<VirtualHost VIRTUALIPNUMBER:80>
    ServerAdmin webmaster@catchmedia.com
    ServerName SERVERNAME.catchmedia.com
    # Aliases for servers that are not directly mapped
    ServerAlias pa.catchmedia.com
    ServerAlias qa-fe.catchmedia.com
	
    #DocumentRoot /var/www/
    DocumentRoot /opt/cm/www

    #### Allow following URLs on plain http
    # For ldirectord monitoring
    RewriteRule ^/ldirectord.php$ /ldirectord.php [L]
    # WS4 likes to request WS3.5 locally, over http
    RewriteRule ^/web_services/3.5.*$ %{REQUEST_URI} [L]

    RewriteEngine On
    RewriteCond %{HTTPS} off
    RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

    <Directory />
	Options FollowSymLinks
	AllowOverride None
    </Directory>

    <Directory /opt/cm/www>
        Header set Access-Control-Allow-Origin "*"

        <FilesMatch "crossdomain.xml">
          Header set Cache-Control "max-age=86400, public, must-revalidate"
        </FilesMatch>
    </Directory>

    <Directory /opt/cm/www/tmp>
        Options FollowSymLinks
        AllowOverride None
    </Directory>

    <Directory /var/www/>
        Options Indexes FollowSymLinks MultiViews
        AllowOverride None
        Order allow,deny
        allow from all
    </Directory>

    # Allow .htaccess handle .7dig extensions
    <Directory /opt/cm/www/partners/stores/7digital/>
        AllowOverride All
    </Directory>

    # Adding proper mimetype for m2ts files
    AddType video/mpeg m2ts

    # Adding proper mimetype for aac files
    AddType audio/mp4 aac

#    ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
#    <Directory "/usr/lib/cgi-bin">
#        AllowOverride None
#        Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
#        Order allow,deny
#        Allow from all
#    </Directory>

    ErrorLog /var/log/apache2/error.log

    # Possible values include: debug, info, notice, warn, error, crit,
    # alert, emerg.
    LogLevel warn

    # Needed for python support
    AddHandler mod_python .py

    <Directory /opt/cm/www/web_services/devices/appsdk>
        AllowOverride All
        Options FollowSymLinks
    </Directory>

    <Directory /opt/cm/www/web_services/apps>
        AllowOverride All
        Options FollowSymLinks
    </Directory>

    <Directory /opt/cm/www/web_services/partners>
        AllowOverride All
        Options FollowSymLinks
    </Directory>

    # Do not log requests to ldirectord.php, .ico or from localhost
    SetEnvIf Request_URI "^/ldirectord\.php$" dontlog
    SetEnvIf Request_URI "token" dontlog
    SetEnvIf Remote_Addr "127\.0\.0\.1" dontlog
    SetEnvIf Request_URI \.ico dontlog
    CustomLog /var/log/apache2/access.log combined env=!dontlog
                                
#	CustomLog /var/log/apache2/access.log combined
#
#    Alias /doc/ "/usr/share/doc/"
#    <Directory "/usr/share/doc/">
#        Options Indexes MultiViews FollowSymLinks
#        AllowOverride None
#        Order deny,allow
#        Deny from all
#        Allow from 127.0.0.0/255.0.0.0 ::1/128
#    </Directory>

    # Block .svn directories that might present (SVN checkouts)
    # http://stackoverflow.com/questions/214886
    <DirectoryMatch \.svn>
         Order allow,deny
         Deny from all
    </DirectoryMatch>

    #Block OPTIONS http request (as requested by BestBuy)
    RewriteEngine On
    RewriteCond %{REQUEST_METHOD} ^OPTIONS
    RewriteRule .* - [F]

    #Protect portal with a passwd
    <Location /portal/index.php>
        AuthUserFile /etc/cm/portal.htpasswd
        AuthName "portal"
        AuthType Basic
        <Limit GET>
            #  allow from all
            require valid-user
        </Limit>
    </Location>

    <Directory /opt/cm/www/promo>
        AllowOverride All
    </Directory>

    Header edit Set-Cookie ^(.*)$ $1;HttpOnly;Secure
</VirtualHost>
