MHK - proxy on prod

diff --git a/customer/mhk/www01-mhk-kueche-de.pixelpark.net.yaml b/customer/mhk/www01-mhk-kueche-de.pixelpark.net.yaml
index d439cd83a9ffabd96b8af8ff85f06d8902843b8c..934951dde6f6cef9a5322fbf44ab202191115d82 100644 (file)
--- a/customer/mhk/www01-mhk-kueche-de.pixelpark.net.yaml
+++ b/customer/mhk/www01-mhk-kueche-de.pixelpark.net.yaml
@@ -98,6 +98,9 @@ infra::profile::apache::pp_vhosts:
           - '%%{ich-trickse}{HTTP:HTTPS} !=on [NC]'
         rewrite_rule:
           - '^(.*)$ https://%%{ich-trickse}{SERVER_NAME}$1 [R=301,L]'
+      - comment: 'Proxy'
+        rewrite_rule:
+          - '^/proxy/(.*)\.js$ https://$1.js [P,L,QSA]'
       - comment: 'Redirects'
         rewrite_rule:
           - '^(/)?$ https://%%{ich-trickse}{SERVER_NAME}/de-DE [R=301,L]'
@@ -174,6 +177,18 @@ infra::profile::apache::pp_vhosts:
       - 'set X-Content-Type-Options: nosniff'
       - 'set Strict-Transport-Security: max-age=31536000 env=HTTPS'
     access_log_format: remote_combined
+    custom_fragment: |
+            <Location /proxy>
+                ProxyPreserveHost off
+                Header set Cache-Control "max-age=216000, private"
+                Header unset Expires
+                ExpiresByType text/javascript "access plus 1 month"
+            </Location>
+            SSLProxyEngine on
+            ProxyVia Off
+            #SSLProxyVerify none
+            #SSLProxyCheckPeerCN off
+            #SSLProxyCheckPeerName off
 
 logstash::generic_resource:
   webapp:

diff --git a/customer/mhk/www02-mhk-kueche-de.pixelpark.net.yaml b/customer/mhk/www02-mhk-kueche-de.pixelpark.net.yaml
index c185cfbbaf6a0ffa1834a3a3054d4489f53fa5db..4dc06d97fb0a5ceceb41213ace34d2814a7ec259 100644 (file)
--- a/customer/mhk/www02-mhk-kueche-de.pixelpark.net.yaml
+++ b/customer/mhk/www02-mhk-kueche-de.pixelpark.net.yaml
@@ -98,6 +98,9 @@ infra::profile::apache::pp_vhosts:
           - '%%{ich-trickse}{HTTP:HTTPS} !=on [NC]'
         rewrite_rule:
           - '^(.*)$ https://%%{ich-trickse}{SERVER_NAME}$1 [R=301,L]'
+      - comment: 'Proxy'
+        rewrite_rule:
+          - '^/proxy/(.*)\.js$ https://$1.js [P,L,QSA]'
       - comment: 'Redirects'
         rewrite_rule:
           - '^(/)?$ https://%%{ich-trickse}{SERVER_NAME}/de-DE [R=301,L]'
@@ -174,6 +177,18 @@ infra::profile::apache::pp_vhosts:
       - 'set X-Content-Type-Options: nosniff'
       - 'set Strict-Transport-Security: max-age=31536000 env=HTTPS'
     access_log_format: remote_combined
+    custom_fragment: |
+            <Location /proxy>
+                ProxyPreserveHost off
+                Header set Cache-Control "max-age=216000, private"
+                Header unset Expires
+                ExpiresByType text/javascript "access plus 1 month"
+            </Location>
+            SSLProxyEngine on
+            ProxyVia Off
+            #SSLProxyVerify none
+            #SSLProxyCheckPeerCN off
+            #SSLProxyCheckPeerName off
 
 logstash::generic_resource:
   webapp:

diff --git a/customer/mhk/www03-mhk-kueche-de.pixelpark.net.yaml b/customer/mhk/www03-mhk-kueche-de.pixelpark.net.yaml
index f3d0c2b0924682ec862e1ae9c68842226e486724..c91537d826aeb41eb68d9a34ed1df65b0b3b7996 100644 (file)
--- a/customer/mhk/www03-mhk-kueche-de.pixelpark.net.yaml
+++ b/customer/mhk/www03-mhk-kueche-de.pixelpark.net.yaml
@@ -98,6 +98,9 @@ infra::profile::apache::pp_vhosts:
           - '%%{ich-trickse}{HTTP:HTTPS} !=on [NC]'
         rewrite_rule:
           - '^(.*)$ https://%%{ich-trickse}{SERVER_NAME}$1 [R=301,L]'
+      - comment: 'Proxy'
+        rewrite_rule:
+          - '^/proxy/(.*)\.js$ https://$1.js [P,L,QSA]'
       - comment: 'Redirects'
         rewrite_rule:
           - '^(/)?$ https://%%{ich-trickse}{SERVER_NAME}/de-DE [R=301,L]'
@@ -174,6 +177,18 @@ infra::profile::apache::pp_vhosts:
       - 'set X-Content-Type-Options: nosniff'
       - 'set Strict-Transport-Security: max-age=31536000 env=HTTPS'
     access_log_format: remote_combined
+    custom_fragment: |
+            <Location /proxy>
+                ProxyPreserveHost off
+                Header set Cache-Control "max-age=216000, private"
+                Header unset Expires
+                ExpiresByType text/javascript "access plus 1 month"
+            </Location>
+            SSLProxyEngine on
+            ProxyVia Off
+            #SSLProxyVerify none
+            #SSLProxyCheckPeerCN off
+            #SSLProxyCheckPeerName off
 
 logstash::generic_resource:
   webapp: