Add back apache2.conf

2018-01-08 17:13:24 +01:00 · 2018-01-08 17:13:24 +01:00 · 9304ecba6e
parent 6a5fbd7e05
commit 9304ecba6e
1 changed files with 35 additions and 0 deletions
--- a/docs/apach2.conf
+++ b/docs/apach2.conf
@ -0,0 +1,35 @@
+# Please make sure that you have the modules mod_ssl, mod_headers,
+# mod_proxy and mod_proxy_http enabled. If not, you can use following
+# command:
+# $ sudo a2enmod ssl headers proxy proxy_http
+
+<VirtualHost *:443>
+        ServerName localhost
+
+        # Enable secure communication using HTTPS
+        # Adjust the paths to the certificates files to your environment
+        SSLEngine on
+        SSLCertificateFile     /etc/ssl/certs/ssl-cert-snakeoil.pem
+        SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key
+
+        # Tell tusd that the HTTPS protocol is used, in order to
+        # allow constructing correct upload URLs.
+        RequestHeader set X-Forwarded-Proto "https"
+
+        # Pass requests to tusd server
+        ProxyPass /files http://localhost:1080/files
+        ProxyPassReverse /files http://localhost:1080/files
+</VirtualHost>
+
+# This SSL configuration has been taken from Mozilla SSL Generator:
+# https://mozilla.github.io/server-side-tls/ssl-config-generator/?server=nginx-1.10.1&openssl=1.0.1e&hsts=no&profile=intermediate
+SSLProtocol             all -SSLv3
+SSLCipherSuite          ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-$
+SSLHonorCipherOrder     on
+SSLCompression          off
+
+# OCSP Stapling, only in httpd 2.3.3 and later
+SSLUseStapling          on
+SSLStaplingResponderTimeout 5
+SSLStaplingReturnResponderErrors off
+SSLStaplingCache        shmcb:/var/run/ocsp(128000)