David Kitchen
9c93234c27
Added OCSP SSL stapling to reduce SSL handshake by 30% by sparing the revocation list if the certificate includes the intermediate layer to identify the trusted source
2013-04-25 10:48:04 +01:00
David Kitchen
5af32bc82a
Added back RC4 to mitigate BEAST attacks
2013-04-25 10:43:21 +01:00
David Kitchen
9cb898f40d
Added support for SPDY now that nginx 1.4 has arrived
2013-04-24 22:45:56 +01:00
David Kitchen
8108779538
Changed param defaults for Microcosm
2013-04-24 09:57:01 +01:00
David Kitchen
7e33272f84
Changed SSL ciphers to the recent default for Nginx which is much
...
more secure
Added SSL caching to speed up SSL requests
Add server_tokens to the global config so this can be turned on|off
between dev and prod
Add proxy_set_header to vhost as different vhosts may require different
headers and the global setting is not ideal
Minor space formatting so that the generated files are fractionally
more readable
2013-04-24 09:42:06 +01:00
James Fryman
e8c7c51644
Merge pull request #47 from oxilion/upstream_cfg_prepend
...
Add support for upstream_cfg_prepend
2013-04-22 01:53:10 -07:00
Sander Hoentjen
e0843af76a
Add support for upstream_cfg_prepend
...
Makes things possible like specifying ip_hash and/or keepalive.
2013-04-22 10:03:09 +02:00
James Fryman
e333b4cca0
Update Chapter 1 - The haunting Beginning.md
2013-04-16 18:36:28 -05:00
James Fryman
5942926338
Rename Chapter 1 - The haunting Beginning to Chapter 1 - The haunting Beginning.md
2013-04-16 18:36:05 -05:00
James Fryman
ed9dfb0d2e
Create Chapter 1 - The haunting Beginning
2013-04-16 18:35:51 -05:00
James Fryman
b6d6f5fe23
Merge pull request #44 from zoide/ssl-fixes
...
more boolean comparison fixes
2013-04-13 10:48:30 -07:00
do
564e9c3f3d
more boolean comparison fixes
2013-04-13 19:39:52 +02:00
James Fryman
108c5b8f15
Merge pull request #43 from zoide/ssl-fixes
...
Ssl fixes
2013-04-13 10:04:25 -07:00
do
276efcad66
indentation
2013-04-13 13:52:21 +02:00
do
7f6acdf643
removing wrong boolean quoting
2013-04-13 13:50:40 +02:00
do
8fcc6adbf9
removing wrong boolean quoting
2013-04-13 13:50:10 +02:00
do
265485dd31
ssl check fixed
2013-04-13 13:46:38 +02:00
James Fryman
f042b84686
Merge pull request #42 from igoraj/master
...
Fixed typo in init.pp
2013-04-12 04:52:18 -07:00
Igor Ajdisek
5234649b8a
Fixed typo in init.pp
2013-04-12 14:44:27 +03:00
James Fryman
bd0c5c59fe
Merge pull request #41 from oxilion/jfryman-add-mail-support
...
add support for mail module
2013-04-09 18:07:21 -07:00
Sander Hoentjen
4d05075f64
add support for mail module
...
See http://wiki.nginx.org/Modules#Mail_modules
Sample Usage:
nginx::resource::mailhost { 'domain1.example':
ensure => present,
auth_http => 'server2.example/cgi-bin/auth',
protocol => 'smtp',
listen_port => 587,
ssl_port => 465,
starttls => 'only',
xclient => 'off',
ssl => 'true',
ssl_cert => '/tmp/server.crt',
ssl_key => '/tmp/server.pem',
}
2013-04-06 11:11:23 +02:00
James Fryman
6d2be4800d
Merge pull request #39 from ryanfitz/amazon
...
Amazon Linux support
2013-01-22 19:34:29 -08:00
Ryan Fitzgerald
a5b7258f63
fixing vhost template
2013-01-22 18:28:06 +00:00
Ryan Fitzgerald
73f43293f7
fixing syntax error
2013-01-22 13:07:16 -05:00
Ryan Fitzgerald
884777290a
adding in suport of amazon linux
2013-01-22 12:09:51 -05:00
James Fryman
f7c5108ec6
Update README.markdown
2012-12-14 00:14:25 -06:00
James Fryman
7c4041d143
Merge pull request #35 from hunner/add_tryfiles
...
Add try_files option
2012-12-13 22:12:00 -08:00
James Fryman
b4c02e23b0
Merge pull request #36 from hunner/add_scientific_linux
...
Add scientific linux support
2012-12-13 22:11:30 -08:00
James Fryman
04b20ecc01
Merge pull request #37 from hunner/add_scilinux
...
Add scientific linux support
2012-12-13 22:11:17 -08:00
Hunter Haugen
f171713662
Add scientific linux support
...
This commit simply adds scientific to the `$::operatingsystem`
selectors.
2012-12-10 15:58:58 -08:00
Hunter Haugen
e419006b74
Add try_files option
...
Nginx supports a option via http://wiki.nginx.org/HttpCoreModule#try_files and this adds this as a parameter
2012-11-08 14:15:28 -08:00
Hunter Haugen
d5effb1fc8
Add scientific linux support
2012-11-08 14:13:21 -08:00
James Fryman
688948a267
Merge pull request #33 from juaningan/master
...
Support for SSL only server and SSL defined port
2012-10-24 05:09:43 -07:00
James Fryman
ea04c46b9c
Merge pull request #32 from lboynton/fix-template-syntax
...
Fix syntax error in ERB template
2012-10-24 05:09:16 -07:00
juaningan
b4ddaf22df
Added SSL port support and if SSL and listen port are the same just creates SSL vhost and location
2012-10-18 15:33:07 +02:00
Lee Boynton
13174e0a3a
Fix syntax error in ERB template
2012-10-18 11:12:43 +01:00
James Fryman
4f6f488f6d
Merge pull request #31 from guruHub/pull_listen_option
...
Added listen_options and ipv6_listen_options feature
2012-10-04 13:32:55 -07:00
Guzmán Brasó
1e6f9dc93c
Added listen_options and ipv6_listen_options feature
...
* Allows to set exta option to listen directives like 'default'.
* This won't change on ipv6 listen template the option ipv6only=on.
2012-10-04 17:17:50 -03:00
James Fryman
91165742b6
fixing dangling commas at the end of class parameters
2012-10-04 15:17:31 -05:00
James Fryman
a6d82bffd0
Merge pull request #29 from guruHub/pull_feature_location_cfg
...
Pull feature location cfg
2012-10-03 11:37:41 -07:00
James Fryman
c63df59d12
Merge pull request #28 from guruHub/pull_feature_stub_status
...
Feature status locations
2012-10-03 06:16:23 -07:00
Guzmán Brasó
49beb91993
James,
...
This is the best way I found to tackle the problem of custom directives, trying to
avoid common usage of module involve hacking the module/template to be able place
custom directives.
Right now support was added only for location context (default and custom ones),
it expects a hash with key value and it's supported on all current location types.
Added an example inside location.pp, usage it's pretty easy.
2012-10-02 23:35:56 -03:00
Guzmán Brasó
b487f64426
Merge branch 'guzmandev' into pull_feature_stub_status
2012-10-02 20:08:08 -03:00
Guzmán Brasó
a9273d7fb8
Added support for stub_status location
...
If stub_status is provided as true a location will be created to provide
nginx status information from stub_status module.
2012-10-02 20:07:19 -03:00
James Fryman
c8ec712d07
Merge pull request #27 from guruHub/pull_feature_cfgtest
...
Implementation of new vars configtest_enable and service_restart...
2012-10-02 10:37:40 -07:00
James Fryman
32ea70c393
Merge pull request #26 from guruHub/pull_feature_confd_purge
...
Allow purge of confd dir as optional argument.
2012-10-02 10:37:12 -07:00
James Fryman
d10a514c6e
Merge pull request #25 from guruHub/pull_refactor
...
puppet-nginx refactor to class/arguments
2012-10-02 10:36:54 -07:00
James Fryman
3607491270
Merge pull request #24 from guruHub/pull_issue_20
...
Fixed error from cat when trying nginx.d/* on nodes without vhosts defined
2012-10-02 10:36:23 -07:00
Guzmán Brasó
e9fce56092
Fixing merge from latest code on master plus guruhub
2012-10-02 01:56:37 -03:00
Guzmán Brasó
197ad06bce
Implementation of new vars configtest_enable and service_restart and their respective optional arguments.
...
Argument configtest_enable / params.pp $nx_configtest_enable
* Default false
* If true will set service[nginx] restart with contents of nx_service_restart.
Argument service_restart / params.pp $nx_service_restart
* Default '/etc/init.d/nginx configtest && /etc/init.d/nginx restart'
* Since nginx 0.7.53 nginx supports '-s HUP' which will reload testing configuration first, to be backwards compatible above default was choosen.
Many distributions of nginx already implement a configtest before restart, however many doesn't, and many
even don't provide restart but a stop/start combination. If configtest_enable is true then puppet will force
nginx to do a configtest no matter if it was going or not to do it itself.
2012-10-02 01:43:36 -03:00