ServerName mail.<%= scope.lookupvar('::pixelated::agent::domain') %> RewriteEngine On RewriteRule ^.*$ https://mail.<%= scope.lookupvar('::pixelated::agent::domain') %>%{REQUEST_URI} [R=permanent,L] CustomLog ${APACHE_LOG_DIR}/mail.<%= scope.lookupvar('::pixelated::agent::domain') %>.log common ServerName mail.<%= scope.lookupvar('::pixelated::agent::domain') %> CustomLog ${APACHE_LOG_DIR}/mail.<%= scope.lookupvar('::pixelated::agent::domain') %>.log common SSLCACertificatePath /etc/ssl/certs SSLCertificateChainFile /usr/local/share/ca-certificates/leap_commercial_ca.crt SSLCertificateKeyFile /etc/x509/keys/leap_commercial.key SSLCertificateFile /etc/x509/certs/leap_commercial.crt Include include.d/ssl_common.inc Header always unset X-Powered-By Header always unset X-Runtime Header set X-Frame-Options SAMEORIGIN DocumentRoot /srv/leap/webapp/public SSLProxyEngine on ProxyPass / https://<%= scope.lookupvar('::pixelated::agent::domain') %>:8080/ ProxyPassReverse / https://<%= scope.lookupvar('::pixelated::agent::domain') %>:8080/ Listen 8083 ServerName mail.<%= scope.lookupvar('::pixelated::agent::domain') %> CustomLog ${APACHE_LOG_DIR}/mail.<%= scope.lookupvar('::pixelated::agent::domain') %>.log common SSLCACertificatePath /etc/ssl/certs SSLCertificateChainFile /usr/local/share/ca-certificates/leap_commercial_ca.crt SSLCertificateKeyFile /etc/x509/keys/leap_commercial.key SSLCertificateFile /etc/x509/certs/leap_commercial.crt Include include.d/ssl_common.inc Header always unset X-Powered-By Header always unset X-Runtime DocumentRoot /srv/leap/webapp/public SSLProxyEngine on ProxyPass / https://<%= scope.lookupvar('::pixelated::agent::domain') %>:8080/ ProxyPassReverse / https://<%= scope.lookupvar('::pixelated::agent::domain') %>:8080/ Header unset Content-Security-Policy Header unset X-Content-Security-Policy Header unset X-Webkit-Csp