From 314b668621338daf812d911dcf774a9a8e12e948 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Yannik=20R=C3=B6del?= <hey@yannik.info>
Date: Sun, 22 Jan 2023 21:09:58 +0100
Subject: [PATCH] Add http.conf for CoderDojo site

---
 sites/coderdojo/httpd.conf | 45 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 45 insertions(+)
 create mode 100644 sites/coderdojo/httpd.conf

diff --git a/sites/coderdojo/httpd.conf b/sites/coderdojo/httpd.conf
new file mode 100644
index 0000000..ea2aa48
--- /dev/null
+++ b/sites/coderdojo/httpd.conf
@@ -0,0 +1,45 @@
+server.modules += ( "mod_accesslog", "mod_alias", "mod_cgi", "mod_redirect", "mod_rewrite", "mod_setenv" )
+
+server.port = 80
+
+# See here: https://redmine.lighttpd.net/boards/2/topics/8382
+accesslog.filename = "/dev/fd/3"
+
+include "@mimetypes@"
+
+server.document-root = "@site@"
+index-file.names = ( "index.html" )
+
+setenv.set-response-header += (
+	"Content-Security-Policy" => "default-src 'self'; script-src 'self' 'unsafe-inline' https://hcaptcha.com https://*.hcaptcha.com; frame-src 'self' https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' https://hcaptcha.com, https://*.hcaptcha.com; connect-src 'self' https://hcaptcha.com https://*.hcaptcha.com; frame-ancestors 'none'",
+)
+
+#
+# CGI / form handling
+#
+
+$HTTP["request-method"] =~ "GET|POST" {
+	url.rewrite = (
+		"^/anmelden" => "/cgi-bin/form.py",
+	)
+}
+
+$HTTP["url"] =~ "^/cgi-bin/" {
+	alias.url += ( "/cgi-bin" => "@cgibin@" )
+
+	static-file.exclude-extensions = ( ".py" )
+  cgi.assign = ( ".py" => "@python@/bin/python" )
+	cgi.execute-x-only = "enable"
+
+	cgi.x-sendfile = "enable"
+	cgi.x-sendfile-docroot = ( "@site@" )
+
+	setenv.set-environment = (
+		"SITE_DIRECTORY" => "@site@",
+		"ZAMMAD_URL" => env.ZAMMAD_URL,
+		"ZAMMAD_TOKEN" => env.ZAMMAD_TOKEN,
+		"ZAMMAD_GROUP" => env.ZAMMAD_GROUP,
+		"HCAPTCHA_SITE_KEY" => env.HCAPTCHA_SITE_KEY,
+		"HCAPTCHA_SECRET_KEY" => env.HCAPTCHA_SECRET_KEY,
+	)
+}