summaryrefslogtreecommitdiff
path: root/apache2/conf-available
diff options
context:
space:
mode:
Diffstat (limited to 'apache2/conf-available')
-rw-r--r--apache2/conf-available/local-ssl.conf22
1 files changed, 20 insertions, 2 deletions
diff --git a/apache2/conf-available/local-ssl.conf b/apache2/conf-available/local-ssl.conf
index ae0d6fa..4b4a8ec 100644
--- a/apache2/conf-available/local-ssl.conf
+++ b/apache2/conf-available/local-ssl.conf
@@ -1,6 +1,24 @@
+<IfDefine !_TLSHOST>
+ <IfDefine _HOST>
+ Define _TLSHOST ${_HOST}
+ </IfDefine>
+</IfDefine>
+<IfDefine !_TLS_KEY>
+ <IfDefine _TLSHOST>
+ Define _TLS_CERT_CHAIN /var/lib/dehydrated/certs/${_TLSHOST}/fullchain.pem
+ Define _TLS_KEY /var/lib/dehydrated/certs/${_TLSHOST}/privkey.pem
+ </IfDefine>
+</IfDefine>
+
+<If "%{HTTPS} == 'off'">
+ RedirectMatch permanent ^(?!/.well-known/)(.*) https://${_HOST}/$1
+</If>
+
SSLEngine on
-#SSLCertificateFile /etc/ssl/certs/apache2.pem
-#SSLCertificateKeyFile /etc/ssl/private/apache2.pem
+<IfDefine _TLS_KEY>
+ SSLCertificateFile ${_TLS_CERT_CHAIN}
+ SSLCertificateKeyFile ${_TLS_KEY}
+</IfDefine>
SSLCACertificatePath /etc/ssl/certs/
#SSLCARevocationPath /etc/apache2/ssl.crl/
#SSLCARevocationFile /etc/apache2/ssl.crl/ca-bundle.crl
generated by cgit v1.2.3 (git 2.46.0) at 2025-01-13 06:12:11 +0000