ServerAlias "webmail.<?php echo $VAR->domain->asciiName ?>"
<?php foreach ($VAR->domain->mailAliases AS $alias): ?>
ServerAlias "webmail.<?php echo $alias->asciiName ?>"
<?php echo AUTOGENERATED_CONFIGS; ?>
<?php
/**
* @var Template_VariableAccessor $VAR
*/
?>
<?php echo $VAR->includeTemplate('nginxWebmailPartial.php',
array(
'ssl' => true,
'frontendPort' => $VAR->server->nginx->httpsPort,
'backendPort' => $VAR->server->webserver->httpsPort,
)) ?>
<?php echo $VAR->includeTemplate('nginxWebmailPartial.php',
array(
'ssl' => false,
'frontendPort' => $VAR->server->nginx->httpPort,
'backendPort' => $VAR->server->webserver->httpPort,
)) ?>
ServerAlias "webmail.<?php echo $VAR->domain->asciiName ?>"
<?php foreach ($VAR->domain->mailAliases AS $alias): ?>
ServerAlias "webmail.<?php echo $alias->asciiName ?>"
[/B]
<?php echo AUTOGENERATED_CONFIGS; ?>
<?php
/**
* @var Template_VariableAccessor $VAR
*/
?>
<?php echo $VAR->includeTemplate('nginxWebmailPartial.php',
array(
'ssl' => true,
'frontendPort' => $VAR->server->nginx->httpsPort,
'backendPort' => $VAR->server->webserver->httpsPort,
)) ?>
<?php echo $VAR->includeTemplate('nginxWebmailPartial.php',
array(
'ssl' => false,
'frontendPort' => $VAR->server->nginx->httpPort,
'backendPort' => $VAR->server->webserver->httpPort,
)) ?>
[/B]
<?php if ($OPT['ssl']): ?>
ssl_ecdh_curve secp384r1;
ssl_dhparam /etc/ssl/dh4096.pem;
ssl_certificate /opt/psa/var/certificates/cert-name;
ssl_certificate_key /opt/psa/var/certificates/cert-name;
ssl_client_certificate /opt/psa/var/certificates/ca-name;
ssl_session_timeout 5m;
ssl_session_cache shared:SSL:5m;
ssl_prefer_server_ciphers on;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256; ## Shortened
ssl_stapling on;
ssl_stapling_verify on;
ssl_trusted_certificate /etc/ssl/certs/CA.pem; ## Intermediate + CA combined
resolver 8.8.4.4 8.8.8.8 valid=300s;
resolver_timeout 10s;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains";
<?php endif ?>