#!/usr/bin/env perl # BEGIN BPS TAGGED BLOCK {{{ # # COPYRIGHT: # # This software is Copyright (c) 1996-2018 Best Practical Solutions, LLC # # # (Except where explicitly superseded by other copyright notices) # # # LICENSE: # # This work is made available to you under the terms of Version 2 of # the GNU General Public License. A copy of that license should have # been provided with this software, but in any event can be snarfed # from www.gnu.org. # # This work is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA # 02110-1301 or visit their web page on the internet at # http://www.gnu.org/licenses/old-licenses/gpl-2.0.html. # # # CONTRIBUTION SUBMISSION POLICY: # # (The following paragraph is not intended to limit the rights granted # to you to modify and distribute this software under the terms of # the GNU General Public License and is only of importance to you if # you choose to contribute your changes and enhancements to the # community by submitting them to Best Practical Solutions, LLC.) # # By intentionally submitting any modifications, corrections or # derivatives to this work, or any other work intended for use with # Request Tracker, to Best Practical Solutions, LLC, you confirm that # you are the copyright holder for those contributions and you grant # Best Practical Solutions, LLC a nonexclusive, worldwide, irrevocable, # royalty-free, perpetual, license to use, copy, create derivative # works based on those contributions, and sublicense and distribute # those contributions and any derivatives thereof. # # END BPS TAGGED BLOCK }}} use strict; use warnings; use Getopt::Long; use FindBin; use Pod::Usage; use File::Spec::Functions qw(rel2abs); my %opt = ( root => ($ENV{RTHOME} || "/opt/rt4"), fcgid => 0, fastcgi => 0, perl => 0, modules => "/usr/lib/apache2/modules", ); GetOptions( \%opt, "root=s", "rt3|3!", "fcgid!", "fastcgi!", "perl!", "port|p=i", "ssl:i", "single|X", "auth|A:s", "modules=s", "help|h|?", ) or pod2usage( 1 ); pod2usage( {verbose => 2} ) if $opt{help}; # All paths must be absolute $opt{$_} = rel2abs($opt{$_}) for qw(root modules); # Determine what module to use my $mod; if ($opt{fcgid} + $opt{fastcgi} + $opt{perl} > 1) { die "Can only supply one of fcgid, fastcgi, or perl\n"; } elsif ($opt{fcgid} + $opt{fastcgi} + $opt{perl} == 0) { my @guess = qw(fastcgi fcgid perl); @guess = grep {-f "$opt{modules}/mod_$_.so"} @guess; die "Neither mod_fcgid, mod_fastcgi, nor mod_perl are installed; aborting\n" unless @guess; warn "No deployment given -- assuming mod_$guess[0] deployment\n"; $mod = $guess[0]; } else { $mod = (grep {$opt{$_}} qw(fastcgi fcgid perl))[0]; } # Sanity check that the root contains an RT install die "$opt{root} doesn't look like an RT install\n" unless -e "$opt{root}/lib/RT.pm"; # Detect if we are actually rt3 if (not -e "$opt{root}/sbin/rt-server.fcgi" and -e "$opt{root}/bin/mason_handler.fcgi") { $opt{rt3}++; warn "RT3 install detected!\n"; } # Parse etc/RT_SiteConfig.pm for the default port my $RTCONF; $opt{port} ||= parseconf( "WebPort" ); unless ($opt{port}) { warn "Defaulting to port 8888\n"; $opt{port} = 8888; } # Set ssl port if they want it but didn't provide a number $opt{ssl} = 4430 if defined $opt{ssl} and not $opt{ssl}; # Default auth to on if they set $WebRemoteUserAuth $opt{auth} = '' if not exists $opt{auth} and parseconf( "WebRemoteUserAuth" ); # Set an auth path if they want it but didn't pass a path if (defined $opt{auth} and not $opt{auth}) { $opt{auth} = "$opt{root}/var/htpasswd"; unless (-f $opt{auth}) { open(my $fh, ">", $opt{auth}) or die "Can't create default htpasswd: $!"; print $fh 'root:$apr1$TZA4Y0DL$DS5ZhDH8QrhB.uAtvNJmh.' . "\n"; close $fh or die "Can't create default htpasswd: $!"; } } elsif ($opt{auth} and not -f $opt{auth}) { die "Can't read htpasswd file $opt{auth}!"; } # Parse out the WebPath my $path = parseconf( "WebPath" ) || ""; my $template = join("", ); $template =~ s/\$PORT/$opt{port}/g; $template =~ s!\$PATH/!$path/!g; $template =~ s!\$PATH!$path || "/"!ge; $template =~ s/\$SSL/$opt{ssl} || 0/ge; $template =~ s/\$AUTH/$opt{auth}/ge; $template =~ s/\$RTHOME/$opt{root}/g; $template =~ s/\$MODULES/$opt{modules}/g; $template =~ s/\$TOOLS/$FindBin::Bin/g; $template =~ s/\$PROCESSES/$opt{single} ? 1 : 3/ge; my $conf = "$opt{root}/var/apache.conf"; open(CONF, ">", $conf) or die "Can't write $conf: $!"; print CONF $template; close CONF; my @opts = ("-f", $conf, "-D" . uc($mod) ); push @opts, "-DSSL" if $opt{ssl}; push @opts, "-DRT3" if $opt{rt3}; push @opts, "-DSINGLE" if $opt{single}; # Wait for a previous run to terminate if ( open( PIDFILE, "<", "$opt{root}/var/apache2.pid") ) { my $pid = ; chomp $pid; close PIDFILE; if ($pid and kill 0, $pid) { warn "Waiting for previous run (pid $pid) to finish...\n"; sleep 1 while kill 0, $pid; } } # Clean out the log in preparation my $log = "$opt{root}/var/log/apache-error.log"; unlink($log); # Start 'er up warn "Starting apache server on http://localhost:$opt{port}$path/" . ($opt{ssl} ? " and https://localhost:$opt{ssl}$path/" : "") . "\n"; !system("apache2", @opts, "-k", "start") or die "Can't exec apache2: $@"; # Ignore the return value, as we expect it to be ^C'd system("tail", "-f", $log); warn "Shutting down apache...\n"; !system("apache2", @opts, "-k", "stop") or die "Can't exec apache2: $@"; sub parseconf { my ($optname) = @_; # We're going to be evil, and try to parse the config unless (defined $RTCONF) { unless ( open(CONF, "<", "$opt{root}/etc/RT_SiteConfig.pm") ) { warn "Can't open $opt{root}/etc/RT_SiteConfig.pm: $!\n"; $RTCONF = ""; return; } $RTCONF = join("", ); close CONF; } return unless $RTCONF =~ /^\s*Set\(\s*\$$optname\s*(?:,|=>)\s*['"]?(.*?)['"]?\s*\)/m; return $1; } =head1 NAME rt-apache - Wrapper to start Apache running RT =head1 DESCRIPTION This script exists to make it easier to run RT under Apache for testing. It is not intended as a way to deploy RT, or to provide example Apache configuration for RT. For instructions on how to deploy RT with Apache, please read the provided F file. Running this script will start F with a custom-built configuration file, built based on command-line options and the contents of your F. It will work with either RT 3.8.x or RT 4.0.x. As it is primarily for simple testing, it runs Apache as the current user. =head1 OPTIONS C will parse your F for its C and C configuration, and adjust its defaults accordingly. =over =item --root B The path to the RT install to serve. This defaults to the C environment variable, or C. =item --fastcgi, --fcgid, --perl Determines the Apache module which is used. By default, the first one of that list which exists will be used. See also L. =item --port B, -p Choses the port to listen on. By default, this is parsed from the F, and falling back to 8888. =item --ssl [B] Also listens on the provided port with HTTPS, using a self-signed certificate for C. If the port number is not specified, defaults to port 4430. =item --auth [F], -A Turns on HTTP Basic Authentication; this is done automatically if C<$WebRemoteUserAuth> is set in the F. The provided path should be to a F file; if not given, defaults to a file containing only user C with password C. =item --single, -X Run only one process or thread, for ease of debugging. =item --rt3, -3 Declares that the RT install in question is RT 3.8.x. C can usually detect this for you, however. =item --modules B The path to the Apache2 modules directory, which is expected to contain at least one of F, F, or F. Defaults to F. =back =cut __DATA__ Listen $PORT Listen $SSL ServerName localhost ServerRoot $RTHOME/var PidFile $RTHOME/var/apache2.pid LockFile $RTHOME/var/apache2.lock ServerAdmin root@localhost = 2.4> LoadModule mpm_prefork_module $MODULES/mod_mpm_prefork.so LoadModule authz_core_module $MODULES/mod_authz_core.so LoadModule authz_host_module $MODULES/mod_authz_host.so LoadModule env_module $MODULES/mod_env.so LoadModule alias_module $MODULES/mod_alias.so LoadModule mime_module $MODULES/mod_mime.so TypesConfig $TOOLS/mime.types StartServers 1 MinSpareServers 1 MaxSpareServers 1 MaxClients 1 MaxRequestsPerChild 0 StartServers 1 MinSpareThreads 1 MaxSpareThreads 1 ThreadLimit 1 ThreadsPerChild 1 MaxClients 1 MaxRequestsPerChild 0 LoadModule perl_module $MODULES/mod_perl.so LoadModule fastcgi_module $MODULES/mod_fastcgi.so LoadModule fcgid_module $MODULES/mod_fcgid.so LoadModule ssl_module $MODULES/mod_ssl.so = 2.4> LoadModule socache_shmcb_module $MODULES/mod_socache_shmcb.so LoadModule log_config_module $MODULES/mod_log_config.so ErrorLog "$RTHOME/var/log/apache-error.log" TransferLog "$RTHOME/var/log/apache-access.log" LogLevel notice Options FollowSymLinks AllowOverride None Order deny,allow Deny from all AddDefaultCharset UTF-8 DocumentRoot $RTHOME/share/html Order allow,deny Allow from all Alias $PATH/NoAuth/images/ $RTHOME/share/html/NoAuth/images/ Order allow,deny Allow from all ########## 4.0 mod_perl PerlSetEnv RT_SITE_CONFIG $RTHOME/etc/RT_SiteConfig.pm SetHandler modperl PerlResponseHandler Plack::Handler::Apache2 PerlSetVar psgi_app $RTHOME/sbin/rt-server use Plack::Handler::Apache2; Plack::Handler::Apache2->preload("$RTHOME/sbin/rt-server"); ########## 4.0 mod_fastcgi FastCgiIpcDir $RTHOME/var FastCgiServer $RTHOME/sbin/rt-server.fcgi -processes $PROCESSES -idle-timeout 300 ScriptAlias $PATH $RTHOME/sbin/rt-server.fcgi/ Options +ExecCGI AddHandler fastcgi-script fcgi ########## 4.0 mod_fcgid FcgidProcessTableFile $RTHOME/var/fcgid_shm FcgidIPCDir $RTHOME/var FcgidMaxRequestLen 1073741824 ScriptAlias $PATH $RTHOME/sbin/rt-server.fcgi/ Options +ExecCGI AddHandler fcgid-script fcgi ########## 3.8 mod_perl PerlSetEnv RT_SITE_CONFIG $RTHOME/etc/RT_SiteConfig.pm PerlRequire "$RTHOME/bin/webmux.pl" SetHandler default SetHandler perl-script PerlResponseHandler RT::Mason ########## 3.8 mod_fastcgi FastCgiIpcDir $RTHOME/var FastCgiServer $RTHOME/bin/mason_handler.fcgi -processes $PROCESSES -idle-timeout 300 ScriptAlias $PATH $RTHOME/bin/mason_handler.fcgi/ Options +ExecCGI AddHandler fastcgi-script fcgi ########## 3.8 mod_fcgid FcgidProcessTableFile $RTHOME/var/fcgid_shm FcgidIPCDir $RTHOME/var FcgidMaxRequestLen 1073741824 ScriptAlias $PATH $RTHOME/bin/mason_handler.fcgi/ Options +ExecCGI AddHandler fcgid-script fcgi SSLRandomSeed startup builtin SSLRandomSeed startup file:/dev/urandom 512 SSLRandomSeed connect builtin SSLRandomSeed connect file:/dev/urandom 512 SSLSessionCache shmcb:$RTHOME/var/ssl_scache(512000) SSLMutex file:$RTHOME/var/ssl_mutex SSLEngine on SSLCertificateFile $TOOLS/localhost.crt SSLCertificateKeyFile $TOOLS/localhost.key