WebSVN – ALCASAR – Diff – /scripts/alcasar-conf.sh

 #!/bin/bash
-# $Id: alcasar-conf.sh 3281 2025-05-14 21:50:06Z rexy $
+# $Id: alcasar-conf.sh 3283 2025-05-18 21:06:00Z rexy $
 # alcasar-conf.sh
 # by REXY
 # This script is distributed under the Gnu General Public License (GPL)
 		$SED "s/^    ServerName.*/    ServerName $HOSTNAME.$DOMAIN/g" /etc/httpd/conf/vhosts.d/00_default_vhosts.conf /etc/httpd/conf/vhosts.d/00_default_ssl_vhost.conf
 		$SED "s?^Listen.*?Listen $PRIVATE_IP:80?g" /etc/httpd/conf/httpd.conf
 		FIC_MOD_SSL=`find /etc/httpd/conf/ -type f -name ssl.conf`
 		$SED "s?^Listen.*?Listen $PRIVATE_IP:443?g" $FIC_MOD_SSL
 		$SED "/127.0.0.1/!s?Allow from .*?Allow from $PRIVATE_NETWORK_MASK?g" /etc/httpd/conf/webapps.d/alcasar.conf
+		$SED "/Allow from/d"  /etc/httpd/conf/webapps.d/alcasar.conf
+		if [ $(grep -c "^managerIPs=" $DIR_ETC/alcasar-iptables-local.sh) -eq 1 ] ;then
+			grep "^managerIPs=" $DIR_ETC/alcasar-iptables-local.sh | cut -d "'" -f2 | sed "s/,/\n/g" | while read -r managerIP
+			do
+	    			$SED "/Deny from all/a\ \tAllow from $managerIP" /etc/httpd/conf/webapps.d/alcasar.conf
+			done
+		fi
+		$SED "/Deny from all/a\ \tAllow from 127.0.0.1\n\tAllow from $PRIVATE_NETWORK_MASK" /etc/httpd/conf/webapps.d/alcasar.conf
 # FreeRADIUS
 		$SED "s?^nas1_name:.*?nas1_name: alcasar-$ORGANISME?g" /etc/freeradius-web/naslist.conf
 		$SED "s?^nas1_ip:.*?nas1_ip: $PRIVATE_IP?g" /etc/freeradius-web/naslist.conf
 # CoovaChilli
 		$SED "s/^uamallowed.*/uamallowed\t$HOSTNAME,$HOSTNAME.$DOMAIN/g" /etc/chilli.conf

Subversion Repositories ALCASAR