{

my $status = $phpmyadmin{'status'} || 'disabled';

if ($status eq 'enabled'){

    my $access = (($phpmyadmin{'access'} || 'private') eq 'public') ? 'all':"$localAccess $externalSSLAccess";
    my $php =<<'_EOF';
    AddType application/x-httpd-php .php
    php_admin_value openbase_dir /usr/share/phpMyAdmin:/etc/phpMyAdmin:/var/lib/phpMyAdmin
    php_admin_value session.save_path /var/lib/phpMyAdmin/tmp
    php_admin_value post_max_size 100M
    php_admin_value upload_max_filesize 100M
    php_admin_value memory_limit 500M
    php_admin_flag session.use_trans_sid 0
_EOF

    if ($fastcgi_mod eq 'mod_fastcgi'){
      $php =<<'_EOF';
    AddHandler php71-fastcgi .php
_EOF
    }
    elsif ($fastcgi_mod eq 'mod_proxy_fcgi'){
      $php =<<'_EOF';
     <FilesMatch \.php$>
         SetHandler "proxy:unix:/var/run/php-fpm/php71.sock|fcgi://localhost"
     </FilesMatch>
_EOF
    }

$OUT .=<<"END";

<Directory /usr/share/phpMyAdmin>
    SSLRequireSSL
    Options -Indexes
    AllowOverride None
    order deny,allow
    deny from all
    allow from $access
$php
</Directory>

<Directory /usr/share/phpMyAdmin/setup/>
    Order Deny,Allow
    Deny from All
    Allow from None
</Directory>

<Directory /usr/share/phpMyAdmin/libraries/>
    Order Deny,Allow
    Deny from All
    Allow from None
</Directory>

<Directory /usr/share/phpMyAdmin/setup/lib/>
    Order Deny,Allow
    Deny from All
    Allow from None
</Directory>

<Directory /usr/share/phpMyAdmin/setup/frames/>
    Order Deny,Allow
    Deny from All
    Allow from None
</Directory>

END
}
else {
    $OUT .= "# phpmyadmin is disabled";
}

}
