X-Git-Url: http://git.rot13.org/?p=via-proxy;a=blobdiff_plain;f=p.vbz.ffzg.hr.conf;h=c4840760a20b74ea4f730d5f2aa36aae0a3802a1;hp=f072fc9dd269f09e78c5ee8faa2af9fecaa7bc45;hb=289e941c2e0ca1ea0b7bcdc378c7c946a94138ea;hpb=db7ac207afb479dc6ea4dc63c9b1360881d8ca7a

diff --git a/p.vbz.ffzg.hr.conf b/p.vbz.ffzg.hr.conf
index f072fc9..c484076 100644
--- a/p.vbz.ffzg.hr.conf
+++ b/p.vbz.ffzg.hr.conf
@@ -60,6 +60,7 @@ FilterChain NEWPATHS
 
 	ServerName search.proquest.com.p.vbz.ffzg.hr
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass / https://search.proquest.com/
 	ProxyPassReverse / https://search.proquest.com/
 
@@ -83,6 +84,7 @@ FilterChain NEWPATHS2
 
 	ServerName academic.oup.com.p.vbz.ffzg.hr
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://academic.oup.com/
 	ProxyPassReverse / https://academic.oup.com/
 
@@ -108,6 +110,7 @@ FilterChain NEWPATHS2
 
 	ServerName ovidsp.tx.ovid.com.p.vbz.ffzg.hr
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://ovidsp.tx.ovid.com/
 	ProxyPassReverse / https://ovidsp.tx.ovid.com/
 
@@ -132,6 +135,7 @@ FilterChain NEWPATHS2
 
 	ServerName onlinelibrary.wiley.com.p.vbz.ffzg.hr
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 
 	ProxyPass        / https://onlinelibrary.wiley.com/
 	ProxyPassReverse / https://onlinelibrary.wiley.com/
@@ -139,6 +143,22 @@ FilterChain NEWPATHS2
 	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
 	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
 
+	Header edit* Location "https://anthrosource.onlinelibrary.wiley.com" "https://anthrosource.onlinelibrary.wiley.com.p.vbz.ffzg.hr"
+	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
+</VirtualHost>
+<VirtualHost *:443>
+	Include /srv/via-proxy/ssl.conf
+
+	ServerName anthrosource.onlinelibrary.wiley.com.p.vbz.ffzg.hr
+	SSLProxyEngine on
+	ProxyAddHeaders Off
+
+	ProxyPass        / https://anthrosource.onlinelibrary.wiley.com/
+	ProxyPassReverse / https://anthrosource.onlinelibrary.wiley.com/
+
+	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
+	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
+
 	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
 </VirtualHost>
 
@@ -147,6 +167,8 @@ FilterChain NEWPATHS2
 
 	ServerName journals.sagepub.com.p.vbz.ffzg.hr
 
+	ProxyAddHeaders Off
+
 	ProxyPass        / http://journals.sagepub.com/
 	ProxyPassReverse / http://journals.sagepub.com/
 
@@ -161,6 +183,8 @@ FilterChain NEWPATHS2
 
 	ServerName pubs.rsc.org.p.vbz.ffzg.hr
 
+	ProxyAddHeaders Off
+
 	ProxyPass        /_rsc-cdn_/ http://www.rsc-cdn.org/
 	ProxyPassReverse /_rsc-cdn_/ http://www.rsc-cdn.org/
 
@@ -173,6 +197,39 @@ FilterChain NEWPATHS2
 
 	RequestHeader unset Accept-Encoding
 	Substitute "s|http://[a-z-]*.rsc-cdn.org/|https://pubs.rsc.org.p.vbz.ffzg.hr/_rsc-cdn_/|"
+	Substitute "s|http://www.rsc.org/|https://www.rsc.org.p.vbz.ffzg.hr/|"
+	Substitute "s|http://pubs.rsc.org/|https://pubs.rsc.org.p.vbz.ffzg.hr/|"
+	FilterDeclare NEWPATHS
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+	FilterChain NEWPATHS
+
+	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
+</VirtualHost>
+<VirtualHost *:443>
+	Include /srv/via-proxy/ssl.conf
+
+	ServerName www.rsc.org.p.vbz.ffzg.hr
+
+	ProxyAddHeaders Off
+
+	ProxyPass        /_epi-rsc_/ http://epi-rsc.rsc-cdn.org/
+	ProxyPassReverse /_epi-rsc_/ http://epi-rsc.rsc-cdn.org/
+
+	# FIXME -- this doesn't work behind https and include http resources
+	ProxyPass        / http://www.rsc.org/
+	ProxyPassReverse / http://www.rsc.org/
+
+	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
+	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
+
+	RequestHeader unset Accept-Encoding
+	Substitute "s|http://epi-rsc.rsc-cdn.org/|https://www.rsc.org.p.vbz.ffzg.hr/_epi-rsc_/|"
+#	Substitute "s|http://[a-z-]*.rsc-cdn.org/|https://www.rsc.org.p.vbz.ffzg.hr/_rsc-cdn_/|"
+	Substitute "s|http://www.rsc.org/|https://www.rsc.org.p.vbz.ffzg.hr/|"
+	Substitute "s|http://pubs.rsc.org/|https://pubs.rsc.org.p.vbz.ffzg.hr/|"
 	FilterDeclare NEWPATHS
 	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
 	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
@@ -189,6 +246,8 @@ FilterChain NEWPATHS2
 
 	ServerName www.brepolis.net.p.vbz.ffzg.hr
 
+	ProxyAddHeaders Off
+
 	ProxyPass        / http://www.brepolis.net/
 	ProxyPassReverse / http://www.brepolis.net/
 
@@ -212,6 +271,8 @@ FilterChain NEWPATHS2
 
 	ServerName apps.brepolis.net.p.vbz.ffzg.hr
 
+	ProxyAddHeaders Off
+
 	ProxyPass        / http://apps.brepolis.net/
 	ProxyPassReverse / http://apps.brepolis.net/
 
@@ -237,6 +298,8 @@ FilterChain NEWPATHS2
 	ServerName www.cairn.info.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
+
 	ProxyPass        / https://www.cairn.info/
 	ProxyPassReverse / https://www.cairn.info/
 
@@ -253,6 +316,8 @@ FilterChain NEWPATHS2
 	ServerName www.degruyter.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
+
 	ProxyPass        / https://www.degruyter.com/
 	ProxyPassReverse / https://www.degruyter.com/
 
@@ -269,12 +334,54 @@ FilterChain NEWPATHS2
 	ServerName www.emeraldinsight.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://www.emeraldinsight.com/
 	ProxyPassReverse / https://www.emeraldinsight.com/
 
 	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
 	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
 
+	Header edit* Location "http://emeraldgrouppublishing.com/" "https://emeraldgrouppublishing.com.p.vbz.ffzg.hr/"
+
+# they have hard-coded absolute links
+RequestHeader unset Accept-Encoding
+Substitute "s|https://www.emeraldinsight.com/|https://www.emeraldinsight.com.p.vbz.ffzg.hr/|n"
+Substitute "s|http://www.emeraldgrouppublishing.com/|https://www.emeraldgrouppublishing.com.p.vbz.ffzg.hr/|n"
+FilterDeclare NEWPATHS2
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+FilterChain NEWPATHS2
+
+	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
+</VirtualHost>
+<VirtualHost *:443>
+	Include /srv/via-proxy/ssl.conf
+
+	ServerName www.emeraldgrouppublishing.com.p.vbz.ffzg.hr
+	ServerAlias emeraldgrouppublishing.com.p.vbz.ffzg.hr
+
+	# FIXME target server for www.emeraldgrouppublishing.com doesn't have that in SSL cert
+	#SSLProxyEngine on
+	ProxyAddHeaders Off
+	ProxyPass        / http://www.emeraldgrouppublishing.com/
+	ProxyPassReverse / http://www.emeraldgrouppublishing.com/
+
+	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
+	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
+
+# they have hard-coded absolute links
+RequestHeader unset Accept-Encoding
+Substitute "s|http://www.emeraldgrouppublishing.com/|https://www.emeraldgrouppublishing.com.p.vbz.ffzg.hr/|n"
+Substitute "s|http://www.emeraldinsight.com/|https://www.emeraldinsight.com.p.vbz.ffzg.hr/|n"
+FilterDeclare NEWPATHS2
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+FilterChain NEWPATHS2
+
 	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
 </VirtualHost>
 
@@ -284,6 +391,7 @@ FilterChain NEWPATHS2
 	ServerName www.webofknowledge.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://www.webofknowledge.com/
 	ProxyPassReverse / https://www.webofknowledge.com/
 
@@ -302,12 +410,14 @@ FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^application/javascrip
 FilterChain NEWPATHS2
 	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
 </VirtualHost>
+
 <VirtualHost *:443>
 	Include /srv/via-proxy/ssl.conf
 
 	ServerName apps.webofknowledge.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://apps.webofknowledge.com/
 	ProxyPassReverse / https://apps.webofknowledge.com/
 
@@ -325,6 +435,7 @@ FilterChain NEWPATHS2
 
 	#SSLProxyEngine on
 	# download pdf doesn't work if we use https://www.jstor.org !
+	ProxyAddHeaders Off
 	ProxyPass        / http://www.jstor.org/
 	ProxyPassReverse / http://www.jstor.org/
 
@@ -366,6 +477,7 @@ FilterChain NEWPATHS2
 	ServerName www.nature.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://www.nature.com/
 	ProxyPassReverse / https://www.nature.com/
 
@@ -391,6 +503,7 @@ FilterChain NEWPATHS2
 	ServerName idp.nature.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://idp.nature.com/
 	ProxyPassReverse / https://idp.nature.com/
 
@@ -407,28 +520,89 @@ FilterChain NEWPATHS2
 
 	ServerName www.palgrave.com.p.vbz.ffzg.hr
 
+#DumpIOInput On
+#DumpIOOutput On
+#DumpIOLogLevel debug
+
+#LogLevel debug
+
+	ProxyAddHeaders Off
+
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://www.palgrave.com/
 	ProxyPassReverse / https://www.palgrave.com/
 
 	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
 	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
 
+RequestHeader unset Accept-Encoding
+Substitute "s|https://www.palgrave.com|https://www.palgrave.com.p.vbz.ffzg.hr|n"
+Substitute "s|http://www.palgrave.com|https://www.palgrave.com.p.vbz.ffzg.hr|n"
+Substitute "s|http://link.springer.com|https://link.springer.com.p.vbz.ffzg.hr|n"
+Substitute "s|http://www.springer.com|https://www.springer.com.p.vbz.ffzg.hr|n"
+FilterDeclare NEWPATHS2
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+FilterChain NEWPATHS2
+
 	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
 </VirtualHost>
 
+<VirtualHost *:443>
+	Include /srv/via-proxy/ssl.conf
+
+	ServerName www.springer.com.p.vbz.ffzg.hr
+
+	SSLProxyEngine on
+	ProxyAddHeaders Off
+	ProxyPass        / https://www.springer.com/
+	ProxyPassReverse / https://www.springer.com/
+
+	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
+	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
+
+RequestHeader unset Accept-Encoding
+Substitute "s|http://link.springer.com|https://link.springer.com.p.vbz.ffzg.hr|n"
+Substitute "s|http://www.springer.com|https://www.springer.com.p.vbz.ffzg.hr|n"
+FilterDeclare NEWPATHS2
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+FilterChain NEWPATHS2
+
+	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
+</VirtualHost>
 <VirtualHost *:443>
 	Include /srv/via-proxy/ssl.conf
 
 	ServerName link.springer.com.p.vbz.ffzg.hr
 
+	# download links to pdf have %2F instead of / in them
+	AllowEncodedSlashes On
+	# this might need nocanon in ProxyPass too!
+
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://link.springer.com/
 	ProxyPassReverse / https://link.springer.com/
 
 	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
 	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
 
+RequestHeader unset Accept-Encoding
+Substitute "s|http://link.springer.com|https://link.springer.com.p.vbz.ffzg.hr|n"
+Substitute "s|http://www.springer.com|https://www.springer.com.p.vbz.ffzg.hr|n"
+FilterDeclare NEWPATHS2
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+FilterProvider NEWPATHS2 SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+FilterChain NEWPATHS2
+
 	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
 </VirtualHost>
 
@@ -438,6 +612,7 @@ FilterChain NEWPATHS2
 	ServerName www.tandfonline.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://www.tandfonline.com/
 	ProxyPassReverse / https://www.tandfonline.com/
 
@@ -453,6 +628,7 @@ FilterChain NEWPATHS2
 	ServerName www.sciencedirect.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://www.sciencedirect.com/
 	ProxyPassReverse / https://www.sciencedirect.com/
 
@@ -469,12 +645,22 @@ FilterChain NEWPATHS2
 	ServerName www.scopus.com.p.vbz.ffzg.hr
 
 	SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / https://www.scopus.com/
 	ProxyPassReverse / https://www.scopus.com/
 
 	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
 	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
 
+	RequestHeader unset Accept-Encoding
+	Substitute "s|https://www.scopus.com|https://www.scopus.com.p.vbz.ffzg.hr|"
+	FilterDeclare NEWPATHS
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+	FilterChain NEWPATHS
+
 	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
 </VirtualHost>
 
@@ -483,7 +669,22 @@ FilterChain NEWPATHS2
 
 	ServerName journals.bmj.com.p.vbz.ffzg.hr
 
+	RequestHeader unset Accept-Encoding
+	Substitute "s|(http:)?//(\w+)\.bmj\.com/|https://journals.bmj.com.p.vbz.ffzg.hr/_rewrite_/$2/_path_/|"
+#	Substitute "s|//(.*)\.bmj\.com/|//journals.bmj.com.p.vbz.ffzg.hr/_rewrite_/$1/_path_/|"
+	FilterDeclare NEWPATHS
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+	FilterChain NEWPATHS
+
+	# fix all other plain http resources
+	RewriteEngine on
+	RewriteRule	/_rewrite_/(.*)/_path_/(.*)	http://$1.bmj.com/$2 [P,L]
+
 	#SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / http://journals.bmj.com/
 	ProxyPassReverse / http://journals.bmj.com/
 
@@ -499,6 +700,7 @@ FilterChain NEWPATHS2
 	ServerName journals.bmj.com.p.vbz.ffzg.hr
 
 	#SSLProxyEngine on
+	ProxyAddHeaders Off
 	ProxyPass        / http://journals.bmj.com/
 	ProxyPassReverse / http://journals.bmj.com/
 
@@ -513,6 +715,19 @@ FilterChain NEWPATHS2
 
 	ServerName ieeexplore.ieee.org.p.vbz.ffzg.hr
 
+	RequestHeader unset Accept-Encoding
+	Substitute "s|http://staticieeexplore.ieee.org/|https://ieeexplore.ieee.org.p.vbz.ffzg.hr/_static_/|n"
+	FilterDeclare NEWPATHS
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/html|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/css|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^text/javascript|"
+	FilterProvider NEWPATHS SUBSTITUTE "%{Content_Type} =~ m|^application/javascript|"
+	FilterChain NEWPATHS
+
+	ProxyAddHeaders Off
+	ProxyPass        /_static_/ http://staticieeexplore.ieee.org/
+	ProxyPassReverse /_static_/ http://staticieeexplore.ieee.org/
+
 	# IEEE Xplore is transitioning to HTTPS on 9 April 2018.
 	#SSLProxyEngine on
 	ProxyPass        / http://ieeexplore.ieee.org/
@@ -524,6 +739,48 @@ FilterChain NEWPATHS2
 	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
 </VirtualHost>
 
+<VirtualHost *:443>
+	Include /srv/via-proxy/ssl.conf
+
+	ServerName jcr.incites.thomsonreuters.com.p.vbz.ffzg.hr
+
+	SSLProxyEngine on
+	ProxyAddHeaders Off
+	ProxyPass        / https://jcr.incites.thomsonreuters.com/
+	ProxyPassReverse / https://jcr.incites.thomsonreuters.com/
+
+	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
+	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
+
+	Header edit* Location "(https://.*.incites.thomsonreuters.com)/?(.*)" "$1.p.vbz.ffzg.hr/$2"
+
+
+	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
+</VirtualHost>
+<VirtualHost *:443>
+	Include /srv/via-proxy/ssl.conf
+
+	ServerName login.incites.thomsonreuters.com.p.vbz.ffzg.hr
+
+	SSLProxyEngine on
+	ProxyAddHeaders Off
+	ProxyPass        / https://login.incites.thomsonreuters.com/
+	ProxyPassReverse / https://login.incites.thomsonreuters.com/
+
+	Header edit* Set-Cookie "(.*)(?i:; *domain=)([^;]+)(.*)" "$1 ; domain=$2.p.vbz.ffzg.hr $3"
+	Header edit* Set-Cookie "(.*)(?i:; *secure)" "$1"
+
+	# they really return http Location header even if everything else was
+	# behind https up to that point, AND https works
+	Header edit* Location "https?://(.*.incites.thomsonreuters.com)/?(.*)" "https://$1.p.vbz.ffzg.hr/$2"
+
+	CustomLog /var/log/apache2/access-p.vbz.ffzg.hr.log vhost_combined
+</VirtualHost>
+
+
+
+
+
 NameVirtualHost *:443
 
 <VirtualHost *:443>