# DO NOT EDIT - This file is being maintained by Chef
-<% @ports.each do |port| -%>
-<VirtualHost *:<%= port %>>
+<VirtualHost *:80>
ServerName <%= @name %>
<% @aliases.each do |alias_name| -%>
ServerAlias <%= alias_name %>
ServerAdmin webmaster@openstreetmap.org
-<% if port == 443 -%>
+ CustomLog /var/log/apache2/<%= @name %>-access.log combined
+ ErrorLog /var/log/apache2/<%= @name %>-error.log
+
+ RedirectPermanent /.well-known/acme-challenge/ http://acme.openstreetmap.org/.well-known/acme-challenge/
+ RedirectPermanent / https://<%= @name %>/
+</VirtualHost>
+
+<VirtualHost *:443>
+ ServerName <%= @name %>
+<% @aliases.each do |alias_name| -%>
+ ServerAlias <%= alias_name %>
+
+ ServerAdmin webmaster@openstreetmap.org
+
SSLEngine on
+ SSLCertificateFile /etc/ssl/certs/<%= @name %>.pem
+ SSLCertificateKeyFile /etc/ssl/private/<%= @name %>.key
CustomLog /var/log/apache2/<%= @name %>-secure-access.log combined
ErrorLog /var/log/apache2/<%= @name %>-secure-error.log
-<% else -%>
- CustomLog /var/log/apache2/<%= @name %>-access.log combined
- ErrorLog /var/log/apache2/<%= @name %>-error.log
<% end -%>
DocumentRoot <%= @directory %>
php_value post_max_size 100M
RewriteCond %{SERVER_NAME} !=<%= @name %>
-<% if port == 443 -%>
RewriteRule ^/(.*)$ https://<%= @name %>/$1 [R=permanent]
-<% else -%>
- RewriteRule ^/(.*)$ http://<%= @name %>/$1 [R=permanent]
-<% end -%>
RedirectMatch 301 ^/$ /wiki/Main_Page
RewriteCond %{REQUEST_URI} !^/api\.php$
RewriteCond %{REQUEST_URI} !^/opensearch_desc\.php$
RewriteCond %{REQUEST_URI} !^/server-status
+ RewriteCond %{REQUEST_URI} !^/.well-known/
RewriteCond %{LA-U:REQUEST_FILENAME} !-f
RewriteCond %{LA-U:REQUEST_FILENAME} !-d
RewriteRule ^/(.*) /wiki/$1 [R,L]
Require all denied
</Files>
</VirtualHost>
-<% end -%>
projects / chef.git / blobdiff