From cff949830e01657a605c16418d39eaddc3efe7de Mon Sep 17 00:00:00 2001
From: filip <filip.rupic@codeenigma.com>
Date: Fri, 23 Aug 2024 13:09:48 +0200
Subject: [PATCH 1/4] updating asg role

---
 roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml b/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml
index 77b0e0a11..e89705f01 100644
--- a/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml
+++ b/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml
@@ -370,6 +370,7 @@
       DefaultActions:
         - Type: forward
           TargetGroupName: "{{ aws_ec2_autoscale_cluster.name }}"
+      Rules: "{{ aws_ec2_autoscale_cluster.listeners_https.rules }}"
   when: aws_ec2_autoscale_cluster.create_elb
 
 # @TODO - we can use the aws_acm_obsolete_certificate_arn variable to tidy up previous ACM certs, if it is defined.

From df7a72f3ae7577116ea14059221196dd1f76d267 Mon Sep 17 00:00:00 2001
From: filip <filip.rupic@codeenigma.com>
Date: Fri, 23 Aug 2024 13:25:29 +0200
Subject: [PATCH 2/4] adding https listener rule vars

---
 roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml b/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml
index b6aedd0b2..6b7a0a34e 100644
--- a/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml
+++ b/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml
@@ -271,6 +271,10 @@ aws_ec2_autoscale_cluster:
     create_cert: false
     create_distribution: false
     cf_certificate_ARN: "" # Certificate must be in us-east-1 for CloudFront. Define a certificate to build a distribution.
+  listeners_http:
+    rules: []
+  listeners_https:
+    rules: []
   # Add custom listeners. See https://docs.ansible.com/ansible/latest/collections/community/aws/elb_application_lb_module.html
   listeners: []
   alb_ssl_policy: "ELBSecurityPolicy-TLS-1-2-2017-01" # Sets the ALB SSL policy to only accect TLSv1.2 and apply more secure ciphers.

From d24a49abbd8ae958c228dd616652dea2383370bc Mon Sep 17 00:00:00 2001
From: filip <filip.rupic@codeenigma.com>
Date: Fri, 23 Aug 2024 13:26:42 +0200
Subject: [PATCH 3/4] adding http listener rule vars

---
 roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml b/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml
index e89705f01..fdc8384c6 100644
--- a/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml
+++ b/roles/aws/aws_ec2_autoscale_cluster/tasks/main.yml
@@ -349,6 +349,7 @@
       DefaultActions:
         - Type: forward
           TargetGroupName: "{{ aws_ec2_autoscale_cluster.name }}"
+      Rules: "{{ aws_ec2_autoscale_cluster.listeners_http.rules }}"
     _aws_ec2_autoscale_cluster_listeners_redirect:
       Protocol: HTTP
       Port: "{{ aws_ec2_autoscale_cluster.alb_http_port }}"

From 5bd9365795a162e393906421e8baef2c89dac9f3 Mon Sep 17 00:00:00 2001
From: filip <filip.rupic@codeenigma.com>
Date: Fri, 23 Aug 2024 15:11:31 +0200
Subject: [PATCH 4/4] adding redirect to the listener

---
 .../aws_ec2_autoscale_cluster/defaults/main.yml  | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml b/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml
index 6b7a0a34e..e6378a6b2 100644
--- a/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml
+++ b/roles/aws/aws_ec2_autoscale_cluster/defaults/main.yml
@@ -272,7 +272,21 @@ aws_ec2_autoscale_cluster:
     create_distribution: false
     cf_certificate_ARN: "" # Certificate must be in us-east-1 for CloudFront. Define a certificate to build a distribution.
   listeners_http:
-    rules: []
+    rules:
+      - Conditions:
+          - Field: host-header
+            Values:
+              - "example-redirect.com"
+        Priority: '4'
+        Actions:
+          - Type: redirect
+            RedirectConfig:
+              Host: "codeenigma.com"
+              Port: "#{port}"
+              Protocol: "HTTPS"
+              Path: "/#{path}"
+              Query: "#{query}"
+              StatusCode: "HTTP_301"
   listeners_https:
     rules: []
   # Add custom listeners. See https://docs.ansible.com/ansible/latest/collections/community/aws/elb_application_lb_module.html