foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

nginx_site: Add support for verify client option

Browse source
This commit is contained in:
Timo Makinen 2025-07-24 18:32:20 +00:00
parent 0df977f078
commit 92ec72b29b
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
roles/nginx_site/templates/site.conf.j2
View file

@ -29,6 +29,11 @@ server {
ssl_certificate {{ tls_certs }}/{{ nginx_site_name }}-fullchain.crt;
ssl_certificate_key {{ tls_private }}/{{ nginx_site_name }}.key;
{% if nginx_site_verify_client is defined and nginx_site_verify_client %}
ssl_client_certificate {{ tls_certs }}/ca.crt;
ssl_verify_client on;
{% endif %}
{% if nginx_site_port is defined %}
{% include "./{}:{}.conf.j2".format(nginx_site_name, nginx_site_port) ignore missing %}
{% else %}