← Back to index

opnsense_nginx_location (Resource)

Manage an OPNsense Nginx location.

Example Usage

resource "opnsense_nginx_location" "example" {
  description        = "tf-example-location"
  url_pattern        = "/app"
  match_type         = "="
  advanced_acl       = false
  cache_min_uses     = 1
  upstream_keepalive = false
}

Schema

Required

  • description (String) Human readable description for the location.
  • url_pattern (String) URL pattern that the location will match.

Optional

  • advanced_acl (Boolean) Enable the advanced ACL definition for this location.
  • auth_basic (Boolean) Require HTTP basic authentication.
  • auth_basic_user_file (String) Identifier of the user file used for HTTP basic auth.
  • auto_index (Boolean) Enable directory listing.
  • body_buffer_size (String) Buffer size used for request bodies.
  • cache_background_update (Boolean) Allow cache background updates.
  • cache_lock (Boolean) Enable cache lock to avoid cache stampede.
  • cache_methods (String) Request methods that should be cached.
  • cache_min_uses (Number) Minimum number of uses before caching is enabled.
  • cache_path (String) Cache path identifier.
  • cache_revalidate (Boolean) Enable cache revalidation.
  • cache_use_stale (String) Conditions under which a stale cache may be served.
  • cache_valid (String) Cache validity configuration.
  • custom_policy (Set of String) Custom WAF policy identifiers to apply.
  • enable_learning_mode (Boolean) Enable learning mode for waf security rules.
  • enable_sec_rules (Boolean) Enable the web application firewall for this location.
  • error_pages (Set of String) Custom error pages for the location.
  • force_https (Boolean) Force HTTPS redirects.
  • honeypot (Boolean) Enable honeypot mode.
  • index (Set of String) Index files to serve for directory requests.
  • ip_acl (String) Identifier of the IP ACL to apply.
  • limit_request_connections (Set of String) Limit request connection identifiers to apply.
  • match_type (String) Match strategy for the URL pattern.
  • max_body_size (String) Maximum accepted body size for requests (e.g. 10m).
  • path_prefix (String) Optional path prefix when matching upstream requests.
  • php_enable (Boolean) Enable PHP handling for this location.
  • php_override_script_name (String) Override script name passed to PHP.
  • proxy_buffer_size (String) Proxy buffer size.
  • proxy_buffering (Boolean) Enable proxy buffering.
  • proxy_buffers_count (String) Number of proxy buffers.
  • proxy_buffers_size (String) Size of each proxy buffer.
  • proxy_busy_buffers_size (String) Size of busy proxy buffers.
  • proxy_ignore_client_abort (Boolean) Ignore client aborts.
  • proxy_max_temp_file_size (String) Maximum size of proxy temporary files.
  • proxy_read_timeout (String) Proxy read timeout.
  • proxy_request_buffering (Boolean) Enable proxy request buffering.
  • proxy_send_timeout (String) Proxy send timeout.
  • proxy_ssl_server_name (Boolean) Enable proxy SSL server name.
  • rewrites (Set of String) Rewrite rules to apply within the location.
  • root (String) Root directory for the location.
  • satisfy (String) Satisfy directive for access control.
  • sec_rules_error_page (String) Error page to use when a WAF rule blocks a request.
  • sqli_block_score (Number) Threshold score that will block SQL injection requests. Defaults to 100.
  • upstream (String) UUID of the upstream to service this location.
  • upstream_keepalive (Boolean) Enable keepalive connections for the upstream.
  • websocket (Boolean) Enable websocket support.
  • xss_block_score (Number) Threshold score that will block XSS requests. Defaults to 100.

Read-Only

  • id (String) The ID of this resource.