openstack/openstack-ansible-haproxy_server
Code Issues Proposed changes
dd842f4eb4
openstack-ansible-haproxy_s.../releasenotes/notes
History
Jonathan Rosser 06e76706c7 Allow customisation of stick-tables for each service. 
A new variable "haproxy_stick_table" is added which allows a custom
stick-table to be supplied that is used as the default stick-table
for all haproxy back-ends.

In addition, the variable service.haproxy_stick_table can be defined
for each service to allow a unique stick-table to be supplied for
a particular service.

The old default stick-table definition is removed as there was no
use case defined for it in this role before. An example is added
to defaults/main.yml to show how the custom stick-table can be used
to rate-limit requests that generate 4xx responses which commonly
occur during vulnerability scanning or credential stuffing attacks.
There are many other uses for stick-tables, consult the HAProxy
documentation for details.

Change-Id: I50daba08c10f071157d6450ea2fa97df448f99ec
2022-07-11 14:54:01 +00:00
..
.placeholder Add scaffolding for OpenStack-CI tests 2016-08-21 17:00:50 +01:00
cert_per_ip-e473f853dbe4047d.yaml Generate self-signed SSL per listen IP 2021-06-25 13:30:25 +00:00
certbot_ha-83b56aed3f360dba.yaml Add releasenote for HA configuration of LetsEncrypt/Certbot 2020-05-12 07:33:46 +01:00
custom-stick-tables-1c790fe223bb0d5d.yaml Allow customisation of stick-tables for each service. 2022-07-11 14:54:01 +00:00
disable-sslv3-303acdcc6b593180.yaml Disable SSLv3 2016-11-09 21:10:51 +00:00
haproxy_allowlist-95aa9b911baeacd9.yaml Replace whitelist with allowlist naming 2021-06-16 14:40:19 +03:00
haproxy_frontend_raw-0811d5d445a66b41.yaml Fix inconsistency in haproxy_frontend_raw naming 2021-11-12 12:29:57 +02:00
haproxy_letsencrypt-4a13c7911a20b993.yaml Define http-01 params with already provided variables 2020-09-24 09:55:09 +00:00
haproxy_tuning_params_released-45eb40104747561a.yaml Don't restrict haproxy tunable options 2022-06-20 08:27:40 +02:00
haproxy-backend-arguments-3b1dca299c7a8296.yaml Adding HAProxy backend options 2017-04-19 12:22:21 -05:00
haproxy-bind-override-9562bab32b964de2.yaml Use haproxy_bind as override 2016-11-07 17:27:13 -06:00
haproxy-frontend-only-haproxy_raw-d55ad3baa8d006f3.yaml Add haproxy_frontend_only and haproxy_raw feature. 2020-12-14 19:10:29 +00:00
haproxy-hatop-4d6525a52f93a69e.yaml Fix HATop for haproxy 2020-12-30 17:20:42 +00:00
haproxy-selinux-all-ports-4094eed48f2bfbca.yaml Allow haproxy to bind to any port in CentOS 2016-09-27 15:17:32 -05:00
implement_tuning_params-e627c774c0d0c9d2.yaml Mentioned haproxy_bufsize option removal 2017-03-17 19:30:34 +00:00
letsencrypt-ssl-certification-129a80cb88d8e6ff.yaml Add feature Letsencrypt SSL certification 2019-01-17 17:54:50 +01:00
non_inventory_hosts-c0fa4c185a01e78b.yaml Add ability to manage non-inventory hosts 2017-12-14 16:37:07 +10:00
package-list-name-changes-a26d94a44c24de2f.yaml Rename package lists (and related vars) appropriately 2016-08-26 16:56:16 +01:00
refresh-interval-configuration-option-884d64aa259ecc3c.yaml Make haproxy stats refresh interval configurable 2018-01-10 13:14:15 -06:00
remove-haproxy-repo-vars-051a47bbfaf6d1da.yaml Remove unused/unnecessary haproxy_server vars/files 2017-08-21 13:21:58 +01:00
stick-table-9ef4bd94a4a000b3.yaml Add variable to disable stick-table 2021-06-24 11:53:32 +01:00
tls12-only-a22d5f3f8198617f.yaml Force force-tlsv12 only 2018-12-13 14:20:37 -06:00
tls_variables-91160d4e38085de4.yaml Adjust default configuration to support TLS v1.3 2022-01-10 08:57:40 +00:00