hello,
attached diff fixes PLIST for horde to make the config
directory owned by www, without that during the initial
install it will fail since the web server can't write
the config/conf.php and config/conf.php.bak files (this
also brings it inline with the other horde components
which are all configured as such)
attached README offers an example of how to set up horde
under nginx with php-fpm
thanks,
.jh
Index: pkg/PLIST
===================================================================
RCS file: /cvs/ports/www/horde/horde/pkg/PLIST,v
retrieving revision 1.4
diff -u -r1.4 PLIST
--- pkg/PLIST 16 Feb 2012 21:19:30 -0000 1.4
+++ pkg/PLIST 13 Mar 2012 21:58:13 -0000
@@ -35,8 +35,11 @@
${INSTDIR}/admin/signup_confirm.php
${INSTDIR}/admin/sqlshell.php
${INSTDIR}/admin/user.php
+@mode 700
+@owner www
@group www
${INSTDIR}/config/
+@mode 600
${INSTDIR}/config/.htaccess
${INSTDIR}/config/conf.php.dist
${INSTDIR}/config/conf.xml
@@ -48,6 +51,8 @@
${INSTDIR}/config/registry.d/
${INSTDIR}/config/registry.d/README
${INSTDIR}/config/registry.php.dist
+@mode
+@owner
@group
${INSTDIR}/docs/
${INSTDIR}/docs/CHANGES
$OpenBSD $
+-----------------------------------------------------------------------
| Running ${FULLPKGNAME} on OpenBSD
+-----------------------------------------------------------------------
############################################################
# This is an example config for nginx with SSL and php-fpm #
############################################################
server {
listen 443 default ssl;
server_name mail.example.com;
root /var/www/htdocs;
index index.php;
client_max_body_size 20M;
ssl_certificate /etc/ssl/nginx_httpd.crt;
ssl_certificate_key /etc/ssl/private/nginx_httpd.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
ssl_prefer_server_ciphers on;
location ^~
/(config\/|lib\/|locale\/|po\/|scripts\/|templates\/|kronolith\/feed\/) {
deny all;
}
location /horde/rpc {
try_files $uri $uri/ @rpc;
}
location ~ \.php$ {
include fastcgi_params;
fastcgi_index index.php;
fastcgi_param HTTPS on;
fastcgi_pass 127.0.0.1:9000;
fastcgi_send_timeout 1800;
fastcgi_read_timeout 1800;
fastcgi_connect_timeout 1800;
fastcgi_param SSL_PROTOCOL $ssl_protocol;
fastcgi_param SSL_CIPHER $ssl_cipher;
fastcgi_param SSL_SESSION_ID $ssl_session_id;
fastcgi_param SSL_CLIENT_VERIFY $ssl_client_verify;
}
location @rpc {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
include fastcgi_params;
fastcgi_param HTTPS on;
fastcgi_index index.php;
fastcgi_pass 127.0.0.1:9000;
fastcgi_send_timeout 1800;
fastcgi_read_timeout 1800;
fastcgi_connect_timeout 1800;
}
access_log /var/www/logs/mail.example.com-access.log combined;
error_log /var/www/logs/mail.example.com-error.log;
location ~*
^.+.(jpe?g|gif|png|ico|css|zip|tgz|gz|rar|bz2|doc|xls|exe|pdf|ppt|txt|tar|mid|midi|wav|bmp|rtf|js|swf|avi|mp3)$
{
expires 30d;
}
}
