Merge pull request 'denc-webcluster: nginx config fixup' (#26) from import-denc-webcluster-iphash into production

Reviewed-on: #26

pillar/cluster/denc/web-proxy.sls

@@ -90,18 +90,15 @@ nginx:
     {{ nginx_crtkeypair('lysergic', 'lysergic.dev') | indent }}
       - include: snippets/tls
     tls_syscidsso:
-      - ssl_trusted_certificate: {{ trustcrt }}
       - ssl_client_certificate:  {{ trustcrt }}
       - ssl_certificate:         /etc/ssl/syscid/sso.syscid.com.crt
       - ssl_certificate_key:     /etc/ssl/syscid/sso.syscid.com.key
       - ssl_ocsp:                'on'
       - ssl_ocsp_responder:      {{ stapler }}
-      - ssl_stapling:            'on'
       - ssl_stapling_responder:  {{ stapler }}
-      - ssl_stapling_verify:     'on'
       - ssl_verify_client:       'on'
       - resolver:                {{ resolver }} ipv6=off
-      - include:                 snippets.d/tls
+      - include:                 snippets/tls
 
   servers:
     managed:
@@ -111,7 +108,7 @@ nginx:
         - proxy_cache_path: /var/cache/nginx/sso_public keys_zone=cache_sso_public:10m
         - proxy_cache_path: /var/cache/nginx/sso_private keys_zone=cache_sso_private:10m
         - upstream jboss:
-          - ip: hash
+          - ip_hash: ''
           - server:
             - theia.backend.syscid.com:8443
             - orpheus.backend.syscid.com:8443