Mercurial > repos > other > Puppet

annotate modules/website/templates/https_core_conf.erb @ 157:c6b1b42f3e4b puppet-3.6

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Move all sites to separate LetsEncrypt certs to make adding future domains easier
author IBBoard <dev@ibboard.co.uk>
date Thu, 30 Mar 2017 20:41:18 +0100
parents 9cf4ebd6d2ba
children c72d2b5f9be2
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
152
ff7ebe76c6e9 Add missing HTTPS site config template
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
1 Header always set Strict-Transport-Security "max-age=16070400; includeSubDomains"
ff7ebe76c6e9 Add missing HTTPS site config template
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
2 Header always set X-Xss-Protection "1; mode=block"
ff7ebe76c6e9 Add missing HTTPS site config template
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
3 Header always set X-Content-Type-Options "nosniff"
ff7ebe76c6e9 Add missing HTTPS site config template
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
4 Header always set X-Frame-Options "SAMEORIGIN"
ff7ebe76c6e9 Add missing HTTPS site config template
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
5
155
e661cb2dd942 Make sure that we still redirect to non-www if we want it
IBBoard <dev@ibboard.co.uk>
parents: 152
diff changeset
6 RewriteCond %{HTTP_HOST} !=<%= @primary_name %>
156
9cf4ebd6d2ba Remove slash in redirect because group catches path slash
IBBoard <dev@ibboard.co.uk>
parents: 155
diff changeset
7 RewriteRule ^(.*)$ https://<%= @primary_name %>$1 [R=301,L]