configpolicy/roles/dch-proxy/templates/frontend-main.haproxy.cfg.j2

frontend main
    bind :::80

    use_backend gitea if { hdr(host) -i git.pyrocufflink.blue }
    default_backend myala


frontend main-tls
    bind :::443
    mode tcp
    option tcplog

    tcp-request inspect-delay 5s
    tcp-request content accept if { req_ssl_hello_type 1 }

    use_backend gitea-tls if { req_ssl_sni -i git.pyrocufflink.blue }
    default_backend myala-tls