Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #openstack-dashboard.conf
- <VirtualHost *:80>
- ServerName dashboard.example.com
- <IfModule mod_rewrite.c>
- RewriteEngine On
- RewriteCond %{HTTPS} off
- RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
- </IfModule>
- <IfModule !mod_rewrite.c>
- RedirectPermanent / https://dashboard.example.com
- </IfModule>
- </VirtualHost>
- <VirtualHost *:443>
- ServerName dashboard.example.com
- SSLEngine On
- # Remember to replace certificates and keys with valid paths in your environment
- SSLCertificateFile /etc/apache2/ssl/dashboard.crt
- SSLCACertificateFile /etc/apache2/ssl/dashboardca.crt
- SSLCertificateKeyFile /etc/apache2/ssl/dashboard.key
- SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
- # HTTP Strict Transport Security (HSTS) enforces that all communications
- # with a server go over SSL. This mitigates the threat from attacks such
- # as SSL-Strip which replaces links on the wire, stripping away https prefixes
- # and potentially allowing an attacker to view confidential information on the
- # wire
- Header add Strict-Transport-Security "max-age=15768000"
- WSGIScriptAlias /horizon /usr/share/openstack-dashboard/openstack_dashboard/wsgi/django.wsgi
- WSGIDaemonProcess horizon user=horizon group=horizon processes=3 threads=10
- WSGIProcessGroup horizon
- Alias /static /usr/share/openstack-dashboard/openstack_dashboard/static/
- <Directory /usr/share/openstack-dashboard/openstack_dashboard/wsgi>
- Order allow,deny
- Allow from all
- </Directory>
- </VirtualHost>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement