From 0a8468a188a873ee30fd352263d852e4ad524e2f Mon Sep 17 00:00:00 2001
From: jurgenhaas <juergen@paragon-es.de>
Date: Fri, 19 May 2017 11:45:44 +0200
Subject: [PATCH] Allow to deactivate letsencrypt certs, i.e. while DNS is not
 available yet

---
 templates/haproxy_cfg.jinja2 | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/templates/haproxy_cfg.jinja2 b/templates/haproxy_cfg.jinja2
index efbf9e7..b594c39 100644
--- a/templates/haproxy_cfg.jinja2
+++ b/templates/haproxy_cfg.jinja2
@@ -159,6 +159,7 @@ frontend http_in
 {% endif %}
 {% endfor %}
 {% for cert in proxy_certificates %}
+{% if cert.active|default(true) %}
 
 frontend https_in_{{ cert.ip }}
   bind {{ cert.ip }}:443 ssl crt /etc/haproxy/certs/{{ cert.file }} no-sslv3
@@ -274,6 +275,7 @@ backend backend_{{ external.key }}
 {% endfor %}
   server server_{{ external.key }} {{ external.server }}{{ external.check|default(true)|ternary(' check ','') }} {{ external.options|default('') }}
 {% endfor %}
+{% endif %}
 {% endfor %}
 {% if proxy_default_backend not in groups['webserver'] %}
 
-- 
GitLab