Unverified Commit 1880c49b authored by Marc Crebassa's avatar Marc Crebassa Committed by GitHub
Browse files

Merge pull request #99 from Dosenpfand/configurable_tls_cache_size

Add option to set TLS cache size
parents 3576f186 2e3da612
......@@ -336,6 +336,10 @@ Defines various method for retrieving a TLS certificate.
nextcloud_tls_cert_chain: /path/to/cert/chain
# ^remote absolute path to the certificate's full chain- used only by apache - Optional
```
```YAML
nextcloud_tls_session_cache_size: 50m
```
Set the size of the shared nginx TLS session cache to 50 MB.
### System configuration
......
......@@ -80,6 +80,7 @@ nextcloud_hsts: false # recommended >= 15552000
# nextcloud_tls_cert_chain: /path/to/cert/chain
# nextcloud_tls_src_cert: /path/to/cert
# nextcloud_tls_src_cert_key: /path/to/cert/key
nextcloud_tls_session_cache_size: 50m # in Byte or human readable size notation (g|m|k)
# [APPS]
nextcloud_apps: {}
......
......@@ -32,7 +32,7 @@ server {
ssl_certificate {{ nextcloud_tls_cert_file }};
ssl_certificate_key {{ nextcloud_tls_cert_key_file }};
ssl_session_timeout 1d;
ssl_session_cache shared:SSL:50m;
ssl_session_cache shared:SSL:{{ nextcloud_tls_session_cache_size }};
# ssl_session_tickets off;
ssl_stapling on;
ssl_stapling_verify on;
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment