Enable http handling in sniproxy, forward arbitration instead of git
[cacert-puppet.git] / sitemodules / profiles / templates / sniproxy / sniproxy.conf.epp
1 <%- | Array[String] $https_forwards = [] | -%>
2 # THIS FILE IS MANAGED BY PUPPET, MANUAL CHANGES WILL BE OVERWRITTEN AT THE
3 # NEXT PUPPET RUN.
4 #
5 # sniproxy configuration file
6 # lines that start with # are comments
7 # lines with only white space are ignored
8
9 user daemon
10 pidfile /var/run/sniproxy.pid
11
12 error_log {
13 # Log to the daemon syslog facility
14 syslog daemon
15
16 # Alternatively we could log to file
17 #filename /var/log/sniproxy/sniproxy.log
18
19 # Control the verbosity of the log
20 priority notice
21 }
22
23 listen 80 {
24 proto http
25 table http_hosts
26 # Fallback backend server to use if we can not parse the client request
27 fallback 127.0.0.1:8080
28
29 access_log {
30 filename /var/log/sniproxy/http_access.log
31 priority notice
32 }
33 }
34
35 listen 443 {
36 proto tls
37 table https_hosts
38
39 access_log {
40 filename /var/log/sniproxy/https_access.log
41 priority notice
42 }
43 }
44
45 table http_hosts {
46 }
47
48 table https_hosts {
49 <%- $https_forwards.each |$forward| { %>
50 <%= $forward -%>
51 <% } %>
52 }