DTSV/Ansible
1
0
Fork 0
Code Issues Pull Requests Releases Activity

rewrite lego role

Browse Source
This commit is contained in:
Oli
2025-06-05 22:53:10 +00:00
parent 62fabb2277
commit 230feb9b0c
12 changed files with 247 additions and 71 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
roles/webserver/tasks/nginx.yml
View File

@@ -7,10 +7,10 @@
mode: "0644"
loop:
- {src: "nginx.conf.j2", dest: "/etc/nginx/nginx.conf"}
- {src: "cert.conf.j2", dest: "/etc/nginx/global/cert.conf"}
- {src: "cert.conf.j2", dest: "/etc/nginx/snippets/cert.conf"}
- {src: "header.conf.j2", dest: "/etc/nginx/global/header.conf"}
- {src: "proxy.conf.j2", dest: "/etc/nginx/global/proxy.conf"}
- {src: "php_optimization.j2", dest: "/etc/nginx/global/php_optimization"}
- {src: "php_optimization.j2", dest: "/etc/nginx/snippets/php_optimization.conf"}
notify: Reload nginx
- name: Copy virtual server configs
@@ -21,26 +21,6 @@
with_fileglob: "../templates/conf.d/*.j2"
notify: Reload nginx
## Certificates
- name: Create Certificate directory
file:
path: "{{ webserver_nginx_cert_path }}"
state: directory
mode: "0755"
- name: "Copy SSL certificates for {{ webserver_domain }}"
copy:
remote_src: true
# make sure that ssl certs are available
src: "{{ lego_config_dir }}/certificates/{{ webserver_domain }}.{{ item }}"
dest: "{{ webserver_nginx_cert_path }}/{{ webserver_domain }}.{{ item }}"
owner: root
group: root
mode: "0600"
loop: [crt, key, issuer.crt]
notify: Reload nginx
- name: Create nginx.service.d directory
file:
path: /etc/systemd/system/nginx.service.d