Adding debian version 2.4.38-3+deb10u8.debian/2.4.38-3+deb10u8 debian

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
author: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-05-07 02:04:07 +0000
committer: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-05-07 02:04:07 +0000
commit: 1221c736f9a90756d47ea6d28320b6b83602dd2a (patch)
tree: b453ba7b1393205258c9b098a773b4330984672f /debian/perl-framework/t/conf/ssl/proxyssl.conf.in
parent: Adding upstream version 2.4.38. (diff)
download: apache2-1221c736f9a90756d47ea6d28320b6b83602dd2a.tar.xz
apache2-1221c736f9a90756d47ea6d28320b6b83602dd2a.zip
1 files changed, 66 insertions, 0 deletions
diff --git a/debian/perl-framework/t/conf/ssl/proxyssl.conf.in b/debian/perl-framework/t/conf/ssl/proxyssl.conf.in
new file mode 100644
index 0000000..dc18fdf
--- /dev/null
+++ b/debian/perl-framework/t/conf/ssl/proxyssl.conf.in
@@ -0,0 +1,66 @@
+<IfModule @ssl_module@>
+
+<IfModule mod_proxy.c>
+
+    #here we can test http <-> https
+    <VirtualHost proxy_http_https>
+        #these are not on by default in the 1.x based mod_ssl
+        <IfDefine APACHE2>
+            SSLProxyEngine On
+
+            SSLProxyProtocol All
+            SSLProxyCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
+
+            SSLProxyMachineCertificateFile @SSLCA@/asf/proxy/client_ok.pem
+            #SSLProxyMachineCertificatePath @SSLCA@/asf/proxy
+
+            SSLProxyCACertificateFile @SSLCA@/asf/certs/ca.crt
+            SSLProxyCACertificatePath @ServerRoot@/conf/ssl
+            SSLProxyCARevocationFile @SSLCA@/asf/crl/ca-bundle.crl
+            <IfVersion >= 2.3.15>
+                SSLProxyCARevocationCheck chain
+            </IfVersion>
+            SSLProxyVerify on
+            SSLProxyVerifyDepth 10
+        </IfDefine>
+
+
+        ProxyPass        / https://@proxyssl_url@/
+        ProxyPassReverse / https://@proxyssl_url@/
+    </VirtualHost>
+
+
+    #here we can test https <-> https
+    <VirtualHost proxy_https_https>
+        SSLEngine on
+
+        #these are not on by default in the 1.x based mod_ssl
+        <IfDefine APACHE2>
+            SSLProxyEngine On
+            # ensure that client_ok.pem is picked first:
+            SSLProxyMachineCertificateFile @SSLCA@/asf/proxy/client_ok.pem
+            SSLProxyMachineCertificatePath @SSLCA@/asf/proxy
+            SSLProxyCACertificateFile @SSLCA@/asf/certs/ca.crt
+            SSLProxyVerify on
+            SSLProxyCARevocationPath @SSLCA@/asf/crl
+            <IfVersion >= 2.3.15>
+                SSLProxyCARevocationCheck chain
+            </IfVersion>
+        </IfDefine>
+
+
+        ProxyPass        / https://@proxyssl_url@/
+        ProxyPassReverse / https://@proxyssl_url@/
+    </VirtualHost>
+
+    #here we can test https <-> http
+    <VirtualHost proxy_https_http>
+        SSLEngine on
+
+        ProxyPass        / http://@servername@:@port@/
+        ProxyPassReverse / http://@servername@:@port@/
+    </VirtualHost>
+
+</IfModule>
+
+</IfModule>
author	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-05-07 02:04:07 +0000
committer	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-05-07 02:04:07 +0000
commit	1221c736f9a90756d47ea6d28320b6b83602dd2a (patch)
tree	b453ba7b1393205258c9b098a773b4330984672f /debian/perl-framework/t/conf/ssl/proxyssl.conf.in
parent	Adding upstream version 2.4.38. (diff)
download	apache2-1221c736f9a90756d47ea6d28320b6b83602dd2a.tar.xz apache2-1221c736f9a90756d47ea6d28320b6b83602dd2a.zip