diff options
| author | Gene Wood <gene_wood@cementhorizon.com> | 2015-02-26 00:42:00 -0800 |
|---|---|---|
| committer | Gene Wood <gene_wood@cementhorizon.com> | 2015-02-26 00:42:00 -0800 |
| commit | 67151c41d7f7963c2c93795e8ff31da65d134e24 (patch) | |
| tree | 4a893106fbf2601e282391d6427f0075194ef43f /ssl-config-generator | |
| parent | 965d84b464ac524ba2f24c4947f7284b81f8f307 (diff) | |
| download | server-side-tls-67151c41d7f7963c2c93795e8ff31da65d134e24.zip server-side-tls-67151c41d7f7963c2c93795e8ff31da65d134e24.tar.gz server-side-tls-67151c41d7f7963c2c93795e8ff31da65d134e24.tar.bz2 | |
Conditionally displays SSLCertificateChainFile based on Apache version
Resolves Issue #21
Diffstat (limited to 'ssl-config-generator')
| -rw-r--r-- | ssl-config-generator/index.html | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/ssl-config-generator/index.html b/ssl-config-generator/index.html index bfbbecc..040b1e0 100644 --- a/ssl-config-generator/index.html +++ b/ssl-config-generator/index.html @@ -72,8 +72,7 @@ server { <VirtualHost *:443> ... SSLEngine on - SSLCertificateFile /path/to/signed_certificate - SSLCertificateChainFile /path/to/intermediate_certificate +{{certFile}} SSLCertificateKeyFile /path/to/private/key SSLCACertificateFile /path/to/all_ca_certs @@ -176,6 +175,12 @@ frontend ft_test data.ocspStaplingCache = 'SSLStaplingCache shmcb:/var/run/ocsp(128000)' + '\n' } + if (isSemVer(data.serverVersion, '>=2.4.8')) { + data.certFile = ' SSLCertificateFile /path/to/signed_certificate_followed_by_intermediate_certs'; + } else { + data.certFile = ' SSLCertificateFile /path/to/signed_certificate\n' + + ' SSLCertificateChainFile /path/to/intermediate_certificate'; + } if (data.hstsEnabled == "true") { data.hsts = '\n # HSTS (mod_headers is required) (15768000 seconds = 6 months)' + '\n' + ' Header always add Strict-Transport-Security "max-age=15768000"' |