
# phpsysinfo
Alias /phpsysinfo /opt/phpsysinfo
<Directory /opt/phpsysinfo>
    SSLRequireSSL
    Options -Indexes
    AuthName "phpSysInfo"
    AuthType Basic
    TKTAuthLoginURL /server-common/cgi-bin/login
    TKTAuthUnauthURL /server-common/cgi-bin/logout
    TKTAuthIgnoreIP on
{
    my $ManagerTimeout = ${'httpd-admin'}{ManagerTimeout} || "30m";
    $OUT .=  "     TKTAuthTimeout $ManagerTimeout\n";
    my $Cookie = ${'httpd-admin'}{Cookie} || "disabled";
    $OUT .= "     TKTAuthCookieExpires $ManagerTimeout\n" if "$Cookie" eq "enabled";
    my $ManagerTimeoutReset = ${'httpd-admin'}{ManagerTimeoutReset} || "0.66";
    $OUT .= "     TKTAuthTimeoutRefresh $ManagerTimeoutReset\n";
}
    SetEnvIf Referer "^(.*)$" ORIG_REFERER=$1
    RequestHeader set X-Original-Referer "%\{ORIG_REFERER\}e" env=ORIG_REFERER
    SetEnvIf Authorization "(.*)" HTTP_AUTHORIZATION=$1
    SetEnvIfNoCase Cookie ".*auth_tkt=(.*);?" HTTP_AUTH_TKT=$1
    Header set Content-Security-Policy  "script-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' "
       require ip 127.0.0.1 {$LocalIP} {$ExternalIP}
    <RequireAll>
        require user admin
        require {(($phpmyadmin{access} || 'private' ) eq "public" ) ?  "all granted": "ip $localAccess $externalSSLAccess";}
    </RequireAll>

    AddType application/x-httpd-php .php .php3
    <FilesMatch .php$>
        SetHandler "proxy:unix:/var/run/php-fpm/php.sock|fcgi://localhost"
    </FilesMatch>

</Directory>
