From 3251189ab8529e34c455f38b2b88d60fe47b8208 Mon Sep 17 00:00:00 2001
From: Romuald du Song <romuald.dusong@deveryware.com>
Date: Thu, 14 Feb 2019 21:26:25 +0100
Subject: [PATCH] what a cumbersome whitespace control

---
 data/templates/nginx/server.tpl.conf | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/data/templates/nginx/server.tpl.conf b/data/templates/nginx/server.tpl.conf
index 2d161d79c..5f22c8df5 100644
--- a/data/templates/nginx/server.tpl.conf
+++ b/data/templates/nginx/server.tpl.conf
@@ -29,14 +29,13 @@ server {
     ssl_session_timeout 5m;
     ssl_session_cache shared:SSL:50m;
 
-    {% if security_ciphers_compatibility == "modern" %}
+    {% if security_ciphers_compatibility == "modern" -%}
     # Ciphers with modern compatibility
     # https://mozilla.github.io/server-side-tls/ssl-config-generator/?server=nginx-1.6.2&openssl=1.0.1t&hsts=yes&profile=modern
     # Uncomment the following to use modern ciphers, but remove compatibility with some old clients (android < 5.0, Internet Explorer < 10, ...)
     ssl_protocols TLSv1.2;
     ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256';
     ssl_prefer_server_ciphers on;
-
     {% else %}
     # As suggested by Mozilla : https://wiki.mozilla.org/Security/Server_Side_TLS and https://en.wikipedia.org/wiki/Curve25519
     ssl_ecdh_curve secp521r1:secp384r1:prime256v1;
@@ -64,7 +63,7 @@ server {
     more_set_headers "X-Permitted-Cross-Domain-Policies : none";
     more_set_headers "X-Frame-Options : SAMEORIGIN";
 
-    {% if domain_cert_ca == "Let's Encrypt" %}
+    {% if domain_cert_ca == "Let's Encrypt" -%}
     # OCSP settings
     ssl_stapling on;
     ssl_stapling_verify on;