:80> ServerAdmin <%= scope.lookupvar("storyboard::serveradmin") %> ErrorLog ${APACHE_LOG_DIR}/storyboard-error.log LogLevel warn CustomLog ${APACHE_LOG_DIR}/storyboard-access.log combined Redirect / https://<%= scope.lookupvar("storyboard::vhost_name") %>/ :443> ServerName <%= scope.lookupvar("storyboard::vhost_name") %> ServerAdmin <%= scope.lookupvar("storyboard::serveradmin") %> ErrorLog ${APACHE_LOG_DIR}/storyboard-ssl-error.log LogLevel warn CustomLog ${APACHE_LOG_DIR}/storyboard-ssl-access.log combined SSLEngine on SSLCertificateFile <%= scope.lookupvar("storyboard::ssl_cert_file") %> SSLCertificateKeyFile <%= scope.lookupvar("storyboard::ssl_key_file") %> <% if scope.lookupvar("storyboard::ssl_chain_file") != "" %> SSLCertificateChainFile <%= scope.lookupvar("storyboard::ssl_chain_file") %> <% end %> SSLOptions +StdEnvVars SSLOptions +StdEnvVars BrowserMatch "MSIE [2-6]" \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 # MSIE 7 and newer should be able to use keepalive BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown DocumentRoot /var/lib/storyboard/www WSGIDaemonProcess storyboard user=storyboard group=storyboard threads=5 python-path=/usr/local/lib/python2.7/dist-packages WSGIScriptAlias /api /usr/local/lib/python2.7/dist-packages/storyboard/api/app.wsgi WSGIPassAuthorization On # The app.wsgi file has to be accessible by apache. It won't # be visible to clients because of the DocumentRoot though. WSGIProcessGroup storyboard WSGIApplicationGroup %{GLOBAL} Order deny,allow Allow from all