summaryrefslogtreecommitdiff
path: root/hieradata
diff options
context:
space:
mode:
authorJan Dittberner <jandd@cacert.org>2021-01-17 18:45:56 +0100
committerJan Dittberner <jandd@cacert.org>2021-01-17 18:45:56 +0100
commit225e88a4fe666493bf77848a0814180aeeb2366e (patch)
treea3597198ced727d83cf812b83f9c77f17e9e460c /hieradata
parent9243a1f202839a234d34369555833e910cc2185d (diff)
downloadcacert-puppet-225e88a4fe666493bf77848a0814180aeeb2366e.tar.gz
cacert-puppet-225e88a4fe666493bf77848a0814180aeeb2366e.tar.xz
cacert-puppet-225e88a4fe666493bf77848a0814180aeeb2366e.zip
Add Apache VirtualHost config for web.cacert.org
Diffstat (limited to 'hieradata')
-rw-r--r--hieradata/nodes/web.yaml155
1 files changed, 155 insertions, 0 deletions
diff --git a/hieradata/nodes/web.yaml b/hieradata/nodes/web.yaml
index e0f33fa..21445e0 100644
--- a/hieradata/nodes/web.yaml
+++ b/hieradata/nodes/web.yaml
@@ -15,3 +15,158 @@ profiles::icinga2_agent::pki_ticket: >
HJyrfzBcBgkqhkiG9w0BBwEwHQYJYIZIAWUDBAEqBBDB9xfyP2Mjapd/vzRW
ek3UgDBo03zKwbxJ6uooqQ/68zHDKAj0gh2Kpe8tGdbnKm1dOHIpru/5zjob
2gNuQB6szY0=]
+profiles::static_websites::apache_vhosts:
+ 'web.cacert.org redirect-http':
+ servername: "web.cacert.org"
+ port: 80
+ default_vhost: true
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/web.cacert.org/access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ redirect_source: "/"
+ redirect_dest: "https://web.cacert.org/"
+ docroot: false
+ manage_docroot: false
+ 'web.cacert.org ssl':
+ servername: "web.cacert.org"
+ port: 443
+ default_vhost: true
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/web.cacert.org/ssl_access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ docroot: "/var/www/default/web"
+ manage_docroot: false
+ ssl: true
+ ssl_cert: "/etc/ssl/certs/web.cacert.org.crt"
+ ssl_chain: "/etc/ssl/certs/class3.pem"
+ ssl_key: "/etc/ssl/private/web.cacert.org.key"
+ 'codedocs.cacert.org redirect-http':
+ servername: "codedocs.cacert.org"
+ port: 80
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/codedocs.cacert.org/access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ redirect_source: "/"
+ redirect_dest: "https://codedocs.cacert.org/"
+ docroot: false
+ manage_docroot: false
+ 'codedocs.cacert.org ssl':
+ servername: "codedocs.cacert.org"
+ port: 443
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/codedocs.cacert.org/ssl_access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ docroot: false
+ manage_docroot: false
+ ssl: true
+ ssl_cert: "/etc/ssl/certs/codedocs.cacert.org.crt"
+ ssl_chain: "/etc/ssl/certs/class3.pem"
+ ssl_key: "/etc/ssl/private/codedocs.cacert.org.key"
+ proxy_pass:
+ -
+ path: /
+ url: http://10.0.0.116:80/
+ proxy_preserve_host: true
+ 'funding.cacert.org redirect-http':
+ servername: "funding.cacert.org"
+ port: 80
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/funding.cacert.org/access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ redirect_source: "/"
+ redirect_dest: "https://funding.cacert.org/"
+ docroot: false
+ manage_docroot: false
+ 'funding.cacert.org ssl':
+ servername: "funding.cacert.org"
+ port: 443
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/funding.cacert.org/ssl_access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ docroot: false
+ manage_docroot: false
+ ssl: true
+ ssl_cert: "/etc/ssl/certs/funding.cacert.org.crt"
+ ssl_chain: "/etc/ssl/certs/class3.pem"
+ ssl_key: "/etc/ssl/private/funding.cacert.org.key"
+ proxy_pass:
+ -
+ path: /
+ url: http://10.0.0.116:80/
+ proxy_preserve_host: true
+ 'infradocs.cacert.org redirect-http':
+ servername: "infradocs.cacert.org"
+ port: 80
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/infradocs.cacert.org/access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ redirect_source: "/"
+ redirect_dest: "https://infradocs.cacert.org/"
+ docroot: false
+ manage_docroot: false
+ 'infradocs.cacert.org ssl':
+ servername: "infradocs.cacert.org"
+ port: 443
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/infradocs.cacert.org/ssl_access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ docroot: false
+ manage_docroot: false
+ ssl: true
+ ssl_cert: "/etc/ssl/certs/infradocs.cacert.org.crt"
+ ssl_chain: "/etc/ssl/certs/class3.pem"
+ ssl_key: "/etc/ssl/private/infradocs.cacert.org.key"
+ proxy_pass:
+ -
+ path: /
+ url: http://10.0.0.116:80/
+ proxy_preserve_host: true
+ 'jenkins.cacert.org redirect-http':
+ servername: "jenkins.cacert.org"
+ port: 80
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/jenkins.cacert.org/access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ redirect_source: "/"
+ redirect_dest: "https://jenkins.cacert.org/"
+ docroot: false
+ manage_docroot: false
+ 'jenkins.cacert.org ssl':
+ servername: "jenkins.cacert.org"
+ port: 443
+ access_log: true
+ access_log_format: "combined"
+ access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/jenkins.cacert.org/ssl_access.log.%Y.%m.%d 86400"
+ error_log: true
+ log_level: "warn"
+ docroot: false
+ manage_docroot: false
+ ssl: true
+ ssl_cert: "/etc/ssl/certs/jenkins.cacert.org.crt"
+ ssl_chain: "/etc/ssl/certs/class3.pem"
+ ssl_key: "/etc/ssl/private/jenkins.cacert.org.key"
+ proxy_pass:
+ -
+ path: /
+ url: http://10.0.0.115:8080/
+ keywords: ['nocanon']
+ proxy_preserve_host: true
+ allow_encoded_slages: nodecode