D2225.diff
No OneTemporary
Actions

Size

1 KB

Referenced Files

None

Subscribers

None

D2225.diff
View Options

	diff --git a/roles/paas-docker/nginx/config.sls b/roles/paas-docker/nginx/config.sls
	--- a/roles/paas-docker/nginx/config.sls
	+++ b/roles/paas-docker/nginx/config.sls
	@@ -19,6 +19,11 @@
	file.managed:
	- source: salt://roles/paas-docker/nginx/files/nginx.conf

	+nginx_dhparams:
	+ cmd.run:
	+ - name: openssl dhparam -out {{ dirs.etc }}/nginx/dhparams.pem 2048
	+ - creates: {{ dirs.etc }}/nginx/dhparams.pem
	+
	# -------------------------------------------------------------
	# includes folder
	#
	diff --git a/roles/paas-docker/nginx/files/includes/tls b/roles/paas-docker/nginx/files/includes/tls
	new file mode 100644
	--- /dev/null
	+++ b/roles/paas-docker/nginx/files/includes/tls
	@@ -0,0 +1,28 @@
	+# -------------------------------------------------------------
	+# Configuration for Let's encrypt nginx
	+# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
	+# Author: Sébastien Santoro aka Dereckson
	+# Created: 2017-04-03
	+# Description: Get SSL certificates from Let's encrypt
	+# Source file: roles/paas-docker/nginx/files/includes/tls
	+# -------------------------------------------------------------
	+#
	+# <auto-generated>
	+# This file is managed by our rOPS SaltStack repository.
	+#
	+# Changes to this file may cause incorrect behavior
	+# and will be lost if the state is redeployed.
	+# </auto-generated>
	+
	+listen 443 ssl http2;
	+listen [::]:443 ssl http2;
	+keepalive_timeout 70;
	+
	+ssl_session_timeout 1d;
	+ssl_session_cache shared:SSL:10m;
	+ssl_session_tickets off;
	+
	+ssl_protocols TLSv1.2;
	+ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256';
	+ssl_prefer_server_ciphers on;
	+ssl_dhparam /etc/nginx/dhparams.pem;

File Metadata

Mime Type: text/plain
Expires: Sun, Nov 24, 18:42 (21 h, 7 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 2260732
Default Alt Text: D2225.diff (1 KB)

D2225.diffNo OneTemporaryActions

D2225.diffView Options

File Metadata

Event Timeline

D2225.diff
No OneTemporary
Actions

D2225.diff
View Options