blob: 910e20f2c69f1b5edfefc3bb9997e5c51404f933 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
<VirtualHost *:80>
ServerAdmin httpserver-onap.org
ServerName httpserver-onap.org
DocumentRoot /usr/local/apache2/htdocs
<Directory /usr/local/apache2/htdocs>
Options Indexes FollowSymLinks MultiViews
AllowOverride AuthConfig
Require all granted
</Directory>
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>
<IfModule mod_ssl.c>
<VirtualHost *:443>
ServerAdmin httpserver-onap.org
ServerName httpserver-onap.org
DocumentRoot /usr/local/apache2/htdocs
<Directory /usr/local/apache2/htdocs>
SSLVerifyClient optional
SSLVerifyDepth 2
SSLOptions +FakeBasicAuth +StrictRequire
<RequireAll>
Require ssl-verify-client
</RequireAll>
Options Indexes FollowSymLinks MultiViews
AuthType Basic
AuthName "Secure file"
AuthBasicProvider file
AuthUserFile "/usr/local/apache2/passwd/.htpasswd"
Require valid-user
</Directory>
SSLCACertificateFile /etc/apache2/certs/truststore.pem
SSLCertificateFile /etc/apache2/certs/keystore.pem
SSLCertificateKeyFile /etc/apache2/certs/key.pem
SSLEngine on
SSLProtocol -all +TLSv1.2
SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
SSLHonorCipherOrder off
SSLSessionTickets off
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>
</IfModule>
|
