public/wordpress_setup
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Add proxy in front

Browse Source
This commit is contained in:
Erik Gustafson
2022-01-04 23:25:26 +01:00
parent 27c8961fef
commit 29f6e0fbd9
7 changed files with 187 additions and 105 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
proxy.yml Normal file
View File

@ -0,0 +1,33 @@
- name: Install packages proxy server
command: "bastille pkg {{jails['proxy'].name}} install -y nginx py38-certbot-nginx"
- name: Enable weekly_certbot
lineinfile:
regex: "^weekly_certbot_enable="
line: "weekly_certbot_enable=YES"
path: "/usr/local/bastille/jails/{{jails['proxy'].name}}/root/etc/periodic.conf"
create: true
- name: "create sites-enabled directory"
command: "bastille cmd {{jails['proxy'].name}} mkdir /usr/local/etc/nginx/sites-enabled"
- name: "nginx: configure website"
template:
src: proxy.conf.j2
dest: "/usr/local/bastille/jails/{{jails['proxy'].name}}/root/usr/local/etc/nginx/sites-enabled/{{website.name}}.conf"
- name: update nginx.conf to include sites-enabled
lineinfile:
insertbefore: "}"
line: " include sites-enabled/*.conf;"
path: "/usr/local/bastille/jails/{{jails['proxy'].name}}/root/usr/local/etc/nginx/nginx.conf"
- name: "nginx: enable nginx service"
command: "bastille sysrc {{jails['proxy'].name}} nginx_enable='YES'"
- name: "nginx: start nginx service"
command: "bastille service {{jails['proxy'].name}} nginx restart"
- name: Generate certificates
command: "bastille cmd {{jails['proxy'].name}} sh -c 'certbot --nginx -m {{website.email}} -n --agree-tos --domains {{website.external_hostname}}'"