Page MenuHomeDevCentral
Files F3751546

D2812.id7142.diff
No OneTemporary
Actions

D2812.id7142.diff
View Options

diff --git a/roles/webserver-legacy/nginx/files/vhosts/nasqueron.org/api.conf b/roles/webserver-legacy/nginx/files/vhosts/nasqueron.org/api.conf
--- a/roles/webserver-legacy/nginx/files/vhosts/nasqueron.org/api.conf
+++ b/roles/webserver-legacy/nginx/files/vhosts/nasqueron.org/api.conf
@@ -14,6 +14,11 @@
# and will be lost if the state is redeployed.
# </auto-generated>
+upstream vault {
+ server 172.27.27.7:8200;
+ # 2 servers should be added for HA, with a quorum for a Raft consensus
+}
+
server {
listen 80;
listen [::]:80;
@@ -71,6 +76,30 @@
include includes/proxy;
include includes/cors-open;
}
+
+ ###
+ ### Vault certificate information
+ ###
+
+ location /infra/security/pki/root/crl {
+ proxy_pass https://vault/v1/pki_root/crl;
+ include includes/proxy;
+ }
+
+ location /infra/security/pki/vault/crl {
+ proxy_pass https://vault/v1/pki_vault/crl;
+ include includes/proxy;
+ }
+
+ location /infra/security/pki/root/ca {
+ proxy_pass https://vault/v1/pki_root/ca;
+ include includes/proxy;
+ }
+
+ location /infra/security/pki/vault/ca {
+ proxy_pass https://vault/v1/pki_vault/ca;
+ include includes/proxy;
+ }
}
server {

File Metadata

Mime Type
text/plain
Expires
Mon, Nov 18, 09:54 (21 h, 13 m)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
2249602
Default Alt Text
D2812.id7142.diff (1 KB)

Event Timeline

Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator