iProspective
/
dolibarr


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112
							<VirtualHost *:80>
	#php_admin_value sendmail_path "/usr/sbin/sendmail -t -i"
	#php_admin_value mail.force_extra_parameters "-f postmaster@mydomain.com"
	#php_admin_value sendmail_path "/usr/sbin/sendmail -t -i -f postmaster@mydomain.com"
	
	php_admin_value open_basedir /tmp/:/home/.../htdocs:/home/.../dolibarr_documents:

	
	# Add this to use a custom apparmor profile when using apache php handler
	<IfModule mod_apparmor.c>
	AADefaultHatName sellyoursaas-instances
	</IfModule>

    
    # The URLs of the web site
	ServerName myvirtualalias
	ServerAlias myvirtualalias
	
	UseCanonicalName On
	
	KeepAlive On
	KeepAliveTimeout 5
	MaxKeepAliveRequests 20
	
	AddDefaultCharset UTF-8
	
	
	# Detect if we are using DoliDroid
	#SetEnvIf User-Agent DoliDroid dolidroid
	
	
	# The directory and permissions for the web site
	DocumentRoot "/home/.../htdocs"
	<Directory /home/.../htdocs/>
	   	AllowOverride None
	   	Options       -Indexes -MultiViews +FollowSymLinks -ExecCGI
	   	Require all granted

		# To restrict access by a HTTP basic auth	   
	   	#AuthType Basic
       	#AuthName "Authenticate to backoffice"
       	#AuthUserFile /etc/apache2/.htpasswd
       	#require valid-user
	</Directory>

	# Leaving /public and /api, /dav, .well_known but also wrappers for document, viewimage and public json/img accessible to everyone
    <Directory /home/admin/wwwroot/dolibarr/htdocs/public/>
        AuthType None
        Satisfy any
        Require all granted
    </Directory>
    <Directory /home/admin/wwwroot/dolibarr/htdocs/api/>
        AuthType None
        Satisfy any
        Require all granted
    </Directory>
    <Directory /home/admin/wwwroot/dolibarr/htdocs/dav/>
        AuthType None
        Satisfy any
        Require all granted
    </Directory>
    <Directory /home/admin/wwwroot/dolibarr/htdocs/.well-known/>
        AuthType None
        Satisfy any
        Require all granted
    </Directory>
    <Files ~ "(document\.php|viewimage\.php|\.js\.php|\.json\.php|\.js|\.css\.php|\.css|\.gif|\.png|\.svg|\.woff2|favicon\.ico)$">
        AuthType None
        Satisfy any
        Require all granted
    </Files>


	# Log directoves        
	ErrorLog /var/log/apache2/myvirtualalias_error_log
	TransferLog /var/log/apache2/myvirtualalias_access_log
	
		
	# Compress is done on resources of type php pages, text file export, css and javascript
	AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript application/javascript application/x-javascript
	AddType text/javascript .jgz
	AddEncoding gzip .jgz


	# Add cach performance directives
	ExpiresActive On
	ExpiresByType image/x-icon A2592000
	ExpiresByType image/gif A2592000
	ExpiresByType image/png A2592000
	ExpiresByType image/jpeg A2592000
	ExpiresByType text/css A2592000
	ExpiresByType text/javascript A2592000
	ExpiresByType application/x-javascript A2592000
	ExpiresByType application/javascript A2592000
	
	
	# To enable the SSL if the certificate file exists
	<IfFile "/etc/letsencrypt/live/www.mydomain.com/cert.pem">
		SSLEngine On
		
		# If both key and certificate are stored in the same file, only the
		# SSLCertificateFile directive is needed.
		SSLCertificateFile    /etc/letsencrypt/live/www.mydomain.com/cert.pem
		SSLCertificateKeyFile /etc/letsencrypt/live/www.mydomain.com/privkey.pem
		SSLCertificateChainFile /etc/letsencrypt/live/www.mydomain.com/chain.pem
		
		#RewriteEngine   on
		#RewriteCond     %{SERVER_PORT} ^80$
		#RewriteRule     ^(.*)$ https://%{SERVER_NAME}$1 [L,R]
	</IfFile>
	
</VirtualHost>