www.cerec.com: # 09.11.2016 DNS noch nicht auf AEM
aem_path: '/content/cerec'
create_sling_mapping: true
+ lp.dentsplysirona.com:
+ aem_path: '/content/landingpages'
+ create_sling_mapping: true
assets.dentsplysirona.com:
aem_path: '/content/dam'
create_sling_mapping: true
comment: 'lanugage Rewrite use Env Vars'
rewrite_rule:
- '^/$ %%{ich-trickse}{REQUEST_SCHEME}://www.cerec.com/%%{ich-trickse}{ENV:language}.html [R=301,L]'
+# Sirona lp.dentsplysirona.com
+ landingpages:
+ serveraliases:
+ - lp.dentsplysirona.com
+ docroot: '/var/www/html/cache/content/landingpages'
+ ssl_cert: '/etc/pki/tls/certs/cerec.com-cert.pem'
+ ssl_key: '/etc/pki/tls/private/cerec.com-key.pem'
+ ssl_chain: '/etc/pki/tls/certs/cerec.com-cert.pem'
+ docroot_owner: apache
+ setenvif:
+ - 'Origin "http(s)?://(www\.)?(sirona-cerec-test.azurewebsites.net|sirona-cerec-stage.azurewebsites.net|cerec.com|sirona-cerec-de.local:3000)$" AccessControlAllowOrigin=$0$1'
+ setenvifnocase:
+ - 'Accept-Language ^.*$ language=en-us'
+ - 'Accept-Language ^de language=de-de'
+ headers:
+ - 'add Access-Control-Allow-Origin %%{ich-trickse}{AccessControlAllowOrigin}e env=AccessControlAllowOrigin'
+ error_documents:
+ - { error_code: 404 , document: "/en-us/error-pages/404.html" }
+ - { error_code: 500 , document: "/en-us/error-pages/500.html" }
+ directories:
+ - docroot:
+ provider: directory
+ path: '/var/www/html/cache/content/cerec'
+ sethandler: dispatcher-handler
+ options:
+ - FollowSymLinks
+ - de-de:
+ provider: locationmatch
+ path: '^/de-de/'
+ error_documents:
+ - { error_code: 404 , document: "/de-de/error-pages/404.html" }
+ - { error_code: 500 , document: "/de-de/error-pages/500.html" }
+ rewrites:
+ - language_rewrite:
+ comment: 'lanugage Rewrite use Env Vars'
+ rewrite_rule:
+ - '^/$ %%{ich-trickse}{REQUEST_SCHEME}://www.cerec.com/%%{ich-trickse}{ENV:language}.html [R=301,L]'
assets:
servername: assets.dentsplysirona.com
docroot: '/var/www/html/cache/content/dam'
- 'Expires'
- 'Content-Type'
- 'Access-Control-Allow-Origin'
+ landingpages:
+ virtualhosts:
+ - 'lp.dentsplysirona.com'
+ clientheaders:
+ - '*'
+ renders:
+ - { hostname: "127.0.0.1", port: '4503' }
+ filter:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', url: '/' }
+ - { type: 'allow', url: '*.html' }
+ - { type: 'allow', url: '*.css' } # enable css
+ - { type: 'allow', url: '*.gif' } # enable gifs
+ - { type: 'allow', url: '*.ico' } # enable icos
+ - { type: 'allow', url: '*.js' } # enable javascript
+ - { type: 'allow', url: '*.png' } # enable png
+ - { type: 'allow', url: '*.swf' } # enable flash
+ - { type: 'allow', url: '*.jpg' } # enable jpg
+ - { type: 'allow', url: '*.jpeg' } # enable jpeg
+ - { type: 'allow', url: '*.svg' } # enable svg
+ - { type: 'allow', url: '*.ttf' } # enable ttf
+ - { type: 'allow', url: '*.woff' } # enable woff
+ - { type: 'allow', url: '*.woff2' } # enable woff2
+ - { type: 'allow', url: '*.eot' } # enable eot
+ - { type: 'allow', url: '*.pdf' } # enable pdf
+ - { type: 'allow', url: '*.wmv' } # enable wmv
+ - { type: 'allow', url: '*.psd' } # enable psd (Adobe Photoshop Dokument)
+ - { type: 'allow', url: '*.tif' } # enable tif
+ - { type: 'allow', url: '*.zip' } # enable zip
+ - { type: 'allow', url: '*.exe' } # enable exe
+ - { type: 'allow', url: '*.msi' } # enable msi
+ - { type: 'allow', url: '*.indd' } # enable indd (Adobe Indesign Dokument)
+ # Enable features
+ - { type: 'allow', url: '/libs/cq/personalization/*' } # enable personalization
+ - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API
+ - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API
+ - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms
+ - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token
+ # Security Rules
+ - { type: 'deny', url: '/etc/' }
+ - { type: 'deny', url: '/libs/' }
+ - { type: 'allow', url: '/etc/designs/*' }
+ - { type: 'allow', url: '/etc/clientlibs/*' }
+ - { type: 'allow', url: '/etc/segmentation.segment.js' }
+ - { type: 'allow', url: '/libs/cq/personalization/components/clickstreamcloud/content/config.json' }
+ - { type: 'allow', url: '/libs/wcm/stats/tracker.js' }
+ - { type: 'allow', url: '/libs/cq/personalization/*' } # (JS, CSS and JSON)
+ - { type: 'allow', url: '/libs/cq/security/userinfo.json' } # (CQ user information)
+ - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached)
+ - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization)
+ # CSRF
+ - { type: 'allow', url: '/libs/granite/csrf/token.json' }
+ # Deny content grabbing
+ - { type: 'deny', url: '*.infinity.json' }
+ - { type: 'deny', url: '*.tidy.json' }
+ - { type: 'deny', url: '*.sysview.xml' }
+ - { type: 'deny', url: '*.docview.json' }
+ - { type: 'deny', url: '*.docview.xml' }
+ - { type: 'deny', url: '*.*[0-9].json' }
+ # Deny query
+ - { type: 'deny', url: '*.query.json' }
+ cache_docroot: '/var/www/html/cache/content/landingpages'
+ cache_rules:
+ - { type: 'allow', glob: '*' }
+ cache_invalidate:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', glob: '*.html' }
+ - { type: 'allow', glob: '/etc/segmentation.segment.js' }
+ - { type: 'allow', glob: '*/analytics.sitecatalyst.js' }
+ cache_allowed_clients:
+ - { type: 'deny', glob: '*' }
+ - { type: 'allow', glob: '127.0.0.1' }
+ cache_headers:
+ - 'X-Content-Type-Options'
+ - 'X-Frame-Options'
+ - 'X-XSS-Protection'
+ - 'Last-Modified'
+ - 'Expires'
+ - 'Content-Type'
+ - 'Access-Control-Allow-Origin'
assets:
virtualhosts:
- 'assets.dentsplysirona.com'
projects / pixelpark / hiera.git / commitdiff