Is it okay to modify /etc/httpd/conf.d/ipa-rewrite.conf in order to put
the WebGUI behind a Loadbalancer? Or will it break something I am not
aware of?
Modified version looks like this:
> # VERSION 7 - DO NOT REMOVE THIS LINE
>
> RewriteEngine on
>
> RequestHeader edit Referer ^https://ipa\.linux\.mydomain\.at/
https://pipa08.linux.mydomain.at/
>
> # By default forward all requests to /ipa. If you don't want IPA
> # to be the default on your web server comment this line out.
> #RewriteRule ^/$
https://pipa08.linux.mydomain.at/ipa/ui [L,NC,R=301]
>
> # Redirect to the fully-qualified hostname. Not redirecting to secure
> # port so configuration files can be retrieved without requiring SSL.
> #RewriteCond %{HTTP_HOST} !^pipa08.linux.mydomain.at$ [NC]
> #RewriteCond %{HTTP_HOST} !^ipa-ca.linux.mydomain.at$ [NC]
> #RewriteRule ^/ipa/(.*)
http://pipa08.linux.mydomain.at/ipa/$1 [L,R=301]
>
> # Redirect to the secure port if not displaying an error or retrieving
> # configuration.
> #RewriteCond %{SERVER_PORT} !^443$
> #RewriteCond %{REQUEST_URI} !^/ipa/(errors|config|crl)
> #RewriteCond %{REQUEST_URI}
!^/ipa/[^\?]+(\.js|\.css|\.png|\.gif|\.ico|\.woff|\.svg|\.ttf|\.eot)$
> #RewriteRule ^/ipa/(.*)
https://pipa08.linux.mydomain.at/ipa/$1 [L,R=301,NC]
>
> RewriteCond %{HTTP_HOST} ^ipa-ca.linux.mydomain.at$ [NC]
> RewriteCond %{REQUEST_URI} !^/ipa/crl
> RewriteCond %{REQUEST_URI} !^/(ca|kra|pki|acme)
> RewriteRule ^/(.*)
https://pipa08.linux.mydomain.at/$1 [L,R=301]
>
> # Rewrite for plugin index, make it like it's a static file
> RewriteRule ^/ipa/ui/js/freeipa/plugins.js$ /ipa/wsgi/plugins.py [PT]