From 41a7a83af0bf1bf4d4dde0f8ea522135dd721738 Mon Sep 17 00:00:00 2001
From: Benjamin Neff <benjamin@coding4coffee.ch>
Date: Wed, 14 Oct 2020 22:09:37 +0200
Subject: [PATCH] feat(ssl.conf): add SSLSessionTickets to ssl.conf on debian

---
 apache/files/Debian/ssl.conf.jinja | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/apache/files/Debian/ssl.conf.jinja b/apache/files/Debian/ssl.conf.jinja
index c2bd059..cf4d69f 100644
--- a/apache/files/Debian/ssl.conf.jinja
+++ b/apache/files/Debian/ssl.conf.jinja
@@ -96,6 +96,13 @@
 	SSLStaplingReturnResponderErrors {{ salt['pillar.get']('apache:ssl:SSLStaplingReturnResponderErrors', 'Off') }}
 	SSLStaplingCache {{ salt['pillar.get']('apache:ssl:SSLStaplingCache', 'shmcb:/var/run/ocsp(128000)') }}
 	{%- endif %}
+
+	{% set ssl_session_ticket = salt['pillar.get']('apache:ssl:SSLSessionTickets') -%}
+	{% if ssl_session_ticket -%}
+	#   Enable or disable use of TLS session tickets
+	#   Default: On
+	SSLSessionTickets {{ ssl_session_ticket }}
+	{%- endif %}
 </IfModule>
 
 # vim: syntax=apache ts=4 sw=4 sts=4 sr noet