1 # do not modify - this file is maintained via puppet
3 AddType application/font-woff2 .woff2
5 Use common-debian-service-https-redirect * debconf20.debconf.org
7 WSGIDaemonProcess debconf20 \
8 processes=3 threads=2 \
9 user=www-data group=debconf-web maximum-requests=750 umask=0007 display-name=wsgi-debconf20.debconf.org \
10 python-path=/srv/debconf-web/debconf20.debconf.org/dc20/:/srv/debconf-web/debconf20.debconf.org/dc20/ve/lib/python3.5/site-packages/
13 ServerAdmin admin@debconf.org
14 ServerName debconf20.debconf.org
16 ErrorLog /var/log/apache2/debconf20.debconf.org-error.log
17 CustomLog /var/log/apache2/debconf20.debconf.org-access.log combined
19 Use common-debian-service-ssl debconf20.debconf.org
22 Header always set Referrer-Policy "same-origin"
23 Header always set X-Content-Type-Options nosniff
24 Header always set X-XSS-Protection "1; mode=block"
25 # Header always set Access-Control-Allow-Origin: "*"
28 SSLCACertificateFile /var/lib/dsa/sso/ca.crt
29 SSLCARevocationCheck chain
30 SSLCARevocationFile /var/lib/dsa/sso/ca.crl
32 WSGIProcessGroup debconf20
33 WSGIScriptAlias / /srv/debconf-web/debconf20.debconf.org/dc20/wsgi.py
34 WSGIPassAuthorization On
36 <Directory /srv/debconf-web/debconf20.debconf.org/dc20>
42 Alias /static/ /srv/debconf-web/debconf20.debconf.org/dc20/localstatic/
43 Alias /favicon.ico /srv/debconf-web/debconf20.debconf.org/dc20/localstatic/img/favicon/favicon.ico
44 <Directory /srv/debconf-web/debconf20.debconf.org/dc20/localstatic/>
47 # A little hacky, but it means we won't accidentally catch non-hashed filenames
48 <FilesMatch ".*\.[0-9a-f]{12}\.[a-z0-9]{2,5}$">
50 ExpiresDefault "access plus 1 year"
54 Alias /media/ /srv/debconf-web/debconf20.debconf.org/dc20/media/
55 <Directory /srv/debconf-web/debconf20.debconf.org/dc20/media/>
59 <Location /accounts/debian-login>
60 SSLOptions +StdEnvVars
61 # Allow access if one does not have a valid certificate
62 SSLVerifyClient optional
projects / mirror / dsa-puppet.git / blob