From f982222807094e89912776174092c9d603a39096 Mon Sep 17 00:00:00 2001
From: Shaun McPeck <smcpeck@gmail.com>
Date: Wed, 27 Mar 2019 06:43:00 -0500
Subject: [PATCH] Add ability to configure SSL timeout per host

---
 nginx.tmpl | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/nginx.tmpl b/nginx.tmpl
index a9fc479..7c24ea5 100644
--- a/nginx.tmpl
+++ b/nginx.tmpl
@@ -244,8 +244,9 @@ server {
 	ssl_ciphers 'ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:DHE-DSS-AES128-SHA';
 	{{ end }}
 
+	{{ $ssl_session_timeout := eq (or ($.Env.SSL_TIMEOUT) "") "5m" }}
 	ssl_prefer_server_ciphers on;
-	ssl_session_timeout 5m;
+	ssl_session_timeout {{ (printf "%s" $ssl_session_timeout) }};
 	ssl_session_cache shared:SSL:50m;
 	ssl_session_tickets off;