Skip to content
This repository was archived by the owner on Oct 7, 2025. It is now read-only.

Adding cyphers nginx template pr devel 2.x #2680

Merged
merged 11 commits into from
Sep 17, 2025
Merged

Adding cyphers nginx template pr devel 2.x #2680

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
5071736
Merge pull request #2654 from codeenigma/Gitlab-stop-fix-PR-2.x
drazenCE Sep 2, 2025
a8ba8e4
Fixing-email-title-for-backup-validation (#2657)
matej5 Sep 4, 2025
057138d
Adding-task-to-create-aurora-cluster (#2659)
matej5 Sep 8, 2025
2b30a78
Fixing truthy variable mistakes. (#2662)
gregharvey Sep 10, 2025
cb63668
feat(php): Add FPM slow logrotate (#2625)
klausi Sep 10, 2025
9f05b90
r73458-install-php-gmp-by-default2 (#2667)
nfawbert Sep 10, 2025
a89ae45
Wazuh-mitre-report-setup (#2588)
drazenCE Sep 11, 2025
71278e9
Wazuh mitre report setup pr 2.x (#2669)
drazenCE Sep 11, 2025
65a6a0d
pin_ansible_version (#2671)
tymofiisobchenko Sep 12, 2025
9a7889d
Adding-cyphers-nginx-template
drazenCE Sep 16, 2025
8b03d2f
Fixing-devel
drazenCE Sep 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 3 additions & 0 deletions roles/debian/nginx/defaults/main.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -129,6 +129,9 @@ nginx:
php_fastcgi_backend: "127.0.0.1:90{{ php.version[-1] | replace('.', '') }}" # for unix socket use "unix:/var/run/php{{ php.version[-1] | replace('.','') }}-fpm.sock"
ratelimitingcrawlers: false
client_max_body_size: "700M"
ssl_ciphers: [] # Defaults to empty list, you can add ciphers if needed
# - ECDHE-RSA-AES256-GCM-SHA384
# - ECDHE-RSA-CHACHA20-POLY1305
# drupal_fallback: []
# Default location behavior for nginx
# If no custom location behavior is defined, this will be used:
Expand Down
4 changes: 3 additions & 1 deletion roles/debian/nginx/templates/nginx.conf.j2
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,9 @@ http {

ssl_protocols {{ nginx.http.ssl_protocols }}; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;

{% if nginx.ssl_ciphers is defined and nginx.ssl_ciphers|length > 0 %}
ssl_ciphers {{ nginx.ssl_ciphers | join(':') }};
{% endif %}
##
# Logging Settings
##
Expand Down