<IfModule mod_ssl.c>
<VirtualHost *:443>
ProxyRequests On
ProxyVia On
<Proxy *>
    Order deny,allow
    Allow from all
    AuthType Basic
    AuthName "Password Required"
    AuthUserFile /etc/apache2/.htpasswd
    Require valid-user
</Proxy>
 ServerAdmin webmaster@localhost
 DocumentRoot /var/www/html
 ErrorLog ${APACHE_LOG_DIR}/error.log
 CustomLog ${APACHE_LOG_DIR}/access.log combined
 ServerName vweb3.forksand.com
 SSLCertificateFile /etc/letsencrypt/live/vweb3.forksand.com/fullchain.pem
 SSLCertificateKeyFile /etc/letsencrypt/live/vweb3.forksand.com/privkey.pem
# Include /etc/letsencrypt/options-ssl-apache.conf

        SSLProtocol -All TLSv1.3 TLSv1.2 -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
        SSLCipherSuite AES256+EECDH
        SSLHonorCipherOrder on
        SSLCompression off
        SSLVerifyClient None
#       Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload"
        SSLSessionTickets Off
        SSLOptions +StrictRequire

   RewriteEngine on
   RewriteCond %{HTTP:Upgrade} =websocket
   RewriteRule /(.*) ws://localhost:8501/$1 [P]
   RewriteCond %{HTTP:Upgrade} !=websocket
   RewriteRule /(.*) http://localhost:8501/$1 [P]
   ProxyPassReverse / http://localhost:8501
   ProxyPreserveHost On
   ProxyRequests off
   AllowEncodedSlashes NoDecode
</VirtualHost>
</IfModule>