lighttpd: do not overwrite /etc/lighttpd/lighttpd.conf (On new installs) #5075
Conversation
gstrauss
force-pushed
the
lighttpd-simplify-2
branch
2 times, most recently
from
39ba72c
to
043ad56
Compare
|
On Fedora-based systems, not sure why sed rename is failing in the tests. I'll continue debugging later. |
gstrauss
force-pushed
the
lighttpd-simplify-2
branch
3 times, most recently
from
aaec711
to
8de590f
Compare
|
The sed error is fixed with some docker-foo, but there remains a test error retrieving the /admin/ page for the Fedora-based builds. Will troubleshoot more tomorrow. |
gstrauss
force-pushed
the
lighttpd-simplify-2
branch
11 times, most recently
from
02bc95b
to
5b6d6c1
Compare
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
gstrauss
force-pushed
the
lighttpd-simplify-2
branch
from
5b6d6c1
to
4211397
Compare
|
Tests were failing on Fedora due to the system lighttpd.conf issuing some warnings and the tests treating warnings trace as an error. I'll work out some adjustments... |
gstrauss
force-pushed
the
lighttpd-simplify-2
branch
from
4211397
to
9b53d74
Compare
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
gstrauss
force-pushed
the
lighttpd-simplify-2
branch
from
9b53d74
to
5ac671a
Compare
|
Updated description now that #5065 has been merged. This PR subsumes #5066. This PR shows how pi-hole can avoid overwriting /etc/lighttpd/lighttpd.conf for new installations, while still maintaining lighttpd.conf for existing pi-hole installations. As discussed in #5066, this PR also removes obsolete pihole block page error handler. @PromoFaux: tests all pass, including on Fedora 37, newly added to the pi-hole CI pipeline. |
|
For compatibility with existing installations, the only potential breaking change is removal of the obsolete pihole block page error handler. Most users are not using the obsolete pihole block page error handler; Existing users can opt-in to convert to the new, less-invasive configuration -- which does not overwrite the system lighttpd.conf -- by uninstalling pi-hole and answering No to question |
remove obsolete pihole block page error handler x-ref: Remove the advanced functionality of the 404 page (Blockpage) pi-hole#3910 Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
(/var/www/html/pihole/ dir and contents are still removed in uninstall) (/var/www/html/index.lighttpd.orig is still removed in uninstall) Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
gstrauss
force-pushed
the
lighttpd-simplify-2
branch
from
5ac671a
to
34f45d0
Compare
PromoFaux
changed the title
This is probably like using a sledgehammer to crack a nut. Simpler:
|
Haha. Yes. The uninstall also cleans up and removes In any case, there are a small number of steps that can be performed manually for existing installations that wish to migrate. However, note that the (now-removed) code in basic-install.sh which backed up lighttpd.conf would overwrite an existing backup, so running the pi-hole installer without running the uninstaller could theoretically have overwritten the original backup. In that case, reinstalling the system lighttpd package and then merging the lighttpd.conf.rpmnew or lighttpd.conf-opkg, or ... could restore the system-provided lighttpd.conf. |
|
Thank you very much for your assistance and guidance here, @PromoFaux If lighttpd-related questions come up in the future asking how to do something using lighttpd, please tag me. |
|
|
||
| // Determine block page type | ||
| if ($serverName === "pi.hole" | ||
| || (!empty($_SERVER["VIRTUAL_HOST"]) && $serverName === $_SERVER["VIRTUAL_HOST"])) { |
There was a problem hiding this comment.
@gstrauss I totally forgot to mention/ask - are we able to reproduce this in pihole-admin.conf where the following lines are?
pi-hole/advanced/pihole-admin.conf
Lines 62 to 66 in ec1d4c5
If my docs reading is correct, is it something like the following?
$HTTP["host"] == "pi.hole" || $HTTP["host"] == env.VIRTUAL_HOST {
$HTTP["url"] == "/" {
url.redirect = ("" => "/admin/")
}
}
There was a problem hiding this comment.
lighttpd.conf syntax is historically its own custom syntax (for better and worse), and is not shell syntax. If VIRTUAL_HOST is set in the shell environment before starting lighttpd, then this syntax should work:
$HTTP["url"] == "/" {
$HTTP["host"] == "pi.hole" {
url.redirect = ("" => "/admin/")
}
$HTTP["host"] == env.VIRTUAL_HOST {
url.redirect = ("" => "/admin/")
}
}
but the above will fail if VIRTUAL_HOST is not set. It should at least be set to VIRTUAL_HOST="" to work
(Constructing a regex using lighttpd.conf syntax is possible but ugly and verbose
e.g. ^(" + env.VIRTUAL_HOST + "|pi.hole)$)
That also requires VIRTUAL_HOST be set in the shell environment, and not missing from the shell env.
Another option, which I know is in wide use, is to use lighttpd.conf include_shell to run a short shell script which generates the simpler lighttpd.conf syntax to do what is desired, which could generate the syntax I posted above for a list of pi-hole admin hosts ("127.0.0.1", "::1", "localhost", "pi.hole", etc)
Lastly, a few lines of lua can be written and used with lighttpd mod_magnet. Lua is a programming language and is much more expressive than lighttpd.conf syntax. Whenever someone asks "can I do this arbitrarily complex thing in lighttpd.conf?", the answer frequently includes: one option is to use lighttpd mod_magnet and a lua script.
Maybe not as simple as you had hoped, but there are solutions available. If you want to extend what is currently checked in, I would suggest include_shell and a shell script to generate the simpler lighttpd.conf directives to do exactly what you want. I think requiring VIRTUAL_HOST be set in the environment will complicate things for various existing scripts in the OS which check lighttpd -f /etc/lighttpd.conf -tt and expect it to work (without knowing that VIRTUAL_HOST needs to be set in the environment)
There was a problem hiding this comment.
BTW, the "better" or advantages of lighttpd.conf syntax is realized in how lighttpd uses lighttpd.conf: lighttpd parses and generates a static configuration at startup, with limited conditionals allowed by the syntax. Processing the lighttpd configuration for each and every request at runtime is much faster than runtime config parsing done by many other web servers.
There was a problem hiding this comment.
Intercepting and redirecting "/" might be desirable for new installations, but not for existing lighttpd configs which are used for other purposes. If you do use include_shell and create a shell script for this configuration, instead of adding it to pihole-admin.conf, you might consider a new file pihole-admin-redir.conf so that some people can more easily disable just that part.
Alternatively -- and I think the best solution for this very-specific pi-hole use -- you can construct a simple index.html that you drop into the document root if index.* is not already present, and that index.html can be a splash page and/or can do the redirection in the HTML <meta http-equiv="Refresh" content="0; url='/admin/'" />
There was a problem hiding this comment.
Thanks for the information.
On reflection, I have decided that we do not need to include the functionality - But I spotted it and realised that I had overlooked it before, so wanted to find a way back in case we needed it.
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: https://discourse.pi-hole.net/t/pi-hole-ftl-v5-20-and-web-v5-18-released/59959/1 |
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: https://discourse.pi-hole.net/t/pi-hole-ftl-v5-20-1-web-v5-18-1-and-core-v5-15-released/60495/1 |
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: https://discourse.pi-hole.net/t/yesterdays-update-removed-the-index-html/60531/2 |
|
This pull request has been mentioned on Pi-hole Userspace. There might be relevant details there: |
What does this PR aim to accomplish?:
lighttpd: do not overwrite /etc/lighttpd/lighttpd.conf (on new installations)
How does this PR accomplish the above?:
This PR requires #5065 and subsumes #5066.
This PR shows how pi-hole can avoid overwriting /etc/lighttpd/lighttpd.conf for new installations, while still maintaining lighttpd.conf for existing pi-hole installations.
By submitting this pull request, I confirm the following:
git rebase)