subject:"\[users@httpd\] if statement and ssl directives \(apache 2.4\)"

Re: [users@httpd] if statement and ssl directives (apache 2.4)

2017-12-06 Thread Eric Covener

On Wed, Dec 6, 2017 at 4:10 AM, Adam Cecile  wrote:
> Hi,
>
> I'm trying to achieve a simplier vhost configuration using if statements but
> httpd refuses to start when I put SSL related directive inside the if block:
>
>
> 
>   ServerName www.comptoir-hardware.com
>   ServerAlias www.comptoir-hardware.com
>   ServerAlias new.comptoir-hardware.com
>   ServerAlias comptoir.co
>   ServerAlias www.comptoir.co
>
>   
> SSLEngine on
> SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
> SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
> SSLCACertificateFile  /etc/ssl/certs/comptoir-hardware.com.ca
>   
>
>   
> RedirectMatch (.*) http://www.comptoir-hardware.com$1
>   
>
> 
>

 is evaluated per-request. You can't influence the handshake there.

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

Re: [users@httpd] if statement and ssl directives (apache 2.4)

2017-12-06 Thread Adam Cecile


Hi,

Well it depends who's editing the file. Some people are used to modify 
just the first block and ignore the following. You know what I mean ;-)
This is the reason why I'm trying to turn these Apache configuration 
"nginx way". Less blocks, less lines, less mistakes made.


Adam.

On 12/06/2017 10:56 AM, Gillis J. de Nijs wrote:

Hi Adam,

Simplest, in my opnion, is simplest to read and parse for a human.

What's wrong with:

## One VirtualHost that does everything

    ServerName www.comptoir-hardware.com 



    SSLEngine on
    SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
    SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
    SSLCACertificateFile /etc/ssl/certs/comptoir-hardware.com.ca 



    DocumentRoot ...


## Redirect to main VirtualHost

    ServerName new.comptoir-hardware.com 


    ServerAlias comptoir-hardware.com 
    ServerAlias comptoir.co 
    ServerAlias www.comptoir.co 

    SSLEngine on
    SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
    SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
    SSLCACertificateFile /etc/ssl/certs/comptoir-hardware.com.ca 



    Redirect / https://www.comptoir-hardware.com/


## Redirect http to https main VirtualHost

    ServerName www.comptoir-hardware.com 

    ServerAlias new.comptoir-hardware.com 


    ServerAlias comptoir-hardware.com 
    ServerAlias comptoir.co 
    ServerAlias www.comptoir.co 

    Redirect / https://www.comptoir-hardware.com/


Cheers,
Gillis

On Wed, Dec 6, 2017 at 10:10 AM, Adam Cecile > wrote:


Hi,

I'm trying to achieve a simplier vhost configuration using if
statements but httpd refuses to start when I put SSL related
directive inside the if block:



  ServerName www.comptoir-hardware.com

  ServerAlias www.comptoir-hardware.com

  ServerAlias new.comptoir-hardware.com

  ServerAlias comptoir.co 
  ServerAlias www.comptoir.co 

  
    SSLEngine on
    SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
    SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
    SSLCACertificateFile  /etc/ssl/certs/comptoir-hardware.com.ca

  

  
    RedirectMatch (.*) http://www.comptoir-hardware.com
$1
  




Can you confirm there's a way to do what I want ? Can you see
what's wrong ?

Thanks in advance,


Adam.


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org

For additional commands, e-mail: users-h...@httpd.apache.org

Re: [users@httpd] if statement and ssl directives (apache 2.4)

2017-12-06 Thread Gillis J. de Nijs

Hi Adam,

Simplest, in my opnion, is simplest to read and parse for a human.

What's wrong with:

## One VirtualHost that does everything

ServerName www.comptoir-hardware.com

SSLEngine on
SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
SSLCACertificateFile  /etc/ssl/certs/comptoir-hardware.com.ca

DocumentRoot ...


## Redirect to main VirtualHost

ServerName new.comptoir-hardware.com
ServerAlias comptoir-hardware.com
ServerAlias comptoir.co
ServerAlias www.comptoir.co

SSLEngine on
SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
SSLCACertificateFile  /etc/ssl/certs/comptoir-hardware.com.ca

Redirect / https://www.comptoir-hardware.com/


## Redirect http to https main VirtualHost

ServerName www.comptoir-hardware.com
ServerAlias new.comptoir-hardware.com
ServerAlias comptoir-hardware.com
ServerAlias comptoir.co
ServerAlias www.comptoir.co

Redirect / https://www.comptoir-hardware.com/


Cheers,
Gillis

On Wed, Dec 6, 2017 at 10:10 AM, Adam Cecile  wrote:

> Hi,
>
> I'm trying to achieve a simplier vhost configuration using if statements
> but httpd refuses to start when I put SSL related directive inside the if
> block:
>
>
> 
>   ServerName www.comptoir-hardware.com
>   ServerAlias www.comptoir-hardware.com
>   ServerAlias new.comptoir-hardware.com
>   ServerAlias comptoir.co
>   ServerAlias www.comptoir.co
>
>   
> SSLEngine on
> SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
> SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
> SSLCACertificateFile  /etc/ssl/certs/comptoir-hardware.com.ca
>   
>
>   
> RedirectMatch (.*) http://www.comptoir-hardware.com$1
>   
>
> 
>
>
> Can you confirm there's a way to do what I want ? Can you see what's wrong
> ?
>
> Thanks in advance,
>
>
> Adam.
>
>
> -
> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
> For additional commands, e-mail: users-h...@httpd.apache.org
>
>

[users@httpd] if statement and ssl directives (apache 2.4)

2017-12-06 Thread Adam Cecile


Hi,

I'm trying to achieve a simplier vhost configuration using if statements 
but httpd refuses to start when I put SSL related directive inside the 
if block:




  ServerName www.comptoir-hardware.com
  ServerAlias www.comptoir-hardware.com
  ServerAlias new.comptoir-hardware.com
  ServerAlias comptoir.co
  ServerAlias www.comptoir.co

  
    SSLEngine on
    SSLCertificateFile /etc/ssl/certs/comptoir-hardware.com.crt
    SSLCertificateKeyFile /etc/ssl/private/comptoir-hardware.com.key
    SSLCACertificateFile  /etc/ssl/certs/comptoir-hardware.com.ca
  

  
    RedirectMatch (.*) http://www.comptoir-hardware.com$1
  




Can you confirm there's a way to do what I want ? Can you see what's wrong ?

Thanks in advance,


Adam.


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

Re: [users@httpd] if statement and ssl directives (apache 2.4)

Re: [users@httpd] if statement and ssl directives (apache 2.4)

Re: [users@httpd] if statement and ssl directives (apache 2.4)

[users@httpd] if statement and ssl directives (apache 2.4)

4 matches

Site Navigation

Mail list logo

Footer information