1 files changed, 34 insertions, 0 deletions

diff --git a/debian/dehydrated.conf b/debian/dehydrated.conf
new file mode 100644
index 0000000..1206e43
--- /dev/null
+++ b/debian/dehydrated.conf
@@ -0,0 +1,34 @@
+#
+# Apache configuration to serve http-01 ACME challenges responses.
+# This is included from the dehydrated-apache2 package, thought to be used
+# with dehydrated as packaged in Debian.
+
+
+<IfModule proxy_module>
+    # Do not proxy ACME challenge responses
+    ProxyPass /.well-known/acme-challenge/ !
+</IfModule>
+<IfModule !alias_module>
+    # Load the alias module, if not loaded already
+    Include /etc/apache2/mods-available/alias.load
+    Include /etc/apache2/mods-available/alias.conf
+</IfModule>
+<IfModule alias_module>
+    # Serve ACME challenge responses
+    Alias /.well-known/acme-challenge/ /var/lib/dehydrated/acme-challenges/
+</IfModule>
+
+<Directory /var/lib/dehydrated/acme-challenges/>
+    Options FollowSymlinks
+    Options -Indexes
+    AllowOverride None
+    # Apache >= 2.3
+    <IfModule mod_authz_core.c>
+        Require all granted
+    </IfModule>
+    # Apache < 2.3
+    <IfModule !mod_authz_core.c>
+        Order Allow,Deny
+        Allow from all
+    </IfModule>
+</Directory>