{
if (
	((${'zabbix-server'}{'status'} || 'disabled') eq 'enabled') &&
	((${'zabbix-server'}{'WebAccess'} || 'local') ne 'disabled')){

my $access = (${'zabbix-server'}{'WebAccess'} || 'local') eq 'public' ?
        'all':"$localAccess $externalSSLAccess";

my $tz = ${'TimeZone'} || 'Europe/Paris';

$OUT .=<<"HERE";
#-------------------------------------------#
# Zabbix monitoring system php web frontend #
#-------------------------------------------#

Alias /zabbix /usr/share/zabbix

<Directory "/usr/share/zabbix">
    SSLRequireSSL on
    Options FollowSymLinks
    AddType application/x-httpd-php .php
    php_admin_value max_execution_time 600
    php_admin_value max_input_time 600
    php_admin_value memory_limit 256M
    php_admin_value date.timezone $tz
    php_admin_value post_max_size 32M
    php_admin_value always_populate_raw_post_data -1
    AllowOverride None
    Order allow,deny
    Allow from $access
</Directory>

<Directory "/usr/share/zabbix/include">
    Order deny,allow
    Deny from all
    <files *.php>
        Order deny,allow
        Deny from all
    </files>
</Directory>

<Directory "/usr/share/zabbix/include/classes">
    Order deny,allow
    Deny from all
    <files *.php>
        Order deny,allow
        Deny from all
    </files>
</Directory>

HERE
}
}
