----
\ No newline at end of file
+---
+infra::additional_classes:
+ - nginx
+ - nodejs
+nodejs::repo_url_suffix: '6.x'
+nodejs::manage_package_repo: true
+
+nginx::config::proxy_hide_header:
+ - X-Powered-By
+nginx::config::http_tcp_nopush: 'on'
+nginx::config::gzip_types: 'text/plain text/css text/javascript application/x-javascript application/xml text/xml application/json application/javascript application/xml+rss text/x-js'
+nginx::config::gzip_comp_level: 9
+nginx::nginx_vhosts:
+ rocket-chat:
+ server_name:
+ - bildfiltertool-meine-krankenkasse-de.pixelpark.net
+ - www.bildfiltertool-meine-krankenkasse-de.pixelpark.net
+ ssl: true
+ ssl_cert: /etc/pki/tls/certs/wildcard.pixelpark.net-cert.pem
+ ssl_key: /etc/pki/tls/private/wildcard.pixelpark.net-key.pem
+ ssl_dhparam: /etc/ssl/certs/dhparam.pem
+ ssl_ciphers: 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH'
+ ssl_protocols: 'TLSv1.2'
+ rewrite_to_https: true
+ proxy: http://node_js
+ add_header:
+ Strict-Transport-Security: "max-age=31536000"
+ X-Content-Type-Options: nosniff
+ X-XSS-Protection: '1; mode=block'
+ X-Frame-Options: DENY
+ proxy_set_header:
+ - 'Host $host:$server_port'
+ - 'Upgrade $http_upgrade'
+ - 'Connection "upgrade"'
+ - 'Host $host'
+ - 'X-Real-IP $remote_addr'
+ - 'X-Forwarded-For $proxy_add_x_forwarded_for'
+ - 'X-Forwarded-Proto https'
+ - 'X-Forwarded-Ssl on'
+ - 'X-Nginx-Proxy true'
+ - 'Referer $http_referer'
+ client_max_body_size: '20m'
+ error_pages:
+ 497: https://$host:$server_port$request_uri
+nginx::nginx_upstreams:
+ node_js:
+ members:
+ - 127.0.0.1:3000
projects / pixelpark / hiera.git / commitdiff