Adjust the apache configuration of docs.pagure.org to be ssl only

roles/pagure/frontend/templates/0_pagure.conf

@@ -15,7 +15,19 @@ WSGIDaemonProcess pagure user=git group=git maximum-requests=1000 display-name=p
 {% endif %}
 </VirtualHost>
 
+
 <VirtualHost *:80>
+{% if env == 'pagure-staging' %}
+  ServerName docs.stg.pagure.org
+  Redirect permanent / https://docs.stg.pagure.org/
+{% else %}
+  ServerName docs.pagure.org
+  Redirect permanent / https://docs.pagure.org/
+{% endif %}
+</VirtualHost>
+
+
+<VirtualHost *:443>
 {% if env == 'pagure-staging' %}
   ServerName docs.stg.pagure.org
 {% else %}
@@ -24,6 +36,15 @@ WSGIDaemonProcess pagure user=git group=git maximum-requests=1000 display-name=p
 
   WSGIScriptAlias / /var/www/docs_pagure.wsgi
 
+  SSLEngine on
+  SSLProtocol all -SSLv2 -SSLv3
+  # Use secure TLSv1.1 and TLSv1.2 ciphers
+  Header always add Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
+
+  SSLCertificateFile /etc/pki/tls/certs/docs.pagure.org.crt
+  SSLCertificateChainFile /etc/pki/tls/certs/docs.pagure.org.intermediate.crt
+  SSLCertificateKeyFile /etc/pki/tls/certs/docs.pagure.org.key
+
   Alias /static /usr/lib/python2.7/site-packages/pagure/static/
 
   <Location />
@@ -40,6 +61,7 @@ WSGIDaemonProcess pagure user=git group=git maximum-requests=1000 display-name=p
    </Location>
 </VirtualHost>
 
+
 <VirtualHost *:443>
 {% if env == 'pagure-staging' %}
   ServerName stg.pagure.io