denc-webcluster: nginx config fixup #26
@ -90,18 +90,15 @@ nginx:
|
|||||||
{{ nginx_crtkeypair('lysergic', 'lysergic.dev') | indent }}
|
{{ nginx_crtkeypair('lysergic', 'lysergic.dev') | indent }}
|
||||||
- include: snippets/tls
|
- include: snippets/tls
|
||||||
tls_syscidsso:
|
tls_syscidsso:
|
||||||
- ssl_trusted_certificate: {{ trustcrt }}
|
|
||||||
- ssl_client_certificate: {{ trustcrt }}
|
- ssl_client_certificate: {{ trustcrt }}
|
||||||
- ssl_certificate: /etc/ssl/syscid/sso.syscid.com.crt
|
- ssl_certificate: /etc/ssl/syscid/sso.syscid.com.crt
|
||||||
- ssl_certificate_key: /etc/ssl/syscid/sso.syscid.com.key
|
- ssl_certificate_key: /etc/ssl/syscid/sso.syscid.com.key
|
||||||
- ssl_ocsp: 'on'
|
- ssl_ocsp: 'on'
|
||||||
- ssl_ocsp_responder: {{ stapler }}
|
- ssl_ocsp_responder: {{ stapler }}
|
||||||
- ssl_stapling: 'on'
|
|
||||||
- ssl_stapling_responder: {{ stapler }}
|
- ssl_stapling_responder: {{ stapler }}
|
||||||
- ssl_stapling_verify: 'on'
|
|
||||||
- ssl_verify_client: 'on'
|
- ssl_verify_client: 'on'
|
||||||
- resolver: {{ resolver }} ipv6=off
|
- resolver: {{ resolver }} ipv6=off
|
||||||
- include: snippets.d/tls
|
- include: snippets/tls
|
||||||
|
|
||||||
servers:
|
servers:
|
||||||
managed:
|
managed:
|
||||||
@ -111,7 +108,7 @@ nginx:
|
|||||||
- proxy_cache_path: /var/cache/nginx/sso_public keys_zone=cache_sso_public:10m
|
- proxy_cache_path: /var/cache/nginx/sso_public keys_zone=cache_sso_public:10m
|
||||||
- proxy_cache_path: /var/cache/nginx/sso_private keys_zone=cache_sso_private:10m
|
- proxy_cache_path: /var/cache/nginx/sso_private keys_zone=cache_sso_private:10m
|
||||||
- upstream jboss:
|
- upstream jboss:
|
||||||
- ip: hash
|
- ip_hash: ''
|
||||||
- server:
|
- server:
|
||||||
- theia.backend.syscid.com:8443
|
- theia.backend.syscid.com:8443
|
||||||
- orpheus.backend.syscid.com:8443
|
- orpheus.backend.syscid.com:8443
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user