8924835baf
We don't need to keep using the old Apache 2.2 Satisfy ACL primitive because we are now running Apache 2.4 everywhere. Stick to Require as it simplifies understanding of ACLs by being consistent. Change-Id: Ib2f7ea1909b9798279efc77a42b632e7129bd1d0
44 lines
1.5 KiB
Plaintext
44 lines
1.5 KiB
Plaintext
<VirtualHost *:80>
|
|
ServerName docs.opendev.org
|
|
|
|
RewriteEngine on
|
|
RewriteRule ^/(.*) https://docs.opendev.org/$1 [last,redirect=permanent]
|
|
|
|
ErrorLog /var/log/apache2/docs.opendev.org_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/docs.opendev.org_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
|
|
<IfModule mod_ssl.c>
|
|
<VirtualHost *:443>
|
|
ServerName docs.opendev.org
|
|
|
|
RewriteEngine on
|
|
|
|
SSLCertificateFile /etc/letsencrypt-certs/docs.opendev.org/docs.opendev.org.cer
|
|
SSLCertificateKeyFile /etc/letsencrypt-certs/docs.opendev.org/docs.opendev.org.key
|
|
SSLCertificateChainFile /etc/letsencrypt-certs/docs.opendev.org/ca.cer
|
|
SSLProtocol All -SSLv2 -SSLv3
|
|
# Note: this list should ensure ciphers that provide forward secrecy
|
|
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:!AES256:!aNULL:!eNULL:!MD5:!DSS:!PSK:!SRP
|
|
SSLHonorCipherOrder on
|
|
|
|
|
|
DocumentRoot /afs/openstack.org/project/opendev.org/docs
|
|
<Directory /afs/openstack.org/project/opendev.org/docs>
|
|
Options Indexes FollowSymLinks MultiViews
|
|
Require all granted
|
|
AllowOverride None
|
|
# Allow mod_rewrite rules
|
|
AllowOverrideList Redirect RedirectMatch
|
|
ErrorDocument 404 /errorpage.html
|
|
</Directory>
|
|
|
|
ErrorLog /var/log/apache2/docs.opendev.org_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/docs.opendev.org_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
</IfModule>
|