add vars and ports for haproxy

Author: bgraef

olam/default_vars.yml

@@ -29,6 +29,8 @@ add_pah_ports: false
 use_freeipa: false
 use_git: false
 add_cluster_ports: false
+use_haproxy: false
+add_haproxy_ports: false
 
 use_kvm: false
 create_vm: false

olam/templates/ingress_security_rules.j2

@@ -79,4 +79,24 @@ instance_ingress_security_rules:
       destination_port_range:
         max: 27199
         min: 27199
-{% endif %}  
+{% endif %}
+{% if add_haproxy_ports %}
+  - source: "10.0.0.0/24"
+    protocol: 6
+    tcp_options:
+      destination_port_range:
+        max: 80
+        min: 80
+  - source: "10.0.0.0/24"
+    protocol: 6
+    tcp_options:
+      destination_port_range:
+        max: 443
+        min: 443
+  - source: "10.0.0.0/24"
+    protocol: 6
+    tcp_options:
+      destination_port_range:
+        max: 8080
+        min: 8080
+{% endif %}

olam/templates/nginx.conf.j2

@@ -42,6 +42,31 @@ http {
     # for more information.
     include /etc/nginx/conf.d/*.conf;
 
+{% if use_haproxy %}
+    server {
+        listen      8080 default_server;
+        listen      [::]:8080 default_server;
+        server_name _;
+        root        /usr/share/nginx/html;
+
+        # Load configuration files for the default server block.
+        include /etc/nginx/default.d/*.conf;
+
+        # OCI LB health check
+        location /nginx-health {
+            access_log off;
+            add_header 'Content-Type' 'text/plain';
+            return 200 "healthy\n";
+        }
+
+        location /health {
+            access_log off;
+            add_header 'Content-Type' 'application/json';
+            return 200 '{"status":"UP"}';
+        }
+    }
+{% endif %}
+
 #    server {
 #        listen       80 default_server;
 #        listen       [::]:80 default_server;