From a718cfede0f44cbc0c40ae396911fa3f510c3c7e Mon Sep 17 00:00:00 2001
From: sagi <sagi@users.noreply.github.com>
Date: Sun, 3 Jan 2016 22:03:47 +0000
Subject: [PATCH] Copy only relevant lines from http vhost to ssl vhost
 skeleton

---
 .../letsencrypt_apache/configurator.py              | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/letsencrypt-apache/letsencrypt_apache/configurator.py b/letsencrypt-apache/letsencrypt_apache/configurator.py
index 836d77135..0d6749638 100644
--- a/letsencrypt-apache/letsencrypt_apache/configurator.py
+++ b/letsencrypt-apache/letsencrypt_apache/configurator.py
@@ -712,8 +712,19 @@ class ApacheConfigurator(augeas_configurator.AugeasConfigurator):
             with open(avail_fp, "r") as orig_file:
                 with open(ssl_fp, "w") as new_file:
                     new_file.write("<IfModule mod_ssl.c>\n")
+
+                    # In some cases we wouldn't want to copy the exact
+                    # directives used in an http vhost to a ssl vhost.
+                    # An example:
+                    # If there's a redirect rewrite rule directive installed in
+                    # the http vhost - copying it to the ssl vhost would cause
+                    # a redirection loop.
+                    blacklist_set = set(['RewriteRule', 'RewriteEngine'])
+
                     for line in orig_file:
-                        new_file.write(line)
+                        line_set = set(line.split())
+                        if not line_set & blacklist_set: # & -> Intersection
+                            new_file.write(line)
                     new_file.write("</IfModule>\n")
         except IOError:
             logger.fatal("Error writing/reading to file in make_vhost_ssl")