# Configuration for {{ nextcloud_url }} # vim:ft=apache: # Accept connections from non-SNI clients SSLStrictSNIVHostCheck off # Website configuration ServerName {{ nextcloud_url }} Redirect permanent / https://{{ nextcloud_url }} SSLEngine on SSLCertificateFile /etc/pki/cert/crt/{{ nextcloud_url }}.crt SSLCertificateKeyFile /etc/pki/cert/private/{{ nextcloud_url }}.key SSLCertificateChainFile /etc/pki/cert/crt/{{ nextcloud_url}}-fullchain.crt SSLCipherSuite {{ ssl_cipher_suite }} \ SSLOptions +StdEnvVars SSLOptions +StdEnvVars ServerName {{ nextcloud_url }} DocumentRoot {{ nextcloud_webroot }} Require all granted AllowOverride All Options MultiViews FollowSymlinks Header always set Strict-Transport-Security "max-age=15552000; includeSubDomains"