tools/build_rules/apache_template.conf

PidFile                 logs/httpd.pid

ServerTokens            Prod
UseCanonicalName        On
TraceEnable             Off

Listen                  127.0.0.1:{{ https_port }}

LoadModule              mpm_event_module        modules/mod_mpm_event.so
LoadModule              authn_core_module       modules/mod_authn_core.so
LoadModule              authz_core_module       modules/mod_authz_core.so
LoadModule              authz_user_module       modules/mod_authz_user.so
LoadModule              auth_basic_module       modules/mod_auth_basic.so
LoadModule              authnz_ldap_module      modules/mod_authnz_ldap.so
LoadModule              ldap_module             modules/mod_ldap.so
LoadModule              proxy_module            modules/mod_proxy.so
LoadModule              proxy_http_module       modules/mod_proxy_http.so
LoadModule              ssl_module              modules/mod_ssl.so

{% raw %}
ErrorLogFormat          "[%{cu}t] [%-m:%-l] %-a %-L %M"
LogFormat               "%h %l %u [%{%Y-%m-%d %H:%M:%S}t.%{usec_frac}t] \"%r\" %>s %b \
\"%{Referer}i\" \"%{User-Agent}i\"" combined
{% endraw %}

LogLevel                debug
ErrorLog                logs/error.log
CustomLog               logs/access.log combined

LDAPCacheEntries 1024
LDAPCacheTTL 600
LDAPTrustedGlobalCert CA_BASE64 "apache-selfsigned.crt"
LDAPTrustedMode STARTTLS
LDAPLibraryDebug 7
LDAPVerifyServerCert OFF

<VirtualHost *:{{ https_port }}>
    ServerName              localhost
    ServerAdmin             root@localhost

    SSLEngine on
    SSLProxyEngine On
    SSLCertificateFile apache-selfsigned.crt
    SSLCertificateKeyFile apache-selfsigned.key

    ProxyPass "/" http://localhost:{{ wrapped_port }}/

    <Location />
        AuthName "Enter your Robotics 971 credentials"
        AuthType Basic
        AuthBasicProvider ldap
        AuthLDAPBindDN "{{ ldap_bind_dn }}"
        AuthLDAPBindPassword {{ ldap_password }}
        AuthLDAPURL "{{ ldap_url }}"
        Require valid-user
    </Location>
</VirtualHost>