diff --git a/roles/people/files/userdir.conf b/roles/people/files/userdir.conf new file mode 100644 index 0000000000..b34668403e --- /dev/null +++ b/roles/people/files/userdir.conf @@ -0,0 +1,35 @@ +# +# UserDir: The name of the directory that is appended onto a user's home +# directory if a ~user request is received. +# +# The path to the end user account 'public_html' directory must be +# accessible to the webserver userid. This usually means that ~userid +# must have permissions of 711, ~userid/public_html must have permissions +# of 755, and documents contained therein must be world-readable. +# Otherwise, the client will only receive a "403 Forbidden" message. +# + + # + # UserDir is disabled by default since it can confirm the presence + # of a username on the system (depending on home directory + # permissions). + # + #UserDir enabled + + # + # To enable requests to /~user/ to serve the user's public_html + # directory, remove the "UserDir disabled" line above, and uncomment + # the following line instead: + # + #UserDir public_html + + +# +# Control access to UserDir directories. The following is an example +# for a site where these directories are restricted to read-only. +# +# +# AllowOverride FileInfo AuthConfig Limit Indexes +# Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec +# Require method GET POST OPTIONS +# diff --git a/roles/people/tasks/main.yml b/roles/people/tasks/main.yml index b38a9fde6e..0a911e2cb1 100644 --- a/roles/people/tasks/main.yml +++ b/roles/people/tasks/main.yml @@ -24,6 +24,7 @@ - cgit.conf - people.conf - ssl.conf + - userdir.conf tags: - people