From 56f46172ce8938cf8ccf9af72f90cf3feab83f4d Mon Sep 17 00:00:00 2001
From: Tiara Rodney <t.rodney@inno-on.de>
Date: Sun, 17 Apr 2022 03:53:51 +0200
Subject: [PATCH] feat(samples/httpaste.it/httpd) enable SSL

---
 samples/httpaste.it/docker-compose.yml        |  2 ++
 .../httpd/usr/local/apache2/conf/httpd.conf   | 19 ++++++++++++++++++-
 .../httpd/usr/local/apache2/ssl/.gitignore    |  2 ++
 3 files changed, 22 insertions(+), 1 deletion(-)
 create mode 100644 samples/httpaste.it/httpd/usr/local/apache2/ssl/.gitignore

diff --git a/samples/httpaste.it/docker-compose.yml b/samples/httpaste.it/docker-compose.yml
index 2150c79..3c7cf0f 100644
--- a/samples/httpaste.it/docker-compose.yml
+++ b/samples/httpaste.it/docker-compose.yml
@@ -22,6 +22,7 @@ services:
             dockerfile: Dockerfile
         ports:
             - "80:80"
+            - "443:443"
         volumes:
             -
                 type: volume
@@ -30,6 +31,7 @@ services:
                 volume:
                     nocopy: true
             - ./httpd/usr/local/apache2/conf/httpd.conf:/usr/local/apache2/conf/httpd.conf
+            - ./httpd/usr/local/apache2/ssl:/usr/local/apache2/ssl
     tor:
         build:
             context: ./tor
diff --git a/samples/httpaste.it/httpd/usr/local/apache2/conf/httpd.conf b/samples/httpaste.it/httpd/usr/local/apache2/conf/httpd.conf
index 07c9156..feccc6b 100644
--- a/samples/httpaste.it/httpd/usr/local/apache2/conf/httpd.conf
+++ b/samples/httpaste.it/httpd/usr/local/apache2/conf/httpd.conf
@@ -18,7 +18,7 @@ LoadModule unixd_module modules/mod_unixd.so
 LoadModule access_compat_module modules/mod_access_compat.so
 LoadModule security2_module /usr/lib/apache2/modules/mod_security2.so
 LoadModule evasive20_module /usr/lib/apache2/modules/mod_evasive20.so
-
+LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so
 
 <IfModule unixd_module>
     User www-data
@@ -88,3 +88,20 @@ ServerName 127.0.0.1
     SetEnv proxy-sendchunks
     ProxyPass  "/" "unix:/shared/uwsgi.sock|uwsgi://localhost/"
 </VirtualHost>
+
+<IfFile 'ssl/private.key'>
+    Listen 0.0.0.0:443
+
+
+    <VirtualHost 0.0.0.0:443>
+        #ProxyPreserveHost On
+        ServerName httpaste.it
+        ServerAlias localhost
+        SSLEngine on
+        SSLCertificateFile "ssl/certificate.crt"
+        SSLCertificateChainFile "ssl/ca_bundle.crt"
+        SSLCertificateKeyFile "ssl/private.key"
+        SetEnv proxy-sendchunks
+        ProxyPass  "/" "unix:/shared/uwsgi.sock|uwsgi://localhost/"
+    </VirtualHost>
+</IfFile>
diff --git a/samples/httpaste.it/httpd/usr/local/apache2/ssl/.gitignore b/samples/httpaste.it/httpd/usr/local/apache2/ssl/.gitignore
new file mode 100644
index 0000000..0d313d1
--- /dev/null
+++ b/samples/httpaste.it/httpd/usr/local/apache2/ssl/.gitignore
@@ -0,0 +1,2 @@
+*.key
+*.crt
\ No newline at end of file