diff --git a/manifests/wsgi/apache.pp b/manifests/wsgi/apache.pp
index 7f8f666c..6dc817b5 100644
--- a/manifests/wsgi/apache.pp
+++ b/manifests/wsgi/apache.pp
@@ -365,6 +365,7 @@ define openstacklib::wsgi::apache (
     error_log_file              => $error_log_file,
     error_log_pipe              => $error_log_pipe,
     error_log_syslog            => $error_log_syslog,
+    options                     => ['-Indexes', '+FollowSymLinks','+MultiViews'],
   }
 
   Package<| title == 'httpd' |>
diff --git a/releasenotes/notes/no-directory-listing-8e6270ed0e1eb1d0.yaml b/releasenotes/notes/no-directory-listing-8e6270ed0e1eb1d0.yaml
new file mode 100644
index 00000000..46a1a9c1
--- /dev/null
+++ b/releasenotes/notes/no-directory-listing-8e6270ed0e1eb1d0.yaml
@@ -0,0 +1,6 @@
+---
+security:
+  - Do not authorize directory listing
+fixes:
+  - rhbz#1778052
+  - LP#1854442
diff --git a/spec/defines/openstacklib_wsgi_apache_spec.rb b/spec/defines/openstacklib_wsgi_apache_spec.rb
index 81df3f5d..730853dc 100644
--- a/spec/defines/openstacklib_wsgi_apache_spec.rb
+++ b/spec/defines/openstacklib_wsgi_apache_spec.rb
@@ -94,7 +94,8 @@ describe 'openstacklib::wsgi::apache' do
         :access_log_format           => false,
         :error_log_file              => nil,
         :error_log_pipe              => nil,
-        :error_log_syslog            => nil
+        :error_log_syslog            => nil,
+        :options                     => ['-Indexes', '+FollowSymLinks','+MultiViews'],
       )}
 
       it { should contain_concat("#{platform_params[:httpd_ports_file]}") }