X-Git-Url: http://git.freeside.biz/gitweb/?p=freeside.git;a=blobdiff_plain;f=htetc%2Ffreeside-base2.4.conf;h=d6ff4f7035865273df9612ad39a08658de606047;hp=c4e93f839d9b6263e7698e65331cf9be71e8f451;hb=f73a37bd1dfd6f8e5cd497b8ac2843a7b8b1247b;hpb=611b71ea70ac43bb52bf6d6b7e23a40694e430df
diff --git a/htetc/freeside-base2.4.conf b/htetc/freeside-base2.4.conf
index c4e93f839..d6ff4f703 100644
--- a/htetc/freeside-base2.4.conf
+++ b/htetc/freeside-base2.4.conf
@@ -1,17 +1,17 @@
PerlModule Apache2::compat
+#PerlModule DBIx::Profile
#PerlModule Apache::DBI
PerlModule HTML::Mason
PerlSetVar MasonArgsMethod CGI
PerlModule HTML::Mason::ApacheHandler
-PerlChildInitHandler "sub { srand }"
-
PerlRequire "%%%MASON_HANDLER%%%"
+PerlChildInitHandler FS::Mason::child_init
+
#Locale::SubCountry
-#
AddDefaultCharset UTF-8
PerlModule FS::AuthCookieHandler24
@@ -20,9 +20,15 @@ PerlAddAuthzProvider user FS::AuthCookieHandler24->authz_handler
#XXX need to also work properly for installs w/o /freeside/ in path
PerlSetVar FreesideLoginScript /freeside/loginout/login.html
-#PerlSetVar FreesideEverSecure 1
+#disables HTTP, so HTTPS only
+#PerlSetVar FreesideSecure 1
+
+#prevents cookie theft via JS
PerlSetVar FreesideHttpOnly 1
+#prevents broken restarts with "couldn't grab the accept mutex" error
+Mutex posixsem
+
#work around Apache2::AuthCookie vs. mod_dir
@@ -62,6 +68,11 @@ PerlSetVar FreesideHttpOnly 1
Satisfy any
+
+
+ Deny from all
+ SetHandler None
+
@@ -72,3 +83,15 @@ PerlSetVar FreesideHttpOnly 1
Satisfy any
+
+
+ Satisfy any
+ SetHandler perl-script
+ PerlHandler HTML::Mason
+
+
+
+ Satisfy any
+ SetHandler perl-script
+ PerlHandler HTML::Mason
+