DevFW-CICD/ingress-nginx-helm
16
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update ssl-conf-command template and docs

Browse source
This commit is contained in:
Andrei Zhozhin 2023-01-30 13:52:19 +00:00
parent f3b7bb1d8b
commit fecbdcc7e8
2 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
docs/user-guide/nginx-configuration/configmap.md
View file

@ -82,7 +82,7 @@ The following table shows a configuration option's name, type, and the default v
|[plugins](#plugins)|[]string| |
|[reuse-port](#reuse-port)|bool|"true"|
|[server-tokens](#server-tokens)|bool|"false"|
|[ssl-conf-command](#ssl-conf-command)|string|""|
|[ssl-conf-command](#ssl-conf-command)|[]string| |
|[ssl-ciphers](#ssl-ciphers)|string|"ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"|
|[ssl-ecdh-curve](#ssl-ecdh-curve)|string|"auto"|
|[ssl-dh-param](#ssl-dh-param)|string|""|

3
rootfs/etc/nginx/template/nginx.tmpl
View file

@ -450,11 +450,12 @@ http {
# slightly reduce the time-to-first-byte
ssl_buffer_size {{ $cfg.SSLBufferSize }};
{{ if not (empty $cfg.SSLCiphers) }}
{{ if gt (len $cfg.SSLConfCommand) 0 }}
# allow to specify specific openssl commands
{{ range $sslConfCmd := $cfg.SSLConfCommand }}
ssl_conf_command {{ $sslConfCmd }};
{{ end }}
{{ end }}
{{ if not (empty $cfg.SSLCiphers) }}
# allow configuring custom ssl ciphers