This is my apache otrs.conf file to handle teh ssl redirects.
Perhaps something in here is jacked up?
# --
# added for OTRS (http://otrs.org/)
# $Id: apache2-httpd-new.include.conf,v 1.5 2008/11/10 11:08:55 ub Exp $
# --
# agent, admin and customer frontend
<VirtualHost *:80>
ScriptAlias /otrs/ "/opt/otrs/bin/cgi-bin/"
Alias /otrs-web/ "/opt/otrs/var/httpd/htdocs/"
Alias /agents "/opt/otrs/var/httpd/htdocs/"
DocumentRoot /opt/otrs
ServerAdmin techsupport@standard.k12.ca.us
ServerAlias support support.standard.k12.ca.us
ServerName support.standard.k12.ca.us
ErrorLog logs/support-error_log
CustomLog logs/support-access_log common
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
# if mod_perl is used
<IfModule mod_perl.c>
# load all otrs modules
Perlrequire /opt/otrs/scripts/apache2-perl-startup.pl
# Apache::Reload - Reload Perl Modules when Changed on Disk
PerlModule Apache2::Reload
PerlInitHandler Apache2::Reload
PerlModule Apache2::RequestRec
# set mod_perl2 options
<Location /otrs>
# ErrorDocument 403 /otrs/customer.pl
ErrorDocument 403 /otrs/index.pl
SetHandler perl-script
PerlResponseHandler ModPerl::Registry
Options +ExecCGI
PerlOptions +ParseHeaders
PerlOptions +SetupEnv
Order allow,deny
Allow from all
</Location>
</IfModule>
# directory settings
<Directory "/opt/otrs/bin/cgi-bin/">
AllowOverride None
Options +ExecCGI -Includes
Order allow,deny
Allow from all
</Directory>
<Directory "/opt/otrs/var/httpd/htdocs/">
AllowOverride None
Order allow,deny
Allow from all
</Directory>
<IfModule mod_headers.c>
<Directory "/opt/otrs/var/httpd/htdocs/skins/*/*/css-cache">
<FilesMatch "\.(css|CSS)$">
Header set Cache-Control "max-age=2592000 must-revalidate"
</FilesMatch>
</Directory>
<Directory "/opt/otrs/var/httpd/htdocs/js_new/js-cache">
<FilesMatch "\.(js|JS)$">
Header set Cache-Control "max-age=2592000 must-revalidate"
</FilesMatch>
</Directory>
</IfModule>
</VirtualHost>
<VirtualHost *:443>
SSLEngine on
SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
SSLCertificateFile /etc/httpd/cacerts/standard.k12.ca.us.crt
SSLCertificateKeyFile /etc/httpd/cacerts/standard.k12.ca.us.key
SSLCertificateChainFile /etc/httpd/cacerts/gd_bundle.crt
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
ScriptAlias /otrs/ "/opt/otrs/bin/cgi-bin/"
Alias /otrs-web/ "/opt/otrs/var/httpd/htdocs/"
Alias /agents "/opt/otrs/var/httpd/htdocs/"
DocumentRoot /opt/otrs
ServerAdmin techsupport@standard.k12.ca.us
ServerAlias support support.standard.k12.ca.us
ServerName support.standard.k12.ca.us
ErrorLog logs/support-error_log
CustomLog logs/support-access_log common
# if mod_perl is used
<IfModule mod_perl.c>
# load all otrs modules
Perlrequire /opt/otrs/scripts/apache2-perl-startup.pl
# Apache::Reload - Reload Perl Modules when Changed on Disk
PerlModule Apache2::Reload
PerlInitHandler Apache2::Reload
PerlModule Apache2::RequestRec
# set mod_perl2 options
<Location /otrs>
# ErrorDocument 403 /otrs/customer.pl
ErrorDocument 403 /otrs/index.pl
SetHandler perl-script
PerlResponseHandler ModPerl::Registry
Options +ExecCGI
PerlOptions +ParseHeaders
PerlOptions +SetupEnv
Order allow,deny
Allow from all
</Location>
</IfModule>
# directory settings
<Directory "/opt/otrs/bin/cgi-bin/">
AllowOverride None
Options +ExecCGI -Includes
Order allow,deny
Allow from all
</Directory>
<Directory "/opt/otrs/var/httpd/htdocs/">
AllowOverride None
Order allow,deny
Allow from all
</Directory>
<IfModule mod_headers.c>
<Directory "/opt/otrs/var/httpd/htdocs/skins/*/*/css-cache">
<FilesMatch "\.(css|CSS)$">
Header set Cache-Control "max-age=2592000 must-revalidate"
</FilesMatch>
</Directory>
<Directory "/opt/otrs/var/httpd/htdocs/js_new/js-cache">
<FilesMatch "\.(js|JS)$">
Header set Cache-Control "max-age=2592000 must-revalidate"
</FilesMatch>
</Directory>
</IfModule>
</VirtualHost>
# MaxRequestsPerChild (so no apache child will be to big!)
MaxRequestsPerChild 400
From: "Jefferson Davis" <jdavis@standard.k12.ca.us>
To: "User questions and discussions about OTRS." <otrs@otrs.org>
Sent: Thursday, January 6, 2011 4:39:06 PM
Subject: Re: [otrs] Unable to edit automated responses, groups, roles, other admin functions after upgrading to ver 3.04
10.101.1.137 - - [06/Jan/2011:16:33:05 -0800] "GET /otrs/index.pl?Action=AdminAutoResponse HTTP/1.1" 200 14283
10.101.1.137 - - [06/Jan/2011:16:33:30 -0800] "GET /otrs/index.pl?Action=AdminAutoResponse;Subaction=Change;ID=1 HTTP/1.1" 403 307
I have this site redirected to https - maybe I'm somehow "doing it wrong"? the 403 307 is a temporary redirect. Perhaps I just can't? I don't want users logging in w/cleartext
From: "Frank Thommen" <frank.thommen@gmx.net>
To: "User questions and discussions about OTRS." <otrs@otrs.org>
Sent: Wednesday, January 5, 2011 2:35:05 PM
Subject: Re: [otrs] Unable to edit automated responses, groups, roles, other admin functions after upgrading to ver 3.04
Hi Jefferson,
> Getting the following error.
>
> Forbidden
>
> You don't have permission to access /otrs/index.pl on this server.
>
> I have re-re-re-run the permissions script, still no love. Does anyone
> have any ideas as to what I might be missing here?
What are the error messages in the webserver log? If it's not ownership
or permissions of index.pl, then I'd guess something is/went wrong with
the webserver configuration.
frank
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
--
Jefferson K Davis
Technology and Information Systems Manager
Standard School District
1200 North Chester Ave
Bakersfield, CA 93308
661.392.2110 ext 120 (office)
661.392.0681 (fax)
http://district.standard.k12.ca.us
---------------------------------------------------------------------
OTRS mailing list: otrs - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/otrs
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs
--
Jefferson K Davis
Technology and Information Systems Manager
Standard School District
1200 North Chester Ave
Bakersfield, CA 93308
661.392.2110 ext 120 (office)
661.392.0681 (fax)
http://district.standard.k12.ca.us