b2eb6c7003
If you currently hit https://static.opendev.org you get redirected to the default site, which is just the first site in alphabetical order, which happens to be governance.openstack.org. Add a 00-static.opendev.org.conf file so this is the default site. It will just serve up the top-level afs directory. Change-Id: Icdcee962b76545c12e84d4cadb0b60a68cabe38b
44 lines
1.4 KiB
Plaintext
Executable File
44 lines
1.4 KiB
Plaintext
Executable File
Define AFS_ROOT /afs/openstack.org/
|
|
|
|
<VirtualHost *:80>
|
|
ServerName static.opendev.org
|
|
ServerAlias static.openstack.org
|
|
RewriteEngine On
|
|
RewriteRule ^/(.*) https://static.opendev.org/$1 [last,redirect=permanent]
|
|
LogLevel warn
|
|
ErrorLog /var/log/apache2/static.opendev.org_error.log
|
|
CustomLog /var/log/apache2/static.opendev.org_access.log combined
|
|
ServerSignature Off
|
|
</VirtualHost>
|
|
|
|
<IfModule mod_ssl.c>
|
|
<VirtualHost *:443>
|
|
|
|
ServerName static.opendev.org
|
|
ServerAlias static.openstack.org
|
|
|
|
DocumentRoot ${AFS_ROOT}
|
|
|
|
SSLCertificateFile /etc/letsencrypt-certs/static.opendev.org/static.opendev.org.cer
|
|
SSLCertificateKeyFile /etc/letsencrypt-certs/static.opendev.org/static.opendev.org.key
|
|
SSLCertificateChainFile /etc/letsencrypt-certs/static.opendev.org/ca.cer
|
|
SSLProtocol All -SSLv2 -SSLv3
|
|
# Note: this list should ensure ciphers that provide forward secrecy
|
|
SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:!AES256:!aNULL:!eNULL:!MD5:!DSS:!PSK:!SRP
|
|
SSLHonorCipherOrder on
|
|
|
|
<Directory ${AFS_ROOT}>
|
|
Options Indexes FollowSymLinks MultiViews
|
|
AllowOverrideList Redirect RedirectMatch
|
|
Satisfy Any
|
|
Require all granted
|
|
</Directory>
|
|
|
|
LogLevel warn
|
|
ErrorLog /var/log/apache2/static.opendev.org_error.log
|
|
CustomLog /var/log/apache2/static.opendev.org_access.log combined
|
|
ServerSignature Off
|
|
|
|
</VirtualHost>
|
|
</IfModule>
|