Define	OCSP_PORT	${OCSP_PORT}
Define	TEST_PORT	${OCSP_PORT}

Include ${srcdir}/base_apache.conf

Include		${srcdir}/cgi_module.conf
LoadModule	env_module		${AP_LIBEXECDIR}/mod_env.so
LoadModule	alias_module		${AP_LIBEXECDIR}/mod_alias.so

# separate log and PID file
CustomLog	logs/${TEST_NAME}.ocsp.access.log combined
ErrorLog	logs/${TEST_NAME}.ocsp.error.log
PidFile		ocsp@PID_AFFIX@.pid

<IfDefine !OCSP_INDEX>
	# Default index file, define OCSP_INDEX in the test specific
	# config to override
	Define	OCSP_INDEX	${PWD}/authority/ocsp_index.txt
</IfDefine>

<VirtualHost _default_:${OCSP_PORT}>
	ScriptAlias /ocsp "${srcdir}/data/ocsp.py"
	# General rules for all OCSP handling
	<Location /ocsp/>
		# Some clients seem to have trouble with chunked
		# encoding, so force HTTP/1.0 for now.
		SetEnv	downgrade-1.0
		<If "-n osenv('OPENSSL')">
			# Pass OPENSSL variable to CGI script if set
			SetEnv	OPENSSL		${OPENSSL}
		</If>
	</Location>
	<Location /ocsp/authority/>
		# certificates and key for ocsp.py
		SetEnv	CA_CERT		${PWD}/authority/x509.pem
		SetEnv	OCSP_INDEX	${OCSP_INDEX}
		SetEnv	OCSP_CERT	${PWD}/authority/ocsp-responder/x509.pem
		SetEnv	OCSP_KEY	${PWD}/authority/ocsp-responder/secret.key
	</Location>
	<Location /ocsp/authority/subca/>
		# certificates and key for ocsp.py
		SetEnv	CA_CERT		${PWD}/authority/subca/x509.pem
		SetEnv	OCSP_INDEX	${PWD}/authority/subca/ocsp_index.txt
		SetEnv	OCSP_CERT	${PWD}/authority/subca/ocsp-responder/x509.pem
		SetEnv	OCSP_KEY	${PWD}/authority/subca/ocsp-responder/secret.key
	</Location>
</VirtualHost>