From 2a9611467ba556c7ccc9231cb5e320c52e0bb77e Mon Sep 17 00:00:00 2001
From: Thomas Willingham <founder@kakste.com>
Date: Fri, 14 Jun 2013 15:41:19 +0100
Subject: Lighttpd sample config

---
 doc/install/sample-lighttpd.conf | 82 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 82 insertions(+)
 create mode 100644 doc/install/sample-lighttpd.conf

(limited to 'doc/install/sample-lighttpd.conf')

diff --git a/doc/install/sample-lighttpd.conf b/doc/install/sample-lighttpd.conf
new file mode 100644
index 000000000..99971d9d1
--- /dev/null
+++ b/doc/install/sample-lighttpd.conf
@@ -0,0 +1,82 @@
+# See http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs:ConfigurationOptions
+
+### LOAD MODULES
+server.modules = ( "mod_access",
+"mod_accesslog",
+"mod_fastcgi",
+"mod_redirect",
+"mod_rewrite"
+)
+
+### BASIC STUFF
+server.port = 80
+
+server.username = "http"
+
+server.groupname = "http"
+
+server.document-root = "/path/to/your/www/files" #adjust to your setup
+
+server.errorlog = "/var/log/lighttpd/error.log"
+
+accesslog.filename = "/var/log/lighttpd/access.log"
+
+### DISABLE DIR LISTING
+dir-listing.activate = "disable"
+
+### DISABLE REJECT EXPECT HEADER
+### (needed for curl POST requests - otherwise they fail with error 417)
+server.reject-expect-100-with-417 = "disable"
+
+### DEFINE SUPPORTED INDEX FILENAMES
+index-file.names = ( "index.html",
+"index.htm",
+"index.php"
+)
+
+### DEFINE SUPPORTED MIME TYPES
+mimetype.assign = ( ".html" => "text/html",
+".htm" => "text/html",
+".css" => "text/css",
+".txt" => "text/plain",
+".svg" => "image/svg+xml",
+".jpg" => "image/jpeg",
+".png" => "image/png"
+)
+
+### DONT EVER SERVE FILES WITH EXTENSION
+static-file.exclude-extensions = ( ".php" )
+
+### PHP WITH PHP-FPM
+### (needs php-fpm installed and running)
+fastcgi.server = (
+".php" => (
+"localhost" => (
+"socket" => "/run/php-fpm/php-fpm.sock",
+"broken-scriptfilename" => "enable",
+"allow-x-sendfile" => "enable"
+)
+)
+)
+
+### ENABLE SSL
+$SERVER["socket"] == ":443" {
+ssl.engine = "enable"
+ssl.ca-file = "/etc/lighttpd/certs/ca-certs.crt"
+ssl.pemfile = "/etc/lighttpd/certs/red-ssl.crt"
+}
+
+### RISTRICT ACCESS TO DIRECTORYS AND FILES
+$HTTP["url"] =~ "\.(out|log|htaccess)$" {
+url.access-deny = ("")
+}
+
+$HTTP["url"] =~ "(^|/)\.git" {
+url.access-deny = ("")
+}
+
+### URL REWRITE RULES
+url.rewrite-if-not-file = (
+"^\/([^\?]*)\?(.*)$" => "/index.php?q=$1&$2",
+"^\/(.*)$" => "/index.php?q=$1"
+) 
-- 
cgit v1.2.3