8924835baf
We don't need to keep using the old Apache 2.2 Satisfy ACL primitive because we are now running Apache 2.4 everywhere. Stick to Require as it simplifies understanding of ACLs by being consistent. Change-Id: Ib2f7ea1909b9798279efc77a42b632e7129bd1d0
42 lines
1.5 KiB
Plaintext
42 lines
1.5 KiB
Plaintext
<VirtualHost *:80>
|
|
ServerName developer.openstack.org
|
|
|
|
RewriteEngine on
|
|
RewriteRule ^/(.*) https://developer.openstack.org/$1 [last,redirect=permanent]
|
|
|
|
ErrorLog /var/log/apache2/developer.openstack.org_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/developer.openstack.org_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
|
|
<IfModule mod_ssl.c>
|
|
<VirtualHost *:443>
|
|
ServerName developer.openstack.org
|
|
|
|
RewriteEngine on
|
|
|
|
SSLCertificateFile /etc/letsencrypt-certs/developer.openstack.org/developer.openstack.org.cer
|
|
SSLCertificateKeyFile /etc/letsencrypt-certs/developer.openstack.org/developer.openstack.org.key
|
|
SSLCertificateChainFile /etc/letsencrypt-certs/developer.openstack.org/ca.cer
|
|
SSLProtocol All -SSLv2 -SSLv3
|
|
# Note: this list should ensure ciphers that provide forward secrecy
|
|
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:!AES256:!aNULL:!eNULL:!MD5:!DSS:!PSK:!SRP
|
|
SSLHonorCipherOrder on
|
|
|
|
DocumentRoot /afs/openstack.org/developer-docs
|
|
<Directory /afs/openstack.org/developer-docs>
|
|
Options Indexes FollowSymLinks MultiViews
|
|
Require all granted
|
|
# Allow mod_rewrite rules
|
|
AllowOverride FileInfo
|
|
ErrorDocument 404 /errorpage.html
|
|
</Directory>
|
|
|
|
ErrorLog /var/log/apache2/developer.openstack.org_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/developer.openstack.org_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
</IfModule>
|