[people/pmueller/ipfire-2.x.git] / config / httpd / vhosts.d / ipfire-interface.conf

<VirtualHost *:81>

    DocumentRoot /srv/web/ipfire/html

    RewriteEngine on
    RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS)
    RewriteRule .* - [F]

    Header always set X-Content-Type-Options nosniff
    Header always set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'"
    Header always set Referrer-Policy strict-origin
    Header always set X-Frame-Options sameorigin

    <Directory /srv/web/ipfire/html>
        Options ExecCGI
        AllowOverride None
        Require all granted
    </Directory>
    <DirectoryMatch "/srv/web/ipfire/html/(graphs|sgraph)">
        Options SymLinksIfOwnerMatch
        RewriteEngine on
        RewriteCond %{HTTPS} off
        RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L]
    </DirectoryMatch>
    ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/
    <Directory /srv/web/ipfire/cgi-bin>
        Options SymLinksIfOwnerMatch
        RewriteEngine on
        RewriteCond %{HTTPS} off
        RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L]
    </Directory>
    Alias /updatecache/ /var/updatecache/
	<Directory /var/updatecache>
		 Options ExecCGI
		 AllowOverride None
		 Require all granted
	</Directory>
    Alias /repository/ /var/urlrepo/
	<Directory /var/urlrepo>
		 Options ExecCGI
		 AllowOverride None
		 Require all granted
	</Directory>
    Alias /wpad.dat /srv/web/ipfire/html/proxy.pac
</VirtualHost>
Commit	Line	Data
90c973a6 MT	1	<VirtualHost *:81>
90c973a6 MT	2
d733119b	3	DocumentRoot /srv/web/ipfire/html
90c973a6 MT	4
	5	RewriteEngine on
	6	RewriteCond %{REQUEST_METHOD} ^(TRACE\|TRACK\|OPTIONS)
	7	RewriteRule .* - [F]
	8
0cabaf35	9	Header always set X-Content-Type-Options nosniff
eb6d7151	10	Header always set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'"
583687a8	11	Header always set Referrer-Policy strict-origin
be8afd15	12	Header always set X-Frame-Options sameorigin
0cabaf35	13
d733119b	14	<Directory /srv/web/ipfire/html>
90c973a6 MT	15	Options ExecCGI
90c973a6 MT	16	AllowOverride None
d41fe99f	17	Require all granted
90c973a6	18	</Directory>
d733119b	19	<DirectoryMatch "/srv/web/ipfire/html/(graphs\|sgraph)">
6c6c1e3f PM	20	Options SymLinksIfOwnerMatch
	21	RewriteEngine on
	22	RewriteCond %{HTTPS} off
	23	RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L]
90c973a6	24	</DirectoryMatch>
d733119b MT	25	ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/
d733119b MT	26	<Directory /srv/web/ipfire/cgi-bin>
6c6c1e3f PM	27	Options SymLinksIfOwnerMatch
	28	RewriteEngine on
	29	RewriteCond %{HTTPS} off
	30	RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L]
90c973a6	31	</Directory>
381f2e71	32	Alias /updatecache/ /var/updatecache/
e9007fef CS	33	<Directory /var/updatecache>
	34	Options ExecCGI
	35	AllowOverride None
d41fe99f	36	Require all granted
e9007fef CS	37	</Directory>
	38	Alias /repository/ /var/urlrepo/
	39	<Directory /var/urlrepo>
	40	Options ExecCGI
	41	AllowOverride None
d41fe99f	42	Require all granted
e9007fef	43	</Directory>
5af32f5c	44	Alias /wpad.dat /srv/web/ipfire/html/proxy.pac
381f2e71	45	</VirtualHost>