# Configuration for {{ nextcloud.url }} # vim:ft=apache: # Accept connections from non-SNI clients SSLStrictSNIVHostCheck off # Website configuration ServerName {{ nextcloud.url }} Redirect permanent / https://{{ nextcloud.url }} SSLEngine on SSLCertificateFile /etc/pki/cert/crt/{{ nextcloud.url }}.crt SSLCertificateKeyFile /etc/pki/cert/private/{{ nextcloud.url }}.key SSLCertificateChainFile /etc/pki/cert/crt/{{ nextcloud.url}}-fullchain.crt SSLProtocol {{ ssl_protocol }} SSLCipherSuite {{ ssl_cipher_suite }} \ SSLOptions +StdEnvVars SSLOptions +StdEnvVars ServerName {{ nextcloud.url }} DocumentRoot {{ nextcloud_webroot }} Require all granted AllowOverride All Options MultiViews FollowSymlinks Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"