#php_admin_value sendmail_path "/usr/sbin/sendmail -t -i" #php_admin_value mail.force_extra_parameters "-f postmaster@mydomain.com" #php_admin_value sendmail_path "/usr/sbin/sendmail -t -i -f postmaster@mydomain.com" php_admin_value open_basedir /tmp/:/home/.../htdocs:/home/.../dolibarr_documents: # Add this to use a custom apparmor profile when using apache php handler AADefaultHatName sellyoursaas-instances # The URLs of the web site ServerName myvirtualalias ServerAlias myvirtualalias UseCanonicalName On KeepAlive On KeepAliveTimeout 5 MaxKeepAliveRequests 20 AddDefaultCharset UTF-8 # Detect if we are using DoliDroid #SetEnvIf User-Agent DoliDroid dolidroid # The directory and permissions for the web site DocumentRoot "/home/.../htdocs" AllowOverride None Options -Indexes -MultiViews +FollowSymLinks -ExecCGI Require all granted # To restrict access by a HTTP basic auth #AuthType Basic #AuthName "Authenticate to backoffice" #AuthUserFile /etc/apache2/.htpasswd #require valid-user # Leaving /public, /dav and /.well_known directory accessible to everyone AuthType None Satisfy any Require all granted AuthType None Satisfy any Require all granted AuthType None Satisfy any Require all granted # You may also want to allow access to everyone to wrappers for api, document, viewimage, manifest and public json/img # but if you can avoid it, it is better. AuthType None Satisfy any Require all granted AuthType None Satisfy any Require all granted # Log directives ErrorLog /var/log/apache2/myvirtualalias_error_log TransferLog /var/log/apache2/myvirtualalias_access_log # Compress is done on resources of type php pages, text file export, css and javascript AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript application/javascript application/x-javascript AddType text/javascript .jgz AddEncoding gzip .jgz # Add cache performance directives ExpiresActive On ExpiresByType image/x-icon A2592000 ExpiresByType image/gif A2592000 ExpiresByType image/png A2592000 ExpiresByType image/jpeg A2592000 ExpiresByType text/css A2592000 ExpiresByType text/javascript A2592000 ExpiresByType application/x-javascript A2592000 ExpiresByType application/javascript A2592000 # To enable the SSL if the certificate file exists SSLEngine On # If both key and certificate are stored in the same file, only the # SSLCertificateFile directive is needed. SSLCertificateFile /etc/letsencrypt/live/www.mydomain.com/cert.pem SSLCertificateKeyFile /etc/letsencrypt/live/www.mydomain.com/privkey.pem SSLCertificateChainFile /etc/letsencrypt/live/www.mydomain.com/chain.pem #RewriteEngine on #RewriteCond %{SERVER_PORT} ^80$ #RewriteRule ^(.*)$ https://%{SERVER_NAME}$1 [L,R]