freifunk/ansible-config
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Update nginx role

Browse source
This commit is contained in:
Alexander Dietrich 2020-03-23 20:43:06 +01:00
commit bbb7c76eef
9 changed files with 46 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

9
roles/nginx/templates/nginx.conf.j2 → roles/nginx/templates/nginx.conf
View file

@ -34,11 +34,13 @@ http {
# SSL Settings
##
ssl_protocols TLSv1.2;
ssl_protocols {{ nginx_tls_versions }};
ssl_ciphers {{ nginx_ciphers }};
ssl_ecdh_curve {{ nginx_curves }};
ssl_prefer_server_ciphers on;
ssl_ciphers ECDH+aRSA+AESGCM:ECDH+aRSA+AES:!SHA1;
ssl_session_cache shared:SSL:1M;
ssl_session_cache shared:SSL:10M;
ssl_session_timeout 10m;
ssl_session_tickets off;
{% if nginx_resolver is defined %}
ssl_stapling on;
ssl_stapling_verify on;
@ -57,7 +59,6 @@ http {
##
gzip on;
gzip_disable "msie6";
# gzip_vary on;
# gzip_proxied any;