       <IfModule mod_auth_ldap.c>
+          AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
+          Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
+       </IfModule>
+</Location>
 }}}
 AuthType, AuthName and Require directives are needed, then you may use the user referential you want (here I'm using a LDAP server). I'm telling Apache that a user may authenticate if he belongs to the project1 group. This way, you can create groups for each project you have, and make users belong to the groups corresponding to the projects they work on.
 …
 Last but not least, I wanted to make the Subversion repository accessible via /project1/svn, with anonymous checkouts and authenticated commits. We need a Location to place the mod_dav_svn stuff and the authentication directives.
 {{{
         <Location /project1/svn>
                 <IfDefine SVN>
                         DAV svn
                         SVNPath /var/svn/project1
                         SVNIndexXSLT /project1/trac/svnindex.xsl
                 </IfDefine>
                 <LimitExcept GET PROPFIND OPTIONS REPORT>
                         AuthType Basic
                         AuthName "project1::svn"
                         <IfModule mod_auth_ldap.c>
                                 AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
                                 Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
                         </IfModule>
                 </LimitExcept>
         </Location>
+<Location /project1/svn>
+       <IfDefine SVN>
+           DAV svn
+           SVNPath /var/svn/project1
+           SVNIndexXSLT /project1/trac/svnindex.xsl
+       </IfDefine>
+       <LimitExcept GET PROPFIND OPTIONS REPORT>
+            AuthType Basic
+            AuthName "project1::svn"
+        <IfModule mod_auth_ldap.c>
+            AuthLDAPURL ldap://ldap.domain.tld:389/ou=users,dc=domain,dc=tld?uid?one
+            Require group cn=project1,ou=dev,ou=groups,dc=domain,dc=tld
+        </IfModule>
+       </LimitExcept>
+</Location>
 }}}
 As you can see, I'm storing my Subversion repositories under /var/svn/, so I set the name of the project1 repository to /var/svn/project1. Obviously, it is the filepath I will use when I create the project1 Trac environment.