| | 1 | = Custom MOSH domain = |
| | 2 | |
| | 3 | All servers have a canonical domain ending in mayfirst.org (e.g. roe.mayfirst.org). These MOSH'es are configured to use this canonical domain name for apache (specifically to reach phpmyadmin) and to use the canonical domain name for x509 certificates. |
| | 4 | |
| | 5 | Some members run their own dedicated MOSH'es and prefer to have a server alias, usually because they want to use their own x509 certificates the work with their own domain names. |
| | 6 | |
| | 7 | == x509 == |
| | 8 | |
| | 9 | When configuring custom x509 certificates, simply create a symlink from /etc/ssl/SERVERNAME.mayfirst.org.crt that points to the member's certificate and a symlink from /etc/ssl/private/SERVERNAME.mayfirst.org.pem that points to the members combined certificate and key file. No changes to puppet are required, these symlinks will be preserved. |
| | 10 | |
| | 11 | == apache == |
| | 12 | |
| | 13 | If you'd like to have http requests sent to the canonical name redirected to the alias, configure the server via puppet with using the apache_server_alias variable in the mosh class. For example, here is the setting for roe.pp: |
| | 14 | |
| | 15 | {{{ |
| | 16 | class { "m_mosh": |
| | 17 | fcgid_max_processes => 10, |
| | 18 | apache_server_alias => "roe.nnaf.org" |
| | 19 | } |
| | 20 | }}} |
| | 21 | |
