diff -Nur e-smith-manager-2.8.0.old/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass e-smith-manager-2.8.0/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass --- e-smith-manager-2.8.0.old/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass 2020-06-27 14:22:39.976000000 -0400 +++ e-smith-manager-2.8.0/root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass 2020-06-27 14:23:18.235000000 -0400 @@ -3,18 +3,16 @@ $haveSSL = (exists ${modSSL}{status} and ${modSSL}{status} eq "enabled") ? 'yes' : 'no'; $plainTextAccess = ${'httpd-admin'}{PermitPlainTextAccess} || 'no'; - $plainPort = ${'httpd-e-smith'}{TCPPort} || '80'; - $sslPort = ${modSSL}{TCPPort} || '443'; $OUT = ''; foreach $place ('server-manager','server-common','user-password') { - if (($port eq $plainPort) && ($haveSSL eq 'yes') && ($plainTextAccess ne 'yes')) + if (($port eq $httpPort) && ($haveSSL eq 'yes') && ($plainTextAccess ne 'yes')) { $OUT .= ' RewriteCond %{REMOTE_ADDR} !^127\.0\.0\.1$' . "\n"; $OUT .= " RewriteRule ^/$place(/.*|\$) https://%{HTTP_HOST}/$place\$1 [L,R]\n"; } - if ($port eq $sslPort) + if ($port eq $httpsPort) { # mod_auth_tkt needs to know the protocol to write 307 redirection $OUT .= " RequestHeader set X-Forwarded-Proto \"https\"\n"; @@ -25,11 +23,11 @@ $OUT .= " \n"; $OUT .= " order deny,allow\n"; $OUT .= " deny from all\n"; - if ($port eq $plainPort) + if ($port eq $httpPort) { $OUT .= ' allow from 127.0.0.1' . "\n"; } - elsif (($haveSSL eq 'yes') && (($port eq $sslPort) || ($plainTextAccess ne 'yes'))) + elsif (($haveSSL eq 'yes') && (($port eq $httpsPort) || ($plainTextAccess ne 'yes'))) { $OUT .= " allow from $localAccess $externalSSLAccess\n"; } else {