diff options
| author | Jan Dittberner <jandd@cacert.org> | 2021-01-17 18:45:56 +0100 |
|---|---|---|
| committer | Jan Dittberner <jandd@cacert.org> | 2021-01-17 18:45:56 +0100 |
| commit | 225e88a4fe666493bf77848a0814180aeeb2366e (patch) | |
| tree | a3597198ced727d83cf812b83f9c77f17e9e460c /hieradata | |
| parent | 9243a1f202839a234d34369555833e910cc2185d (diff) | |
| download | cacert-puppet-225e88a4fe666493bf77848a0814180aeeb2366e.tar.gz cacert-puppet-225e88a4fe666493bf77848a0814180aeeb2366e.tar.xz cacert-puppet-225e88a4fe666493bf77848a0814180aeeb2366e.zip | |
Add Apache VirtualHost config for web.cacert.org
Diffstat (limited to 'hieradata')
| -rw-r--r-- | hieradata/nodes/web.yaml | 155 |
1 files changed, 155 insertions, 0 deletions
diff --git a/hieradata/nodes/web.yaml b/hieradata/nodes/web.yaml index e0f33fa..21445e0 100644 --- a/hieradata/nodes/web.yaml +++ b/hieradata/nodes/web.yaml @@ -15,3 +15,158 @@ profiles::icinga2_agent::pki_ticket: > HJyrfzBcBgkqhkiG9w0BBwEwHQYJYIZIAWUDBAEqBBDB9xfyP2Mjapd/vzRW ek3UgDBo03zKwbxJ6uooqQ/68zHDKAj0gh2Kpe8tGdbnKm1dOHIpru/5zjob 2gNuQB6szY0=] +profiles::static_websites::apache_vhosts: + 'web.cacert.org redirect-http': + servername: "web.cacert.org" + port: 80 + default_vhost: true + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/web.cacert.org/access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + redirect_source: "/" + redirect_dest: "https://web.cacert.org/" + docroot: false + manage_docroot: false + 'web.cacert.org ssl': + servername: "web.cacert.org" + port: 443 + default_vhost: true + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/web.cacert.org/ssl_access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + docroot: "/var/www/default/web" + manage_docroot: false + ssl: true + ssl_cert: "/etc/ssl/certs/web.cacert.org.crt" + ssl_chain: "/etc/ssl/certs/class3.pem" + ssl_key: "/etc/ssl/private/web.cacert.org.key" + 'codedocs.cacert.org redirect-http': + servername: "codedocs.cacert.org" + port: 80 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/codedocs.cacert.org/access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + redirect_source: "/" + redirect_dest: "https://codedocs.cacert.org/" + docroot: false + manage_docroot: false + 'codedocs.cacert.org ssl': + servername: "codedocs.cacert.org" + port: 443 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/codedocs.cacert.org/ssl_access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + docroot: false + manage_docroot: false + ssl: true + ssl_cert: "/etc/ssl/certs/codedocs.cacert.org.crt" + ssl_chain: "/etc/ssl/certs/class3.pem" + ssl_key: "/etc/ssl/private/codedocs.cacert.org.key" + proxy_pass: + - + path: / + url: http://10.0.0.116:80/ + proxy_preserve_host: true + 'funding.cacert.org redirect-http': + servername: "funding.cacert.org" + port: 80 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/funding.cacert.org/access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + redirect_source: "/" + redirect_dest: "https://funding.cacert.org/" + docroot: false + manage_docroot: false + 'funding.cacert.org ssl': + servername: "funding.cacert.org" + port: 443 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/funding.cacert.org/ssl_access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + docroot: false + manage_docroot: false + ssl: true + ssl_cert: "/etc/ssl/certs/funding.cacert.org.crt" + ssl_chain: "/etc/ssl/certs/class3.pem" + ssl_key: "/etc/ssl/private/funding.cacert.org.key" + proxy_pass: + - + path: / + url: http://10.0.0.116:80/ + proxy_preserve_host: true + 'infradocs.cacert.org redirect-http': + servername: "infradocs.cacert.org" + port: 80 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/infradocs.cacert.org/access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + redirect_source: "/" + redirect_dest: "https://infradocs.cacert.org/" + docroot: false + manage_docroot: false + 'infradocs.cacert.org ssl': + servername: "infradocs.cacert.org" + port: 443 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/infradocs.cacert.org/ssl_access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + docroot: false + manage_docroot: false + ssl: true + ssl_cert: "/etc/ssl/certs/infradocs.cacert.org.crt" + ssl_chain: "/etc/ssl/certs/class3.pem" + ssl_key: "/etc/ssl/private/infradocs.cacert.org.key" + proxy_pass: + - + path: / + url: http://10.0.0.116:80/ + proxy_preserve_host: true + 'jenkins.cacert.org redirect-http': + servername: "jenkins.cacert.org" + port: 80 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/jenkins.cacert.org/access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + redirect_source: "/" + redirect_dest: "https://jenkins.cacert.org/" + docroot: false + manage_docroot: false + 'jenkins.cacert.org ssl': + servername: "jenkins.cacert.org" + port: 443 + access_log: true + access_log_format: "combined" + access_log_pipe: "|/usr/bin/rotatelogs ${APACHE_LOG_DIR}/jenkins.cacert.org/ssl_access.log.%Y.%m.%d 86400" + error_log: true + log_level: "warn" + docroot: false + manage_docroot: false + ssl: true + ssl_cert: "/etc/ssl/certs/jenkins.cacert.org.crt" + ssl_chain: "/etc/ssl/certs/class3.pem" + ssl_key: "/etc/ssl/private/jenkins.cacert.org.key" + proxy_pass: + - + path: / + url: http://10.0.0.115:8080/ + keywords: ['nocanon'] + proxy_preserve_host: true + allow_encoded_slages: nodecode |