spk-blog wordpress config Webclient

author Andreas Gerstenberg <gerstenberg@pixelpark.com>

Tue, 20 Feb 2018 15:14:10 +0000 (16:14 +0100)

committer Andreas Gerstenberg <gerstenberg@pixelpark.com>

Tue, 20 Feb 2018 15:14:10 +0000 (16:14 +0100)
author Andreas Gerstenberg <gerstenberg@pixelpark.com>
Tue, 20 Feb 2018 15:14:10 +0000 (16:14 +0100)
committer Andreas Gerstenberg <gerstenberg@pixelpark.com>
Tue, 20 Feb 2018 15:14:10 +0000 (16:14 +0100)
diff --git a/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml b/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml

index a585dac7699a2e22a4c080e9f82d8174d038d1e4..63072ff9d116d2a6bd26811ff58255796ec793b8 100644 (file)
--- a/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml
+++ b/customer/spk-blog/dev-sparkasseblog01.sparkasse.local.yaml
@@ -101,10 +101,18 @@ infra::profile::wordpress::projects:
      ssl_cert: '/etc/pki/tls/certs/sparkasseblog.de-cert.pem'
      ssl_key: '/etc/pki/tls/private/sparkasseblog.de-key.pem'
      ssl_chain: '/etc/pki/tls/certs/sparkasseblog.de-cert.pem'
-    ssl_verify_client: optional
-    ssl_crl: '/etc/pki/tls/certs/spk-cacrl.pem'
-    ssl_ca: '/etc/pki/tls/certs/spk-root-ca.pem'
-    ssl_verify_depth: '2'
+        custom_fragment: |
+          # Webclient Cert Config
+          SSLVerifyClient require
+          SSLCACertificateFile    "/etc/pki/tls/certs/spk-root-ca.pem"
+          SSLCARevocationFile     "/etc/pki/tls/certs/spk-cacrl.pem"
+          SSLCARevocationCheck    "chain"
+          SSLVerifyClient         optional
+          SSLVerifyDepth          2
+#    ssl_verify_client: optional
+#    ssl_crl: '/etc/pki/tls/certs/spk-cacrl.pem'
+#    ssl_ca: '/etc/pki/tls/certs/spk-root-ca.pem'
+#    ssl_verify_depth: '2'
      directories:
        - location1:
          provider: location
author	Andreas Gerstenberg <gerstenberg@pixelpark.com>
	Tue, 20 Feb 2018 15:14:10 +0000 (16:14 +0100)
committer	Andreas Gerstenberg <gerstenberg@pixelpark.com>
	Tue, 20 Feb 2018 15:14:10 +0000 (16:14 +0100)