torn/cable-service
2
2
Fork 0
Code Issues 6 Pull requests Releases Wiki Activity

File di configurazione Apache

Browse source
This commit is contained in:
torn 2017-01-25 00:25:16 +01:00
parent 430baf1303
commit 1a1e8bc7d4
1 changed files with 23 additions and 32 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

55
cable.conf
View file

@ -1,8 +1,21 @@
###
### Apache configuration file for Signal-Server
###
<VirtualHost *:443>
ServerName cable-service-ca.cable.im
SSLEngine On
### VirtualHost for the main service:
# Su cable-service-ca.cable.im serve un certificato valido (letsencrypt).
# È l'hostname a cui si connette Twilio per ottenere le informazioni
# necessarie a fare la verifica del numero tramite chiamata vocale.
SSLCertificateFile /etc/letsencrypt/live/cable-service-ca.cable.im/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/cable-service-ca.cable.im/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateChainFile /etc/letsencrypt/live/cable-service-ca.cable.im/chain.pem
ProxyVia On
ProxyPreserveHost On
ProxyPass / http://127.0.0.1:4242/
ProxyPassReverse / http://127.0.0.1:4242/
</VirtualHost>
<VirtualHost *:443>
ServerName cable-service.cable.im
@ -27,31 +40,6 @@
ProxyPassReverse / ws://127.0.0.1:4242/
</VirtualHost>
### VirtualHost for letting Twilio call back:
<VirtualHost *:443>
ServerName cable-service-ca.cable.im
SSLEngine On
# Su cable-service-ca.cable.im serve un certificato valido (letsencrypt).
# È l'hostname a cui si connette Twilio per ottenere le informazioni
# necessarie a fare la verifica del numero tramite chiamata vocale.
SSLCertificateFile /etc/letsencrypt/live/cable-service-ca.cable.im/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/cable-service-ca.cable.im/privkey.pem
Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateChainFile /etc/letsencrypt/live/cable-service-ca.cable.im/chain.pem
ProxyVia On
ProxyPreserveHost On
ProxyPass / http://127.0.0.1:4242/
ProxyPassReverse / http://127.0.0.1:4242/
</VirtualHost>
### Giphy proxy:
<VirtualHost *:80>
ServerName giphy.com
ServerAlias *.giphy.com
@ -59,11 +47,14 @@
ProxyVia Block
ProxyPreserveHost On
# The AllowConnect directive specifies a list of ports
# to which the proxy CONNECT method may connect.
## The AllowConnect directive specifies a list of ports
## to which the proxy CONNECT method may connect.
AllowConnect 443
# Only allow HTTP CONNECT requests, denying the others (GET, POST, ...).
## Only ever allow incoming HTTP CONNECT requests.
## Explicitly deny other request types like GET, POST, etc.
## This tells Apache to return a 403 Forbidden if this virtual
## host receives anything other than an HTTP CONNECT.
<Location />
<LimitExcept CONNECT>
Order allow,deny