#
# lighttpd configurati#

## modules to load
server.modules        = (
"mod_access",
    "mod_accesslog",
    "mod_alias",
"mod_openssl",
    "mod_webdav",
)

# mimetype mapping
mimetype.assign       = ()

##
## Run as a different username/groupname.
## This requires root permissions during startup.
##
server.username       = "os_lighttpd"
server.groupname      = "tpd"

# Bind to VLAN 144
server.bind           = "160.48.199.161"
server.port   = 8008

# Server configuration
server.document-root  = "/var/www"
server.pid-file       = "/var/run/lighttpd/lighttpd.pid"
server.upload-dirs    = ( "/tmp" )
server.follow-symlink = "disable"

# Logs
accesslog.use-syslog       = "enable"
server.errorlog-use-syslog = "enable"

# Access through WebDAV
$HTTP["url"] =~HTTP {
 dav.activate     = "enable"
  webdav.is-readonly  = "enable"

  # URLs to allow access
  alias.url  = ( "/var/cache/mediaramdisk/covers/"                           => "/var/cache/mediaramdisk/covers/" )
  alias.url += ( "/var/cache/projectedmodes/"                => "/var/cache/projectedmodes/" )
  alias.url += ( "/var/opt/ent/share/covers/hu/"                                             => "/var/opt/ent/share/covers/hu/" )
  alias.url += ( "/var/opt/ent/share/oe/coverart/"                                           => "/var/opt/ent/share/oe/coverart/" )
  alias.url += ( "/var/opt/ent/share/oe/default/coverart/"                                   => "/var/opt/ent/share/oe/default/coverart/" )
  alias.url += ( "/var/opt/ent/share/sxmapp/"                                                => "/var/opt/ent/share/sxmapp/" )
  alias.url += ( "/var/opt/public/con/pim/pictures/"                                         => "/var/opt/public/con/pim/pictures/" )
  alias.url += ( "/opt/ivi/rootfs/usr/share/hmi/data/ro/common/bmt_source_icons/"            => "/opt/ivi/rootfs/usr/share/hmi/data/ro/common/bmt_source_icons/" )
  alias.url += ( "/var/opt/public/hmi/hmi_id8main/art_mode_downloader_cache/shared/mymodes/" => "/var/opt/public/hmi/hmi_id8main/art_mode_downloader_cache/shared/mymodes/" )
  alias.url += ( "/var/opt/public/oap/"                                                      => "/var/opt/public/oap/" )
  alias.url += ( "/var/opt/personal/"                                                        => "/var/opt/personal/" )
}

# Deny access to /var/opt/public/oap/ except:
#  - /var/opt/public/oap/<oap_app_id>/rhmiData/
#  - /var/opt/public/oap/<oap_app_id>/share/
$HTTP["url"] =~ "^/var/opt/public/oap/" {
  $HTTP["url"] =~ "^/var/opt/public/oap/oap_\d+/(rhmiData|share)/" {
    url.access-allow = ("")
  } else {
    url.access-deny = ("")
  }
}

# Deny access to /var/opt/personal/ except:
#  - /var/opt/personal/<cd_user_id>/oap/<oap_app_id>/rhmiData/
#  - /var/opt/personal/<cd_user_id>/oap/<oap_app_id>/share/
$HTTP["url"] =~ "^/var/opt/personal/" {
  $HTTP["url"] =~ "^/var/opt/personal/\w+/oap/oap_\d+/(rhmiData|share)/" {
    url.access-allow = ("")
  } else { url.access-deny = ("")
  }
}