WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-29 04:51:16 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
7a9bc5aaa00a13efd62c3707a6b60abceebac1b2
fedora-infra_ansible/roles/httpd/reverseproxy/templates/reversepassproxy.usernameid.conf
Patrick Uiterwijk bc95beb269 Split id.fp.o and username.id.fp.o for TLS/h2 reasons. Start with staging 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2017-11-24 22:20:25 +00:00

26 lines
854 B
Plaintext
Raw Blame History

RequestHeader unset Expect early
RequestHeader set X-Forwarded-Scheme https early
RequestHeader set X-Forwarded-Proto https early
# Cannot redirect to HTTPS for *.id.fedoraproject.org or set
# "includeSubdomains", because relying parties need to be able to access
# username.id.fedoraproject.org via plain HTTP
RewriteEngine on
RewriteMap lowercase int:tolower
{% if env == "staging" %}
RewriteCond ${lowercase:%{SERVER_NAME}} ^[a-z0-9-]+\.id\.stg\.fedoraproject\.org$
{% else %}
RewriteCond ${lowercase:%{SERVER_NAME}} ^[a-z0-9-]+\.id\.fedoraproject\.org$
{% endif %}
RewriteRule ^(.+) ${lowercase:%{SERVER_NAME}}$1 [C]
{% if env == "staging" %}
RewriteRule ^([a-z0-9-]+)\.id\.stg\.fedoraproject\.org/.* {{proxyurl}}/openid/id/$1/ [P,L]
{% else %}
RewriteRule ^([a-z0-9-]+)\.id\.fedoraproject\.org/.* {{proxyurl}}/openid/id/$1/ [P]
{% endif %}
Reference in New Issue View Git Blame Copy Permalink