correctly configure ssl headers

this is needed for the smart proxy to be able to do client auth

Fixes: 2df4338

Author: evgeni

src/roles/foreman/templates/settings.yaml.j2

@@ -28,3 +28,8 @@
 {% if httpd_external_authentication == 'ipa_with_api' %}
 :authorize_login_delegation_api: true
 {% endif %}
+
+# Configure reverse proxy headers
+:ssl_client_dn_env: HTTP_SSL_CLIENT_S_DN
+:ssl_client_verify_env: HTTP_SSL_CLIENT_VERIFY
+:ssl_client_cert_env: HTTP_SSL_CLIENT_CERT