-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathpillar_ssl_proxy.example
95 lines (87 loc) · 2.3 KB
/
pillar_ssl_proxy.example
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
jira:
version: 3.2.1
db_type: 'mysql'
db_type_name: 'mysql'
db_driver: 'com.mysql.jdbc.Driver'
db_server: 'localhost'
db_port: '3306'
db_username: 'jira'
db_password: 'somepassjira'
db_name: 'jira'
db_datadir: '/data/mysql'
use_https: true
prefix: '/data'
jira_home: '/data/jira-home'
jira_hostname: 'somedomain.com'
jvm_Xms: 1024m
jvm_Xmx: 1024m
mysql:
server:
root_user: 'root'
root_password: 'somepassroot'
datadir: /data/mysql
database:
- jira
user:
jira:
password: 'somepassjira'
host: localhost
databases:
- database: jira
grants: ['all privileges']
nginx:
ng:
server:
config:
worker_processes: 4
pid: /run/nginx.pid
events:
worker_connections: 768
http:
sendfile: 'on'
include:
- /etc/nginx/mime.types
- /etc/nginx/conf.d/*.conf
- /etc/nginx/sites-enabled/*
servers:
managed:
jira:
enabled: True
overwrite: True
config:
- server:
- server_name: 'somedomain.com'
- return:
- 301
- https://$server_name$request_uri
- server:
- listen:
- 443
- ssl
- server_name: 'somedomain.com'
- ssl_certificate: '/etc/nginx/ssl/somedomain.com.crt'
- ssl_certificate_key: '/etc/nginx/ssl/somedomain.com.key'
- "location /":
- proxy_set_header:
- X-Forwarded-Host
- $host
- proxy_set_header:
- X-Forwarded-Server
- $remote_addr
- proxy_set_header:
- X-Forwarded-for
- $proxy_add_x_forwarded_for
- proxy_pass:
- http://localhost:8080
- client_max_body_size:
- 10M
certificates:
'somedomain.com':
public_cert: |
-----BEGIN CERTIFICATE-----
Your chain here
-----END CERTIFICATE-----
private_key: |
-----BEGIN PRIVATE KEY-----
Your private key here
-----END PRIVATE KEY-----