From 14656bb8a3eb57a6a3165cde29203cf069880373 Mon Sep 17 00:00:00 2001 From: Philipp Dallig Date: Mon, 15 Aug 2016 17:37:21 +0200 Subject: [PATCH] sirona-aem - add domain-mappings + dispatcher config --- customer/sirona-aem/production.yaml | 316 +++++++++++++++++++++++++++- 1 file changed, 315 insertions(+), 1 deletion(-) diff --git a/customer/sirona-aem/production.yaml b/customer/sirona-aem/production.yaml index ac12fb62..e671b69b 100644 --- a/customer/sirona-aem/production.yaml +++ b/customer/sirona-aem/production.yaml @@ -96,13 +96,17 @@ site::profile::apache::htdigest: # Apache Publisher site::profile::aem::publish::pp_vhosts: sirona: + serveraliases: + - prod-sirona-publish.pixelpark.net + - www.sirona.clinic + - sirona.clinic docroot: '/var/www/html/cache' ssl_cert: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' ssl_key: '/etc/pki/tls/private/wildcard.pixelpark.net-key.pem' ssl_chain: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' docroot_owner: apache setenvif: - - 'Origin "http(s)?://(www\.)?(sirona-cerec-test.azurewebsites.net|sirona-cerec-stage.azurewebsites.net|cerec.com)$" AccessControlAllowOrigin=$0$1' + - 'Origin "http(s)?://(www\.)?(sirona-cerec-test.azurewebsites.net|sirona-cerec-stage.azurewebsites.net|cerec.com|sirona-cerec-de.local:3000)$" AccessControlAllowOrigin=$0$1' headers: - 'add Access-Control-Allow-Origin %%{ich-trickse}{AccessControlAllowOrigin}e env=AccessControlAllowOrigin' directories: @@ -112,6 +116,242 @@ site::profile::aem::publish::pp_vhosts: sethandler: dispatcher-handler options: - FollowSymLinks + rewrites: +# Sirona Clinic Migration Start + - regel_1: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/home$ http://www.sirona.clinic/en-us.html [R=301,L]' + - regel_2: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/consulting$ http://www.sirona.clinic/en-us/consulting.html [R=301,L]' + - regel_3: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/planning$ http://www.sirona.clinic/en-us/planning.html [R=301,L]' + - regel_4: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/products$ http://www.sirona.clinic/en-us/products.html [R=301,L]' + - regel_5: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/products/prepcheck$ http://www.sirona.clinic/en-us/products/prepcheck.html [R=301,L]' + - regel_6: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/products/simulation-unit$ http://www.sirona.clinic/en-us/products/simulation-units.html [R=301,L]' + - regel_7: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/support$ http://www.sirona.clinic/en-us/support.html [R=301,L]' + - regel_8: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/references$ http://www.sirona.clinic/en-us/references.html [R=301,L]' + - regel_9: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/references/cases/graz$ http://www.sirona.clinic/en-us/references/graz.html [R=301,L]' + - regel_10: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/references/cases/melbourne$ http://www.sirona.clinic/en-us/references/melbourne.html [R=301,L]' + - regel_11: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/references/cases/groningen$ http://www.sirona.clinic/en-us/references/groningen.html [R=301,L]' + - regel_12: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/references/cases/denbosch$ http://www.sirona.clinic/en-us/references/denbosch.html [R=301,L]' + - regel_13: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/references/cases/marburg$ http://www.sirona.clinic/en-us/references/marburg.html [R=301,L]' + - regel_14: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en/references/cases/jazan$ http://www.sirona.clinic/en-us/references/jazan.html [R=301,L]' + - regel_15: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/home$ http://www.sirona.clinic/es-es.html [R=301,L]' + - regel_16: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/consulting$ http://www.sirona.clinic/es-es/asesoria.html [R=301,L]' + - regel_17: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/planning$ http://www.sirona.clinic/es-es/planeacion.html [R=301,L]' + - regel_18: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/products$ http://www.sirona.clinic/es-es/productos.html [R=301,L]' + - regel_19: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/products/prepcheck$ http://www.sirona.clinic/es-es/productos/prepcheck.html [R=301,L]' + - regel_20: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/products/simulation-unit$ http://www.sirona.clinic/es-es/productos/simulation-units.html [R=301,L]' + - regel_21: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/support$ http://www.sirona.clinic/es-es/soporte.html [R=301,L]' + - regel_22: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/references$ http://www.sirona.clinic/es-es/referencias.html [R=301,L]' + - regel_23: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/references/cases/graz$ http://www.sirona.clinic/es-es/referencias/graz.html [R=301,L]' + - regel_24: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/references/cases/melbourne$ http://www.sirona.clinic/es-es/referencias/melbourne.html [R=301,L]' + - regel_25: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/references/cases/groningen$ http://www.sirona.clinic/es-es/referencias/groningen.html [R=301,L]' + - regel_26: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/references/cases/denbosch$ http://www.sirona.clinic/es-es/referencias/denbosch.html [R=301,L]' + - regel_27: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/references/cases/marburg$ http://www.sirona.clinic/es-es/referencias/marburg.html [R=301,L]' + - regel_28: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es/references/cases/jazan$ http://www.sirona.clinic/es-es/referencias/jazan.html [R=301,L]' + - regel_29: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/es$ http://www.sirona.clinic/es-es.html [R=301,L]' + - regel_30: + comment: 'Auto Generated Rewrite' + rewrite_cond: + - '%%{ich-trickse}{HTTP_HOST} ^www.sirona.clinic$' + rewrite_rule: + - '^/en$ http://www.sirona.clinic/en-us.html [R=301,L]' +# Sirona Clinic Migration Stop + danke-m1: + serveraliases: + - www.danke-m1-hallo-zukunft.de + - danke-m1-hallo-zukunft.de + docroot: '/var/www/html/cache' + # Change SSL Cert + ssl_cert: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + ssl_key: '/etc/pki/tls/private/wildcard.pixelpark.net-key.pem' + ssl_chain: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + docroot_owner: apache + setenvif: + - 'Origin "http(s)?://(www\.)?(sirona-cerec-test.azurewebsites.net|sirona-cerec-stage.azurewebsites.net|cerec.com|sirona-cerec-de.local:3000)$" AccessControlAllowOrigin=$0$1' + headers: + - 'add Access-Control-Allow-Origin %%{ich-trickse}{AccessControlAllowOrigin}e env=AccessControlAllowOrigin' + directories: + - docroot: + provider: directory + path: '/var/www/html/cache' + sethandler: dispatcher-handler + options: + - FollowSymLinks + brand: + serveraliases: + - brand.dentsplysirona.com + - hub.dentsplysirona.com + docroot: '/var/www/html/cache' + # Change SSL Cert + ssl_cert: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + ssl_key: '/etc/pki/tls/private/wildcard.pixelpark.net-key.pem' + ssl_chain: '/etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem' + docroot_owner: apache + setenvif: + - 'Origin "http(s)?://(www\.)?(sirona-cerec-test.azurewebsites.net|sirona-cerec-stage.azurewebsites.net|cerec.com|sirona-cerec-de.local:3000)$" AccessControlAllowOrigin=$0$1' + headers: + - 'add Access-Control-Allow-Origin %%{ich-trickse}{AccessControlAllowOrigin}e env=AccessControlAllowOrigin' + directories: + - docroot: + provider: directory + path: '/var/www/html/cache' + sethandler: dispatcher-handler + options: + - FollowSymLinks + - location1: + provider: location + path: '/' + auth_type: Digest + auth_name: brand + auth_digest_provider: file + auth_digest_algorithm: MD5 + auth_user_file: '/etc/httpd/htdigest' + auth_require: 'valid-user' + require: + - local # Apache Author #site::profile::aem::author::enable_apache: true @@ -146,3 +386,77 @@ site::profile::aem::author::pp_vhosts: # auth_digest_algorithm: MD5 # auth_user_file: '/etc/httpd/htdigest' # auth_require: 'valid-user' + +aem::dispatcher::publish_farm: + website: + clientheaders: + - '*' + renders: + - { hostname: "127.0.0.1", port: '4503' } + filter: + - { type: 'deny', glob: '*' } + - { type: 'allow', url: '/' } + - { type: 'allow', url: '*.html' } + - { type: 'allow', url: '*.css' } # enable css + - { type: 'allow', url: '*.gif' } # enable gifs + - { type: 'allow', url: '*.ico' } # enable icos + - { type: 'allow', url: '*.js' } # enable javascript + - { type: 'allow', url: '*.png' } # enable png + - { type: 'allow', url: '*.swf' } # enable flash + - { type: 'allow', url: '*.jpg' } # enable jpg + - { type: 'allow', url: '*.jpeg' } # enable jpeg + - { type: 'allow', url: '*.svg' } # enable svg + - { type: 'allow', url: '*.ttf' } # enable ttf + - { type: 'allow', url: '*.woff' } # enable woff + - { type: 'allow', url: '*.woff2' } # enable woff2 + - { type: 'allow', url: '*.eot' } # enable eot + - { type: 'allow', url: '*.pdf' } # enable pdf + - { type: 'allow', url: '*.wmv' } # enable wmv + - { type: 'allow', url: '*.psd' } # enable psd (Adobe Photoshop Dokument) + - { type: 'allow', url: '*.tif' } # enable tif + - { type: 'allow', url: '*.indd' } # enable indd (Adobe Indesign Dokument) + # Enable features + - { type: 'allow', url: '/libs/cq/personalization/*' } # enable personalization + - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API + # Security Rules + - { type: 'deny', url: '/etc/' } + - { type: 'deny', url: '/libs/' } + - { type: 'allow', url: '/etc/designs/*' } + - { type: 'allow', url: '/etc/clientlibs/*' } + - { type: 'allow', url: '/etc/segmentation.segment.js' } + - { type: 'allow', url: '/libs/cq/personalization/components/clickstreamcloud/content/config.json' } + - { type: 'allow', url: '/libs/wcm/stats/tracker.js' } + - { type: 'allow', url: '/libs/cq/personalization/*' } # (JS, CSS and JSON) + - { type: 'allow', url: '/libs/cq/security/userinfo.json' } # (CQ user information) + - { type: 'allow', url: '/libs/granite/security/currentuser.json' } # (data must not be cached) + - { type: 'allow', url: '/libs/cq/i18n/*' } # (Internalization) + # CSRF + - { type: 'allow', url: '/libs/granite/csrf/token.json' } + # Deny content grabbing + - { type: 'deny', url: '*.infinity.json' } + - { type: 'deny', url: '*.tidy.json' } + - { type: 'deny', url: '*.sysview.xml' } + - { type: 'deny', url: '*.docview.json' } + - { type: 'deny', url: '*.docview.xml' } + - { type: 'deny', url: '*.*[0-9].json' } + # Deny query + - { type: 'deny', url: '*.query.json' } + cache_docroot: '/var/www/html/cache' + cache_rules: + - { type: 'allow', glob: '*' } + cache_invalidate: + - { type: 'deny', glob: '*' } + - { type: 'allow', glob: '*.html' } + - { type: 'allow', glob: '/etc/segmentation.segment.js' } + - { type: 'allow', glob: '*/analytics.sitecatalyst.js' } + cache_allowedClients: + - { type: 'deny', glob: '*' } + - { type: 'allow', glob: '127.0.0.1' } + cache_headers: + - 'X-Content-Type-Options' + - 'X-Frame-Options' + - 'X-XSS-Protection' + - 'Last-Modified' + - 'Expires' + - 'Content-Type' + - 'Access-Control-Allow-Origin' \ No newline at end of file -- 2.39.5