Files @ 8e342caa159a
Branch filter:

Location: freifunk/Ansible-Configuration/web/tasks/base_website_setup.yml

8e342caa159a 1.3 KiB text/x-yaml Show Annotation Show as Raw Download as Raw
x
fix: install dhparam for nginx snippets
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
---
- name: Install nginx
  ansible.builtin.apt:
    name: nginx
    state: present
  become: true
- name: Copy snippets
  ansible.builtin.copy:
    src: "{{ server_config_dir }}/nginx/snippets/"
    dest: "/etc/nginx/snippets/"
    owner: root
    group: root
    mode: "0644"
  become: true
- name: Install dhparam
  ansible.builtin.copy:
    src: "{{ server_config_dir }}/nginx/dhparam.pem"
    dest: "/etc/nginx/dhparam.pem"
    owner: root
    group: root
    mode: "0644"
  become: true
- name: Change default config
  ansible.builtin.copy:
    src: "{{ server_config_dir }}/nginx/configs/default"
    dest: "/etc/nginx/sites-available/default"
    owner: root
    group: root
    mode: "0644"
  become: true
- name: Install bogus certificate + group (snakeoil tls)
  ansible.builtin.apt:
    name: ssl-cert
    state: present
  become: true
- name: Enable + Restart nginx
  ansible.builtin.service:
    name: nginx
    state: reloaded
    enabled: true
  become: true
- name: Make sure acme.sh is installed
  ansible.builtin.include_tasks:
    file: "{{ ansible_repo_dir }}/web/tasks/install_acme_sh.yml"
- name: Issue certificate for domains
  ansible.builtin.include_tasks:
    file: "{{ ansible_repo_dir }}/web/tasks/issue_cert.yml"
- name: Set up nginx config
  ansible.builtin.include_tasks:
    file: "{{ ansible_repo_dir }}/web/tasks/set_up_nginx_config.yml"
Server instance: saturn-2924896 This site is powered by Kallithea, which is © 2010–2021 by various authors & licensed under GPLv3. – Support