Use different template for vhosts when ssl = true

[nalbion]

Something like this (based on vhost-ssl.template)

# File Managed by Puppet

<IfDefine SSL>
<IfDefine !NOSSL>

<VirtualHost <%= @ip_addr %>:<%= @port %>>
    ServerAdmin <%= @server_admin_email ||= 'webmaster@localhost' %>
<% if @server_name_value != false -%>
    ServerName <%= @server_name_value %>
<% end -%>

    DocumentRoot <%= @real_docroot %>

    ErrorLog  <%= scope.lookupvar('apache::log_dir') %>/<%= @name %>-error_log
    CustomLog <%= scope.lookupvar('apache::log_dir') %>/<%= @name %>-access_log common

    SSLEngine on
    SSLProtocol all -SSLv2 -SSLv3
    SSLCipherSuite ALL:!aNULL:!eNULL:!SSLv2:!LOW:!EXP:!MD5:@STRENGTH
    SSLCertificateFile <%= scope.lookupvar('apache::log_dir') %>/ssl.crt/server.crt
    SSLCertificateKeyFile <%= scope.lookupvar('apache::log_dir') %>/ssl.key/server.key
</VirtualHost>

</IfDefine>
</IfDefine>

[alvagante]

What about modifying the current one, adding what's missing when we have ssl=true?

[nalbion]

I suppose that would work just as well. I don't know enough about Apache configuration to know whether a lot of the other options in the vhosts XML file are not applicable in an SSL config file