# Managed by puppet
################################################################################
# HTTP section
#
# No HTTP is available on this VHost - redirecting to HTTPS
#
<VirtualHost *:80>
ServerName hotel.stwalkerster.co.uk
ServerAdmin webmaster@hotel.stwalkerster.co.uk
DocumentRoot /var/www/stwalkerster/hotel.stwalkerster.co.uk
<Directory /var/www/stwalkerster/hotel.stwalkerster.co.uk>
Options none
AllowOverride none
Require all denied
</Directory>
ErrorLog /var/log/apache2/hotel.stwalkerster.co.uk_error.log
LogLevel warn
CustomLog /var/log/apache2/hotel.stwalkerster.co.uk_access.log combined
ServerSignature Off
Redirect permanent / https://hotel.stwalkerster.co.uk/
# disable php
php_value engine off
</VirtualHost>
################################################################################
# HTTPS section
<VirtualHost *:443>
ServerName hotel.stwalkerster.co.uk
ServerAdmin webmaster@hotel.stwalkerster.co.uk
DocumentRoot /var/www/stwalkerster/hotel.stwalkerster.co.uk
<Directory /var/www/stwalkerster/hotel.stwalkerster.co.uk>
Options
AllowOverride
Require all granted
</Directory>
ErrorLog /var/log/apache2/hotel.stwalkerster.co.uk_error.log
LogLevel warn
CustomLog /var/log/apache2/hotel.stwalkerster.co.uk_access.log combined
ServerSignature Off
SSLEngine on
# Let's Encrypt
SSLCertificateFile /etc/letsencrypt/live/hotel.stwalkerster.co.uk/cert.pem
SSLCertificateChainFile /etc/letsencrypt/live/hotel.stwalkerster.co.uk/chain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/hotel.stwalkerster.co.uk/privkey.pem
# strict transport security
Header always set Strict-Transport-Security "max-age=15768000;"
# includefile
# specials
SetEnvIfNoCase ^Authorization$ "(.+)" HTTP_AUTHORIZATION=$1
<FilesMatch \.php$>
SetHandler "proxy:fcgi://127.0.0.1:30001/"
</FilesMatch>
# disable php
php_value engine off
</VirtualHost>