puppet-prod/site/profiles/manifests/haproxy/fe_https.pp

# default https frontend
class profiles::haproxy::fe_https (
  Stdlib::IP::Address $bind_addr  = $facts['networking']['ip'],
  Stdlib::Port      $bind_port    = 443,
  Array             $bind_opts    = [],
  Array             $acls         = [],
  Array             $http_request = [],
) {
  haproxy::frontend { 'fe_https':
    description => 'Default HTTPS Frontend',
    bind        => { "${bind_addr}:${bind_port}" => $bind_opts },
    mode        => 'http',
    options     => {
      'acl'          => $acls,
      'http-request' => $http_request,
      'use_backend'  => [
        '%[req.hdr(host),lower,map(/etc/haproxy/domains-to-backends.map,be_default)]',
      ],
    },
  }
}