Fix(add-apache-vhost): Fix SSL files directives

The files are not created yet. Uncomment the directives
when the files will be created by a certification authority
(like LetsEncrypt and its client `dehydrated`).

diff --git a/playbooks/debian/roles/add-apache-vhost/templates/vhost.conf b/playbooks/debian/roles/add-apache-vhost/templates/vhost.conf
index f0defef69e44a4895118666051ea9c8702956779..304b9b433a9fafe2e32aa2d16304d7aa4f652e53 100644 (file)
--- a/playbooks/debian/roles/add-apache-vhost/templates/vhost.conf
+++ b/playbooks/debian/roles/add-apache-vhost/templates/vhost.conf
@@ -44,7 +44,7 @@ AddDefaultCharset utf-8
 ProxyRequests Off
 </IfModule>
 
-SSLEngine on
+SSLEngine off
 #Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload"
 #Header always set X-Content-Type-Options nosniff
 #Header always set X-Frame-Options DENY
@@ -64,9 +64,9 @@ SSLProxyEngine off
 #SSLUseStapling on
 SSLVerifyClient none
 
-SSLCACertificateFile /etc/apache2/ssl/CA.crt
-SSLCertificateFile /etc/apache2/ssl/{{ virtual_host }}.crt
-SSLCertificateKeyFile /etc/apache2/ssl/{{ virtual_host }}.key
+#SSLCACertificateFile /etc/apache2/ssl/CA.crt
+#SSLCertificateFile /etc/apache2/ssl/{{ virtual_host }}.crt
+#SSLCertificateKeyFile /etc/apache2/ssl/{{ virtual_host }}.key
 
 <Directory />
    SSLRequireSSL