3 files changed, 28 insertions, 1 deletions

diff --git a/roles/icinga2/templates/default-ssl.conf.j2 b/roles/icinga2/templates/default-ssl.conf.j2
new file mode 100644
index 0000000..7c9ab9e
--- /dev/null
+++ b/roles/icinga2/templates/default-ssl.conf.j2
@@ -0,0 +1,23 @@
+<IfModule mod_ssl.c>
+	<VirtualHost _default_:443>
+		ServerAdmin webmaster@localhost
+		DocumentRoot /var/www/html
+
+		ErrorLog ${APACHE_LOG_DIR}/error.log
+		CustomLog ${APACHE_LOG_DIR}/access.log combined
+
+		SSLEngine on
+		SSLProtocol -all +TLSv1.2 +TLSv1.3
+		SSLCertificateFile {{ icingaweb.cert.cert }}
+		SSLCertificateKeyFile {{ icingaweb.cert.key }}
+
+		<FilesMatch "\.(cgi|shtml|phtml|php)$">
+				SSLOptions +StdEnvVars
+		</FilesMatch>
+		<Directory /usr/lib/cgi-bin>
+				SSLOptions +StdEnvVars
+		</Directory>
+	</VirtualHost>
+</IfModule>
+
+# vim: syntax=apache ts=4 sw=4 sts=4 sr noet
diff --git a/roles/icinga2/templates/icinga2.conf.j2 b/roles/icinga2/templates/icinga2.conf.j2
index fcb9088..13d2d7f 100644
--- a/roles/icinga2/templates/icinga2.conf.j2
+++ b/roles/icinga2/templates/icinga2.conf.j2
@@ -19,4 +19,8 @@ include "features-enabled/*.conf"
 include "ido-mysql.conf"
 include "api_users.conf"
 
+{% if icinga.config.manage is true %}
+include_recursive "conf.git.d"
+{% else %}
 include_recursive "conf.d"
+{% endif %}
diff --git a/roles/icinga2/templates/web/groups.ini.j2 b/roles/icinga2/templates/web/groups.ini.j2
index 848b254..04dba70 100644
--- a/roles/icinga2/templates/web/groups.ini.j2
+++ b/roles/icinga2/templates/web/groups.ini.j2
@@ -13,5 +13,5 @@ group_class		= {{ icingaweb.ldap.groups.group_class }}
 group_filter		= {{ icingaweb.ldap.groups.group_filter }}
 user_base_dn		= {{ icingaweb.ldap.groups.user_base_dn }}
 user_class		= {{ icingaweb.ldap.groups.user_class }}
-user_name_attribute	= {{ icingaweb.ldap.groups.uid }}
+user_name_attribute	= {{ icingaweb.ldap.groups.user_name_attribute }}
 {% endif %}