{"id":306,"date":"2023-04-08T14:06:11","date_gmt":"2023-04-08T12:06:11","guid":{"rendered":"https:\/\/baltazorius.fr\/?p=306"},"modified":"2023-05-18T06:46:58","modified_gmt":"2023-05-18T04:46:58","slug":"configurer-virtualhost-https-dapache2-port-443","status":"publish","type":"post","link":"https:\/\/baltazorius.fr\/index.php\/2023\/04\/08\/configurer-virtualhost-https-dapache2-port-443\/","title":{"rendered":"Configurer VirtualHost https d\u2019apache2 port 443"},"content":{"rendered":"\n

Ce tutoriel pr\u00e9sente une proc\u00e9dure permettant de servir des pages web h\u00f4te virtuel<\/a> gr\u00e2ce au protocole HTTPS<\/strong>. Avec HTTPS, les \u00e9changes HTTP entre le client et le serveur sont chiffr\u00e9s (et donc s\u00e9curis\u00e9s) via le protocole TLS (ou autrefois SSL).<\/p>\n\n\n\n

Cr\u00e9ation d\u2019h\u00f4tes virtuels<\/h2>\n\n\n\n

Nous allons \u00e9diter le fichier example.com.conf<\/strong> et mettre toutes les informations, pour que votre nom de nom de domaine soit pris en charge sur le port 443 :<\/p>\n\n\n

\n\t
sudo nano \/etc\/apache2\/sites-available\/example.com.conf<\/code><\/pre> 
 <\/div> <\/div><\/div>\n\n\n\n
De base vous devriez avoir dans le fichier :<\/p>\n\n\n
\n\t
 
<VirtualHost *:80>\tServerName example.com\tServerAlias www.example.com\tDocumentRoot "\/var\/www\/example"\t<Directory "\/var\/www\/example">\t\tOptions  FollowSymLinks\t\tAllowOverride all\t\tRequire all granted\t<\/Directory>\tErrorLog \/var\/log\/apache2\/error.example.com.log\tCustomLog \/var\/log\/apache2\/access.example.com.log combined<\/VirtualHost><\/code><\/pre> 
 <\/div> <\/div><\/div>\n\n\n\n
Nous allons y rajouter quelque ligne qui permettent de rediriger http vers https<\/p>\n\n\n
\n\t
 
RewriteEngine onRewriteCond %{SERVER_NAME} =baltazorius.fr [OR]RewriteCond %{SERVER_NAME} =www.baltazorius.frRewriteRule ^ https:\/\/%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]<\/code><\/pre> 
 <\/div> <\/div><\/div>\n\n\n\n
En dessous le fichier modifi\u00e9 avec les lignes rajout\u00e9es.<\/p>\n\n\n
\n\t
 
<VirtualHost *:80>\tServerName example.com\tServerAlias www.example.com\tDocumentRoot "\/var\/www\/example"\t<Directory "\/var\/www\/example">\t\tOptions  FollowSymLinks\t\tAllowOverride all\t\tRequire all granted\t<\/Directory>\tErrorLog \/var\/log\/apache2\/error.example.com.log\tCustomLog \/var\/log\/apache2\/access.example.com.log combined    RewriteEngine on    RewriteCond %{SERVER_NAME} =baltazorius.fr [OR]    RewriteCond %{SERVER_NAME} =www.baltazorius.fr    RewriteRule ^ https:\/\/%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]<\/VirtualHost><\/code><\/pre> 
 <\/div> <\/div><\/div>\n\n\n\n
Nous allons maintenant rajouter le VirtualHost 443 en dessous du VirtualHost 80<\/p>\n\n\n
\n\t
 
<VirtualHost *:443>    ServerName example.com    ServerAlias www.example.com    ServerAdmin webmaster@example.com    DocumentRoot \/srv\/web\/example.com\/www\t<Directory \/srv\/web\/example.com\/www>\t\tOptions -Indexes  FollowSymLinks  MultiViews\t\tAllowOverride none\t\tRequire all granted\t<\/Directory>        # directives obligatoires pour TLS      \tSSLEngine on\tSSLCertificateFile    \/etc\/letsencrypt\/live\/example.com\/fullchain.pem\tSSLCertificateKeyFile   \/etc\/letsencrypt\/live\/example.com\/privkey.pem \tHeader always set Strict-Transport-Security "max-age=15768000; includeSubDomains" \tErrorLog \/var\/log\/apache2\/error.example.com.log\tCustomLog \/var\/log\/apache2\/access.example.com.log combined<\/VirtualHost><\/code><\/pre> 
 <\/div> <\/div><\/div>\n\n\n\n
Se qui nous donne :<\/p>\n\n\n
\n\t
 
<VirtualHost *:80>\tServerName example.com\tServerAlias www.example.com\tDocumentRoot "\/var\/www\/example"\t<Directory "\/var\/www\/example">\t\tOptions  FollowSymLinks\t\tAllowOverride all\t\tRequire all granted\t<\/Directory>\tErrorLog \/var\/log\/apache2\/error.example.com.log\tCustomLog \/var\/log\/apache2\/access.example.com.log combined    RewriteEngine on    RewriteCond %{SERVER_NAME} =baltazorius.fr [OR]    RewriteCond %{SERVER_NAME} =www.baltazorius.fr    RewriteRule ^ https:\/\/%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]<\/VirtualHost><VirtualHost *:443>    ServerName example.com    ServerAlias www.example.com    ServerAdmin webmaster@example.com    DocumentRoot \/srv\/web\/example.com\/www\t<Directory \/srv\/web\/example.com\/www>\t\tOptions -Indexes  FollowSymLinks  MultiViews\t\tAllowOverride none\t\tRequire all granted\t<\/Directory>        # directives obligatoires pour TLS      \tSSLEngine on\tSSLCertificateFile    \/etc\/letsencrypt\/live\/example.com\/fullchain.pem\tSSLCertificateKeyFile   \/etc\/letsencrypt\/live\/example.com\/privkey.pem \tHeader always set Strict-Transport-Security "max-age=15768000; includeSubDomains" \tErrorLog \/var\/log\/apache2\/error.example.com.log\tCustomLog \/var\/log\/apache2\/access.example.com.log combined<\/VirtualHost><\/code><\/pre> 
 Fermer et sauvegarder : ctrl+x mettre ensuite o pour dire oui et enter<\/span> <\/div> <\/div><\/div>\n\n\n\n
On recharge ensuite la configuration d\u2019Apache :<\/p>\n\n\n
\n\t
 
sudo systemctl reload apache2<\/code><\/pre> 
 <\/div> <\/div><\/div>\n
Views: 1824<\/p>","protected":false},"excerpt":{"rendered":"
Ce tutoriel pr\u00e9sente une proc\u00e9dure permettant de servir des pages web h\u00f4te virtuel gr\u00e2ce au protocole HTTPS. Avec HTTPS, les \u00e9changes HTTP entre le client et le serveur sont chiffr\u00e9s (et donc s\u00e9curis\u00e9s) via le protocole TLS (ou autrefois SSL). Cr\u00e9ation d\u2019h\u00f4tes virtuels Nous allons \u00e9diter le fichier example.com.conf et mettre toutes les informations, pour … En savoir plus \u00ab\u00a0Configurer VirtualHost https d\u2019apache2 port 443\u00a0\u00bb<\/span> »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[13],"tags":[],"class_list":["post-306","post","type-post","status-publish","format-standard","hentry","category-linux"],"_links":{"self":[{"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/posts\/306","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/comments?post=306"}],"version-history":[{"count":3,"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/posts\/306\/revisions"}],"predecessor-version":[{"id":504,"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/posts\/306\/revisions\/504"}],"wp:attachment":[{"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/media?parent=306"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/categories?post=306"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/baltazorius.fr\/index.php\/wp-json\/wp\/v2\/tags?post=306"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}