47 lines
1.6 KiB
YAML
47 lines
1.6 KiB
YAML
---
|
|
|
|
- set_fact: role_wh_proxy={{ True }}
|
|
tags: web
|
|
|
|
- name: Deploy web hosting vhosts
|
|
template: src=nginx_vhosts.conf.j2 dest=/etc/nginx/ansible_conf.d/31-vhosts_wh.conf
|
|
notify: reload nginx
|
|
tags: web
|
|
|
|
- name: Build a list of client vhosts
|
|
set_fact:
|
|
wh_vhosts: "{{ wh_vhosts | default([]) + [ item.1.vhost | default(item.0.name + '-' + item.1.name + '.wh.fws.fr') ] }}"
|
|
loop: "{{ wh_clients | default([]) | subelements('apps') }}"
|
|
tags: web
|
|
|
|
- name: Check if Let's Encrypt's cert exist (web hosting)
|
|
stat: path=/var/lib/dehydrated/certificates/certs/{{ item }}/fullchain.pem
|
|
register: wh_letsencrypt_certs
|
|
with_items: "{{ wh_vhosts }}"
|
|
tags: web
|
|
|
|
- name: Create directories for missing Let's Encrypt cert (web hosting)
|
|
file: path=/var/lib/dehydrated/certificates/certs/{{ item.item }} state=directory
|
|
with_items: "{{ wh_letsencrypt_certs.results }}"
|
|
when:
|
|
- item.stat is defined
|
|
- not item.stat.exists
|
|
tags: web
|
|
|
|
- name: Link missing Let's Encrypt cert to the default one (web hosting)
|
|
file: src={{ nginx_cert_path }} dest=/var/lib/dehydrated/certificates/certs/{{ item.item }}/fullchain.pem state=link
|
|
with_items: "{{ wh_letsencrypt_certs.results }}"
|
|
when:
|
|
- item.stat is defined
|
|
- not item.stat.exists
|
|
tags: web
|
|
|
|
- name: Link missing Let's Encrypt key to the default one (web hosting)
|
|
file: src={{ nginx_key_path }} dest=/var/lib/dehydrated/certificates/certs/{{ item.item }}/privkey.pem state=link
|
|
with_items: "{{ wh_letsencrypt_certs.results }}"
|
|
when:
|
|
- item.stat is defined
|
|
- not item.stat.exists
|
|
tags: web
|
|
|