← Back to index

opnsense_nginx_http_server (Data Source)

Read an OPNsense Nginx HTTP server.

Schema

Required

  • id (String) UUID of the HTTP server.

Read-Only

  • access_log_format (String) Access log format identifier.
  • advanced_acl_server (String) Advanced ACL server option.
  • block_nonpublic_data (Boolean) Whether non-public data is blocked.
  • body_buffer_size (String) Buffer size for request bodies.
  • ca (String) Certificate Authority UUID used for client verification.
  • certificate (String) Certificate UUID used for TLS.
  • charset (String) Character set used for responses.
  • client_header_buffer_size (String) Size of the client header buffer.
  • default_server (Boolean) Whether this server is the default virtual host.
  • disable_bot_protection (Boolean) Whether bot protection is disabled.
  • disable_gzip (Boolean) Whether gzip is disabled.
  • enable_acme_support (Boolean) Whether ACME support is enabled.
  • error_log_level (String) Error log verbosity level.
  • error_pages (Set of String) Custom error pages.
  • https_only (Boolean) Whether HTTP is redirected to HTTPS.
  • ip_acl (String) IP ACL applied to the server.
  • large_client_header_buffers_number (String) Number of large client header buffers.
  • large_client_header_buffers_size (String) Size of large client header buffers.
  • limit_request_connections (Set of String) Limit request connection identifiers applied to the server.
  • listen_http_address (String) Address used for HTTP listeners.
  • listen_https_address (String) Address used for HTTPS listeners.
  • locations (Set of String) Location UUIDs served by this HTTP server.
  • log_handshakes (Boolean) Whether TLS handshakes are logged.
  • max_body_size (String) Maximum request body size.
  • naxsi_extensive_log (Boolean) Whether extensive NAXSI logging is enabled.
  • naxsi_whitelist_src_ip (Set of String) NAXSI whitelist source IPs.
  • ocsp_stapling (Boolean) Whether OCSP stapling is enabled.
  • ocsp_verify (Boolean) Whether OCSP responses are verified.
  • proxy_protocol (Boolean) Whether proxy protocol handling is enabled.
  • real_ip_source (String) Source to retrieve the real client IP.
  • resolver (String) Resolver configuration identifier.
  • rewrites (Set of String) Rewrite rules applied before locations are evaluated.
  • root (String) Root directory served by this HTTP server.
  • satisfy (String) Access satisfy directive.
  • security_header (String) Security header policy.
  • sendfile (Boolean) Whether sendfile is enabled.
  • server_name (String) Server name identifier.
  • syslog_targets (Set of String) Syslog targets associated with the server.
  • tls_ciphers (String) TLS cipher string.
  • tls_ecdh_curve (String) Elliptic curves for TLS.
  • tls_prefer_server_ciphers (Boolean) Whether server ciphers are preferred.
  • tls_protocols (Set of String) TLS protocols allowed for this server.
  • tls_reject_handshake (Boolean) Whether TLS handshakes are rejected.
  • trusted_proxies (Set of String) Trusted proxy addresses.
  • trusted_proxies_alias (String) Alias containing trusted proxies.
  • verify_client (String) Client verification mode.
  • zero_rtt (Boolean) Whether TLS 0-RTT is enabled.