Update 'roles/webserver/files/etc/apache2/sites-available/thunix.net.conf'

roles/webserver/files/etc/apache2/sites-available/thunix.net.conf

@@ -1,12 +1,46 @@
 <VirtualHost *:80>
-    ServerAdmin webmaster@thunix.net 
+    ServerAdmin webmaster@thunix.net
     ServerName thunix.net
     DocumentRoot /var/www/thunix.cf
     ErrorLog ${APACHE_LOG_DIR}/error.log
     CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directory /var/www/thunix.cf>
+        Options FollowSymLinks
+        AllowOverride All
+        Require all granted
+    </Directory>
     <Directorymatch "^/.*/\.git/">
-		Order deny,allow
+                Order deny,allow
-		Deny from all
+                Deny from all
-	</Directorymatch>
+        </Directorymatch>
-    Redirect permanent / https://thunix.net/
+#    Redirect permanent / https://thunix.net/
 </VirtualHost>
+<IfModule mod_ssl.c>
+<VirtualHost *:443>
+    ServerAdmin webmaster@thunix.net
+    ServerName thunix.net
+    DocumentRoot /var/www/thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directory /var/www/thunix.cf>
+        Options FollowSymLinks
+        AllowOverride All
+        Require all granted
+    </Directory>
+    <Directorymatch "^/.*/\.git/">
+                Order deny,allow
+                Deny from all
+        </Directorymatch>
+    <IfModule mod_userdir.c>
+       UserDir public_html
+       UserDir disabled root
+       <Directory /home/*/public_html>
+               AllowOverride FileInfo AuthConfig Limit Indexes
+               Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
+               Require method GET POST OPTIONS
+       </Directory>
+        </IfModule>
+#Include /etc/letsencrypt/options-ssl-apache.conf
+SSLCertificateFile /etc/letsencrypt/live/thunix.net/fullchain.pem
+SSLCertificateKeyFile /etc/letsencrypt/live/thunix.net/privkey.pem
+</VirtualHost>