File: _ssl.erb

package info (click to toggle)
puppet-module-puppetlabs-apache 12.2.0-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 2,664 kB
  • sloc: ruby: 275; sh: 32; makefile: 2
file content (68 lines) | stat: -rw-r--r-- 2,283 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
 
<% if @ssl -%>

  ## SSL directives
  SSLEngine on
  <%- unless @mdomain -%>
  SSLCertificateFile      "<%= @ssl_cert %>"
  SSLCertificateKeyFile   "<%= @ssl_key %>"
  <%- end -%>
  <%- if @ssl_chain -%>
  SSLCertificateChainFile "<%= @ssl_chain %>"
  <%- end -%>
  <%- if @ssl_protocol -%>
  SSLProtocol             <%= [@ssl_protocol].flatten.compact.join(' ') %>
  <%- end -%>
  <%- if @ssl_cipher -%>
  <%- if @ssl_cipher.kind_of?(String) -%>
  SSLCipherSuite          <%= @ssl_cipher %>
  <%- elsif @ssl_cipher.kind_of?(Hash) -%>
    <%- @ssl_cipher.map do |protocol, cipher| -%>
  SSLCipherSuite <%= protocol %> <%= cipher%>
    <%- end -%>
  <%- else -%>
  SSLCipherSuite          <%= @ssl_cipher.flatten.compact.join(':') %>
  <%- end -%>
  <%- end -%>
  <%- if not @ssl_honorcipherorder.nil? -%>
  SSLHonorCipherOrder     <%= scope.call_function('apache::bool2httpd', [@_ssl_honorcipherorder]) %>
  <%- end -%>
  <%- if @ssl_verify_client -%>
  SSLVerifyClient         <%= @ssl_verify_client %>
  <%- if @ssl_verify_depth -%>
  SSLVerifyDepth          <%= @ssl_verify_depth %>
  <%- end -%>
  <%- end -%>
  <%- if @ssl_certs_dir && @ssl_certs_dir != '' -%>
  SSLCACertificatePath    "<%= @ssl_certs_dir %>"
  <%- end -%>
  <%- if @ssl_ca -%>
  SSLCACertificateFile    "<%= @ssl_ca %>"
  <%- end -%>
  <%- if @ssl_crl_path -%>
  SSLCARevocationPath     "<%= @ssl_crl_path %>"
  <%- end -%>
  <%- if @ssl_crl -%>
  SSLCARevocationFile     "<%= @ssl_crl %>"
  <%- end -%>
  <%- if @ssl_crl_check -%>
  SSLCARevocationCheck    <%= @ssl_crl_check %>
  <%- end -%>
  <%- if @ssl_options -%>
  SSLOptions <%= Array(@ssl_options).join(' ') %>
  <%- end -%>
  <%- if @ssl_openssl_conf_cmd -%>
  SSLOpenSSLConfCmd       <%= @ssl_openssl_conf_cmd %>
  <%- end -%>
  <%- unless @ssl_stapling.nil? -%>
  SSLUseStapling <%= scope.call_function('apache::bool2httpd', [@ssl_stapling]) %>
  <%- end -%>
  <%- if @ssl_stapling_timeout -%>
  SSLStaplingResponderTimeout <%= @ssl_stapling_timeout %>
  <%- end -%>
  <%- unless @ssl_stapling_return_errors.nil? -%>
  SSLStaplingReturnResponderErrors <%= scope.call_function('apache::bool2httpd', [@ssl_stapling_return_errors]) %>
  <%- end -%>
  <%- if @ssl_user_name -%>
  SSLUserName             <%= @ssl_user_name %>
  <%- end -%>
<% end -%>