Commit graph

139 commits

Author SHA1 Message Date
James Fryman
8144b4f27a Merge pull request #52 from iksteen/inconsistent-hash-order
Stabilize key/value output by sorting hashes on key.
2013-05-09 07:07:22 -07:00
Ingmar Steen
77ed64d2fa Stabilize key/value output by sorting hashes on key. 2013-05-09 14:51:31 +02:00
James Fryman
2ae707222d Merge pull request #51 from oxilion/linting
linting
2013-05-08 05:54:17 -07:00
Sander Hoentjen
4bcb0993c1 linting 2013-05-08 14:15:42 +02:00
James Fryman
34e41b75a9 Merge pull request #50 from oxilion/proxy_http_version
Proxy http version
2013-05-06 09:55:04 -07:00
Sander Hoentjen
57ee1ec1e7 make proxy_http_version configurable 2013-05-06 11:40:46 +02:00
Sander Hoentjen
3630b74c72 return the newline between cfg lines 2013-05-06 11:38:34 +02:00
Sander Hoentjen
8859c4e8db linting 2013-05-06 11:37:37 +02:00
James Fryman
2e8a148852 saner defaults 2013-04-25 16:22:09 -05:00
James Fryman
7b56556529 Merge pull request #48 from microcosm-cc/master
SSL improvements (default ciphers & caching), server_tokens option, and proxy_set_headers for vhosts
2013-04-25 07:51:04 -07:00
David Kitchen
6391c08543 Fixed ssl_stapling instruction 2013-04-25 10:54:18 +01:00
David Kitchen
9c93234c27 Added OCSP SSL stapling to reduce SSL handshake by 30% by sparing the revocation list if the certificate includes the intermediate layer to identify the trusted source 2013-04-25 10:48:04 +01:00
David Kitchen
5af32bc82a Added back RC4 to mitigate BEAST attacks 2013-04-25 10:43:21 +01:00
David Kitchen
9cb898f40d Added support for SPDY now that nginx 1.4 has arrived 2013-04-24 22:45:56 +01:00
David Kitchen
8108779538 Changed param defaults for Microcosm 2013-04-24 09:57:01 +01:00
David Kitchen
7e33272f84 Changed SSL ciphers to the recent default for Nginx which is much
more secure
Added SSL caching to speed up SSL requests
Add server_tokens to the global config so this can be turned on|off
    between dev and prod
Add proxy_set_header to vhost as different vhosts may require different
    headers and the global setting is not ideal
Minor space formatting so that the generated files are fractionally
    more readable
2013-04-24 09:42:06 +01:00
James Fryman
e8c7c51644 Merge pull request #47 from oxilion/upstream_cfg_prepend
Add support for upstream_cfg_prepend
2013-04-22 01:53:10 -07:00
Sander Hoentjen
e0843af76a Add support for upstream_cfg_prepend
Makes things possible like specifying ip_hash and/or keepalive.
2013-04-22 10:03:09 +02:00
James Fryman
e333b4cca0 Update Chapter 1 - The haunting Beginning.md 2013-04-16 18:36:28 -05:00
James Fryman
5942926338 Rename Chapter 1 - The haunting Beginning to Chapter 1 - The haunting Beginning.md 2013-04-16 18:36:05 -05:00
James Fryman
ed9dfb0d2e Create Chapter 1 - The haunting Beginning 2013-04-16 18:35:51 -05:00
James Fryman
b6d6f5fe23 Merge pull request #44 from zoide/ssl-fixes
more boolean comparison fixes
2013-04-13 10:48:30 -07:00
do
564e9c3f3d more boolean comparison fixes 2013-04-13 19:39:52 +02:00
James Fryman
108c5b8f15 Merge pull request #43 from zoide/ssl-fixes
Ssl fixes
2013-04-13 10:04:25 -07:00
do
276efcad66 indentation 2013-04-13 13:52:21 +02:00
do
7f6acdf643 removing wrong boolean quoting 2013-04-13 13:50:40 +02:00
do
8fcc6adbf9 removing wrong boolean quoting 2013-04-13 13:50:10 +02:00
do
265485dd31 ssl check fixed 2013-04-13 13:46:38 +02:00
James Fryman
f042b84686 Merge pull request #42 from igoraj/master
Fixed typo in init.pp
2013-04-12 04:52:18 -07:00
Igor Ajdisek
5234649b8a Fixed typo in init.pp 2013-04-12 14:44:27 +03:00
James Fryman
bd0c5c59fe Merge pull request #41 from oxilion/jfryman-add-mail-support
add support for mail module
2013-04-09 18:07:21 -07:00
Sander Hoentjen
4d05075f64 add support for mail module
See http://wiki.nginx.org/Modules#Mail_modules

Sample Usage:

 nginx::resource::mailhost { 'domain1.example':
   ensure      => present,
   auth_http   => 'server2.example/cgi-bin/auth',
   protocol    => 'smtp',
   listen_port => 587,
   ssl_port    => 465,
   starttls    => 'only',
   xclient     => 'off',
   ssl         => 'true',
   ssl_cert    => '/tmp/server.crt',
   ssl_key     => '/tmp/server.pem',
 }
2013-04-06 11:11:23 +02:00
James Fryman
6d2be4800d Merge pull request #39 from ryanfitz/amazon
Amazon Linux support
2013-01-22 19:34:29 -08:00
Ryan Fitzgerald
a5b7258f63 fixing vhost template 2013-01-22 18:28:06 +00:00
Ryan Fitzgerald
73f43293f7 fixing syntax error 2013-01-22 13:07:16 -05:00
Ryan Fitzgerald
884777290a adding in suport of amazon linux 2013-01-22 12:09:51 -05:00
James Fryman
f7c5108ec6 Update README.markdown 2012-12-14 00:14:25 -06:00
James Fryman
7c4041d143 Merge pull request #35 from hunner/add_tryfiles
Add try_files option
2012-12-13 22:12:00 -08:00
James Fryman
b4c02e23b0 Merge pull request #36 from hunner/add_scientific_linux
Add scientific linux support
2012-12-13 22:11:30 -08:00
James Fryman
04b20ecc01 Merge pull request #37 from hunner/add_scilinux
Add scientific linux support
2012-12-13 22:11:17 -08:00
Hunter Haugen
f171713662 Add scientific linux support
This commit simply adds scientific to the `$::operatingsystem`
selectors.
2012-12-10 15:58:58 -08:00
Hunter Haugen
e419006b74 Add try_files option
Nginx supports a  option via http://wiki.nginx.org/HttpCoreModule#try_files and this adds this as a parameter
2012-11-08 14:15:28 -08:00
Hunter Haugen
d5effb1fc8 Add scientific linux support 2012-11-08 14:13:21 -08:00
James Fryman
688948a267 Merge pull request #33 from juaningan/master
Support for SSL only server and SSL defined port
2012-10-24 05:09:43 -07:00
James Fryman
ea04c46b9c Merge pull request #32 from lboynton/fix-template-syntax
Fix syntax error in ERB template
2012-10-24 05:09:16 -07:00
juaningan
b4ddaf22df Added SSL port support and if SSL and listen port are the same just creates SSL vhost and location 2012-10-18 15:33:07 +02:00
Lee Boynton
13174e0a3a Fix syntax error in ERB template 2012-10-18 11:12:43 +01:00
James Fryman
4f6f488f6d Merge pull request #31 from guruHub/pull_listen_option
Added listen_options and ipv6_listen_options feature
2012-10-04 13:32:55 -07:00
Guzmán Brasó
1e6f9dc93c Added listen_options and ipv6_listen_options feature
* Allows to set exta option to listen directives like 'default'.
* This won't change on ipv6 listen template the option ipv6only=on.
2012-10-04 17:17:50 -03:00
James Fryman
91165742b6 fixing dangling commas at the end of class parameters 2012-10-04 15:17:31 -05:00