Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

libravatar: specify HSTS with IncludeSubDomains

Browse source
This commit is contained in:
clime 2019-02-21 14:37:27 +01:00
parent 685bdf987f
commit 36b2550810
1 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
roles/libravatar/templates/httpd/libravatar.conf
View file

@ -23,7 +23,7 @@ RewriteEngine on
SSLCertificateFile /etc/letsencrypt/live/{{ server_seccdn_name }}/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/{{ server_seccdn_name }}/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/{{ server_seccdn_name }}/fullchain.pem
Header always add Strict-Transport-Security "max-age=31536000; preload"
Header always add Strict-Transport-Security "max-age=31536000; preload; includeSubDomains"
RewriteRule ^/\.well-known/(.*) /var/www/html/.well-known/$1 [L]
@ -36,7 +36,7 @@ RewriteEngine on
SSLCertificateFile /etc/letsencrypt/live/{{ server_name }}/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/{{ server_name }}/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/{{ server_name }}/fullchain.pem
Header always add Strict-Transport-Security "max-age=31536000; preload"
Header always add Strict-Transport-Security "max-age=31536000; preload; includeSubDomains"
RewriteRule ^/\.well-known/(.*) /var/www/html/.well-known/$1 [L]
@ -49,7 +49,7 @@ RewriteEngine on
SSLCertificateFile /etc/letsencrypt/live/{{ server_name }}/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/{{ server_name }}/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/{{ server_name }}/fullchain.pem
Header always add Strict-Transport-Security "max-age=31536000; preload"
Header always add Strict-Transport-Security "max-age=31536000; preload; includeSubDomains"
RewriteRule "^/?(.*)" "https://{{ server_name }}/$1" [L,R=301,NE]
</VirtualHost>