streams/doc/install/sample-lighttpd.conf

85 lines
1.9 KiB
Text

# See http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs:ConfigurationOptions
### LOAD MODULES
server.modules = (
"mod_access",
"mod_accesslog",
"mod_fastcgi",
"mod_redirect",
"mod_rewrite"
)
### BASIC STUFF
server.port = 80
server.username = "http"
server.groupname = "http"
server.document-root = "/path/to/your/www/files" #adjust to your setup
server.errorlog = "/var/log/lighttpd/error.log"
accesslog.filename = "/var/log/lighttpd/access.log"
### DISABLE DIR LISTING
dir-listing.activate = "disable"
### DISABLE REJECT EXPECT HEADER
### (needed for curl POST requests - otherwise they fail with error 417)
server.reject-expect-100-with-417 = "disable"
### DEFINE SUPPORTED INDEX FILENAMES
index-file.names = (
"index.html",
"index.htm",
"index.php"
)
### DEFINE SUPPORTED MIME TYPES
mimetype.assign = (
".html" => "text/html",
".htm" => "text/html",
".css" => "text/css",
".txt" => "text/plain",
".svg" => "image/svg+xml",
".jpg" => "image/jpeg",
".png" => "image/png"
)
### DONT EVER SERVE FILES WITH EXTENSION
static-file.exclude-extensions = ( ".php" )
### PHP WITH PHP-FPM
### (needs php-fpm installed and running)
fastcgi.server = (
".php" => (
"localhost" => (
"socket" => "/run/php-fpm/php-fpm.sock",
"broken-scriptfilename" => "enable",
"allow-x-sendfile" => "enable"
)
)
)
### ENABLE SSL
$SERVER["socket"] == ":443" {
ssl.engine = "enable"
ssl.ca-file = "/etc/lighttpd/certs/ca-certs.crt" #adjust to your needs
ssl.pemfile = "/etc/lighttpd/certs/red-ssl.crt" #adjust to your needs
}
### RISTRICT ACCESS TO DIRECTORYS AND FILES
$HTTP["url"] =~ "\.(out|log|htaccess)$" {
url.access-deny = ("")
}
$HTTP["url"] =~ "(^|/)\.git" {
url.access-deny = ("")
}
### URL REWRITE RULES
url.rewrite-if-not-file = (
"^\/([^\?]*)\?(.*)$" => "/index.php?q=$1&$2",
"^\/(.*)$" => "/index.php?q=$1"
)