51 lines
1.8 KiB
Plaintext
51 lines
1.8 KiB
Plaintext
<VirtualHost *:80>
|
|
ServerName gating.dev
|
|
ServerAlias www.gating.dev
|
|
|
|
RewriteEngine on
|
|
RewriteRule ^/(.*) https://gating.dev/$1 [last,redirect=permanent]
|
|
|
|
ErrorLog /var/log/apache2/gating.dev_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/gating.dev_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
|
|
<IfModule mod_ssl.c>
|
|
<VirtualHost *:443>
|
|
ServerName gating.dev
|
|
ServerAlias www.gating.dev
|
|
|
|
RewriteEngine on
|
|
|
|
RewriteCond %{HTTP_HOST} !^gating\.dev [nocase]
|
|
RewriteRule ^/(.*) https://gating.dev/$1 [last,redirect=permanent]
|
|
|
|
SSLEngine on
|
|
SSLProtocol All -SSLv2 -SSLv3
|
|
# Once the machine is using something to terminate TLS that supports ECDHE
|
|
# then this should be edited to remove the RSA+AESGCM:RSA+AES so that PFS
|
|
# only is guarenteed.
|
|
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:!AES256:!aNULL:!eNULL:!MD5:!DSS:!PSK:!SRP
|
|
SSLHonorCipherOrder on
|
|
SSLCertificateFile /etc/letsencrypt-certs/gating.dev/gating.dev.cer
|
|
SSLCertificateKeyFile /etc/letsencrypt-certs/gating.dev/gating.dev.key
|
|
SSLCertificateChainFile /etc/letsencrypt-certs/gating.dev/ca.cer
|
|
|
|
DocumentRoot /afs/openstack.org/project/zuul-ci.org/gating.dev/www
|
|
<Directory /afs/openstack.org/project/zuul-ci.org/gating.dev/www>
|
|
Options Indexes FollowSymLinks MultiViews
|
|
Require all granted
|
|
AllowOverride None
|
|
# Allow mod_rewrite rules
|
|
AllowOverrideList Redirect RedirectMatch
|
|
ErrorDocument 404 /errorpage.html
|
|
</Directory>
|
|
|
|
ErrorLog /var/log/apache2/gating.dev_error.log
|
|
LogLevel warn
|
|
CustomLog /var/log/apache2/gating.dev_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
</IfModule>
|