foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

require client certificate for incoming connections on backend servers

Browse source
This commit is contained in:
Timo Makinen 2019-05-20 23:45:09 +03:00
parent de148708a9
commit 8e6db48503
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
roles/nginx/server/templates/nginx.conf.j2
View file

@ -31,6 +31,9 @@ http {
ssl_trusted_certificate /etc/pki/tls/certs/ca.crt;
ssl_certificate_key /etc/pki/tls/private/{{ inventory_hostname }}.key;
ssl_client_certificate /etc/pki/tls/certs/ca.crt;
ssl_verify_client on;
root /srv/web/{{ inventory_hostname }};
include /etc/nginx/conf.d/{{ inventory_hostname }}/*.conf;