]> git.donarmstrong.com Git - dsa-puppet.git/blob - modules/apache2/files/puppet-ssl-macros
projects / dsa-puppet.git / blob
? search:


c56dd006017efc209168a8d013698697870f7084
[dsa-puppet.git] / modules / apache2 / files / puppet-ssl-macros
1 <IfModule mod_ssl.c>
2   <IfModule mod_macro.c>
3     <Macro common-ssl-HSTS>
4       <IfModule mod_headers.c>
5         # Add two month HSTS header
6         Header always add Strict-Transport-Security "max-age=15552000"
7       </IfModule>
8     </Macro>
9
10     <Macro common-debian-service-ssl $name>
11       SSLEngine on
12       SSLCertificateFile    /etc/ssl/debian/certs/$name.crt
13       SSLCertificateKeyFile /etc/ssl/private/$name.key
14       SSLCertificateChainFile /etc/ssl/debian/certs/$name.crt-chain
15     </Macro>
16
17     <Macro common-debian-service-https-redirect $bind $name>
18       <VirtualHost $bind:80>
19         ServerName $name
20         ServerAdmin debian-admin@lists.debian.org
21
22         CustomLog /var/log/apache2/$name-access.log privacy
23         ErrorLog /var/log/apache2/$name-error.log
24
25         Redirect permanent / https://$name/
26       </VirtualHost>
27     </Macro>
28   </IfModule>
29 </IfModule>
Unnamed repository; edit this file 'description' to name the repository.