Index: /server/fedora/config/etc/httpd/vhosts.d/reify-vhost.py =================================================================== --- /server/fedora/config/etc/httpd/vhosts.d/reify-vhost.py (revision 854) +++ /server/fedora/config/etc/httpd/vhosts.d/reify-vhost.py (revision 854) @@ -0,0 +1,65 @@ +#!/usr/bin/python +# +# Converts an apacheConfig record from LDAP, as used by mod_vhost_ldap, +# into a record as used in an Apache conf.d directory. +# Useful for adding things like SSL server certs that mod_vhost_ldap +# doesn't support. +# +# Usage: +# scripts# cd /etc/httpd/vhosts.d +# scripts# ./reify-vhost.py geofft > geofft.conf +# scripts# service httpd graceful +# +# Geoffrey Thomas , 2008, public domain. + +import ldap +import ldap.filter +import pwd +import sys + +ll = ldap.initialize("ldapi://%2fvar%2frun%2fdirsrv%2fslapd-scripts.socket/") +ll.simple_bind_s("", "") + +host = sys.argv[1] + +r = ll.search_s( + "ou=VirtualHosts,dc=scripts,dc=mit,dc=edu", + ldap.SCOPE_SUBTREE, + ldap.filter.filter_format( + "(&(objectClass=apacheConfig)" + + "(|(apacheServerName=%s)" + + "(apacheServerAlias=%s)))", + [host, host])) +if len(r) != 0: + user = pwd.getpwuid(int(r[0][1]['apacheSuexecUid'][0])) + print """# do not trailing-slash DocumentRoot + + + ServerName %(servername)s + ServerAlias %(serveralias)s + DocumentRoot %(docroot)s + Alias /~%(uname)s %(homedir)s/web_scripts + SuExecUserGroup %(uname)s %(uname)s + Include conf.d/vhosts-common.conf + + + + + ServerName %(servername)s + ServerAlias %(serveralias)s + DocumentRoot %(docroot)s + Alias /~%(uname)s %(homedir)s/web_scripts + SuExecUserGroup %(uname)s %(uname)s + Include conf.d/vhosts-common-ssl.conf + SSLCertificateFile /etc/pki/tls/certs/%(hname)s.pem + +""" % { + 'servername': r[0][1]['apacheServerName'][0], + 'serveralias': r[0][1]['apacheServerAlias'][0], + 'docroot': r[0][1]['apacheDocumentRoot'][0], + 'uname': user[0], + 'homedir': user[5], + 'hname': host +} + +# vim: set ts=4 sw=4 et: