Revision 6770d35b
Added by Timo Goebel about 7 years ago
| manifests/init.pp | ||
|---|---|---|
|
class { '::certs::foreman_proxy':
|
||
|
hostname => $foreman_proxy_fqdn,
|
||
|
require => Package['foreman-proxy'],
|
||
|
before => Service['foreman-proxy'],
|
||
|
notify => Service['foreman-proxy'],
|
||
|
} ~>
|
||
|
class { '::certs::katello':
|
||
|
deployment_url => $foreman_proxy_content::rhsm_url,
|
||
| manifests/reverse_proxy.pp | ||
|---|---|---|
|
ssl_verify_client => 'optional',
|
||
|
ssl_verify_depth => 10,
|
||
|
request_headers => ['set X_RHSM_SSL_CLIENT_CERT "%{SSL_CLIENT_CERT}s"'],
|
||
|
proxy_pass => [{
|
||
|
'path' => $path,
|
||
|
'url' => $url,
|
||
|
'reverse_urls' => [$path, $url]
|
||
|
}],
|
||
|
error_documents => [{
|
||
|
proxy_pass => [
|
||
|
{
|
||
|
'path' => $path,
|
||
|
'url' => $url,
|
||
|
'reverse_urls' => [$path, $url]
|
||
|
}
|
||
|
],
|
||
|
error_documents => [
|
||
|
{
|
||
|
'error_code' => '503',
|
||
|
'document' => '\'{"displayMessage": "Internal error, contact administrator", "errors": ["Internal error, contact administrator"], "status": "500" }\''
|
||
|
},
|
||
Also available in: Unified diff
reload foreman-proxy service when cert changes
This commit reload foreman-proxy service when the cert changes. This has
previously been done in puppet-certs. To reduce dependencies of
puppet-certs, moving it here.